[sconi]

Curious why you want to run Headscale? Is it purely to avoid the risks of the coordination server?

[codethief]

Yes, and because Tailscale requires me to use a third-party identity provider.

[andrew-d]

As of about a month ago, you can self-host your own OIDC identity provider; for example, Ory Hydra is open-source.

https://tailscale.com/blog/custom-oidc/

[codethief]

Thanks, I did read that blog post but adding yet another dependency to my stack just for authentication of a single user (me)? I don't know… Then I might as well just install Headscale.

[sconi]

Got it. Makes sense. A big part of why we're building Bowtie. https://bowtie.works . We stay out of the critical path.