Making Ansible playbooks to configure Single Sign On for popular open source applications

To help sysadmins everywhere the Onestein organization (specialized in Odoo implementations) invested 4 month of research to create a set of easy to use Ansible playbooks to configure single sign on (SSO) for popular open source applications to enable them to authenticate to a Keycloak server as the central identity provider.

These playbooks have been published on

The list of supported applications are currently:

  • Bitwarden
  • CMDBuild
  • GitLab
  • Jenkins
  • Keycloak (not SSO, but the identity provider)
  • Nextcloud
  • Odoo
  • Xwiki
  • Zabbix.

All playbooks and servers are for Ubuntu servers and are meant to be used as a starting point.

This talk can be done in 5 minutes, and also in 50 minutes with a lot more technical details.