Happy to announce a first beta release of the couchdb-idp-updater <https://github.com/beyonddemise/couchdb-idp-updater>.What does it do?
You point it to your IdP (identity provider, e.g AD, KeyCloak, Octa etc) to periodically read their public keys. When a key is new or updated it updates CouchDB’s jwt_keys configuration. This allows users to authenticate with their IdP credentials, thus having all actual user reaching CouchDB without the need to maintain them in _users I'd love to get feedback after you take it for a spin…
