Authentik dev here, AMA

Using Authentik as a part of my selfhosted setup, mostly positive things to say. I tried with Keycloak first but had too much trouble getting the Docker image to work, so switched to Authentik.

I also checked out some other options along the way, and ultimately realized that pretty much all of the options come with enterprise-oriented features that are just added complexity for the self-hosting use case.

Ultimately, I've gotten at least somewhat familiar with all the complexities of Authentik, so I'd have a hard time switching off. Would definitely love to see a solution geared towards selfhosting that's more barebones, though.

I set up Keycloak using Docker and it was very simple to do.

I did not really try authentik yet since all the advanced features I needed worked with Keycloak, but I do have it running in a container to play with at some point in time.

AFAIK it has a bus factor of one, keep that in mind if you are going to build anything "serious" on top of it. I found it easier to configure than Keycloak, it lets you write short Python snippets for custom authorization logic, but it's about as heavy on resources as Keycloak. I hope he develops the project into a successful business, for users' sake if nothing else.

I was considering using authentik, but I'm not very keen towards having a Django application taking over SSO authentication.

why is that? too heavy or is there another reason?