TARDIS Project

​

Provides OpenID (Single Sign-On). User information is federated from LDAP, and password authentication is done through Kerberos.

Because it misbehaves otherwise, this uses SSL with a certificate issued by Step CA.

• /var/lib/postgresql/

Handled declaratively through Nix.

Clients, Realms & Providers configured using the administration UI.