Auth & Identity

One login. For everything.

Keycloak is open-source IAM at enterprise level. We set it up for you - SSO, MFA, OAuth2, OIDC, SAML. Self-hosted in the EU, no per-user licensing.

GDPR by DesignSelf-HostingOAuth2 / OIDC / SAMLMaintained by Red Hat

When auth hurts

  • Every app has its own login. User frustration grows.
  • Passwords stored in app DBs. Security audits cry.
  • Off-boarding means disabling accounts in 12 systems.
  • You want MFA - but retrofitting it everywhere is work.
  • Auth0 / Okta pricing scales with your user count. You're locked in.

What we deliver

01

Setup & Hardening

Keycloak on Hetzner EU or your infrastructure. Production config, reverse proxy, automated backups.

02

Integration

We connect your apps - web, mobile, APIs. OIDC, SAML, OAuth2. With code samples for your team.

03

MFA & Social Login

TOTP, WebAuthn, FIDO2. Google, Microsoft, GitHub, SAML partners - all optional, all toggleable.

04

User management & SCIM

Self-service portal, admin console, SCIM provisioning if needed.

05

Training & Handover

Your team can run Keycloak on its own afterwards - if you want.

We use

CoreKeycloak (Red Hat distribution)
StoragePostgreSQL, Redis (sessions)
HostingHetzner EU, Docker / Podman
Reverse proxyTraefik or Caddy with Let's Encrypt
MonitoringPrometheus + Grafana