Is OAUTH possible without a public domain? #994
-
Beta Was this translation helpful? Give feedback.
Replies: 2 comments 1 reply
-
|
Hi @Njitram2000! I'm Dosu and I'm helping the Tinyauth team. You're correct that OAuth with public providers (Google, GitHub, etc.) won't work with local-only domains like However, Tinyauth does offer several user management options beyond the LDAP Integration — If you run OpenLDAP, FreeIPA, or Active Directory in your homelab, this gives you full directory-based user management with no public domain needed [3]. It supports group membership, TLS, and custom search filters. Tailscale Authentication — If you're already using Tailscale for your homelab networking, Tinyauth can authenticate users based on their Tailscale identity [4]. Just set Users File — A small improvement over the env var: you can point For a homelab without a public domain, LDAP is probably the most flexible "real" user management solution, and Tailscale is the easiest if you're already on that network. To reply, just mention @dosu. Share context across your team and agents. Try Dosu. |
Beta Was this translation helpful? Give feedback.
-
|
@Njitram2000 keep in mind that not all providers impose such limits in the redirect URI. For example, GitHub does allow .home domains. But if you need user management then I would recommend LLDP. Super lightweight and simple LDAP server that works amazingly well with Tinyauth. Tailscale authentication is not yet released, it's in the current RC version. |
Beta Was this translation helpful? Give feedback.

@Njitram2000 keep in mind that not all providers impose such limits in the redirect URI. For example, GitHub does allow .home domains. But if you need user management then I would recommend LLDP. Super lightweight and simple LDAP server that works amazingly well with Tinyauth.
Tailscale authentication is not yet released, it's in the current RC version.