Ok, thank you for the Feedback. Then this will be retained as well for NS8, to make a migration path easier and possible.
So this is the Plan.
Implement LLNG as a NS8 App, that readily integrates with whatever account provider the user uses, Either Ldap or AD.
For those Using NS7 and LLNG, a migration should be as simple as Migrate existing Ldap server, Install NS8 LLNG, copy the config files to new LLG, and youre good to go. (maybe we could automate using the migration Module as well)
Since LLNG onl Support OIDC, CAS and SAML, Anyone that requires any other Authentication Method, would be welcomed to Implement Authentik and or Zitadel.
These 2, Would communicate with LLNG via SAML, and other apps to be authenticated, could be implemented in either the 2.
For Most Core NS8 Apps, LLNG could be Auto Implemented to Integrate with them, ENV variables for OIDC and SAML as available for most apps we have implemented, and those already implemented in NS8, and if we can fetch the parameters from LLNG, then we can pre-apply them to the apps, if SSO provider is chosen as LLNG
For those with Complex integrations that require some sort of bridging and branching, Zitadel might work for them, but the Premise is, those Would not be diretly integrated with NS8.
This will not prevent anyone in need of directly connecting authentik or Ziradel with LDap, they are free to do so.
the next chapter will be to Implement Traefik level SSO, for some apps.
I think with these, we can finally Nail the Numerous SSO discussions we have on the community forums. what do you think?