As root (L6 - Architect-Engineer)
1. generate id / erase id 
2. ssh-copy-id [ id_*.pub ]
3. adduser user
4. Install doas
5. Change Hostname *
6. MOTD *
7. TIME *

From Terminal
1. ssh-copy-id user@*
2. login as user [ ssh -i * user@* ]


As user (L5 - Platform Engineer)
1. Install docker
2. modify /etc/group docker:x:999:root,user
3. install shell in a box (L5 - Operations Engineer)

reboot

As user
1. install newt (L5 - Network Engineer)


---------------------------------------------------------
From Overlay Proxy & LB
1. Create Site - 

---------------------------------------------------------

As user

1. install portainer (L5 - Platform Engineer)


---------------------------------------------------------
From Overlay Proxy & LB
1. Create Resources- 
portainer [ user / #16 ] 
shellinabox [ use https ] / Protected
---------------------------------------------------------

--------------------------------------------------------------------------
Authentik Installation

Part 1: as user 
wget https://dl.1.goodg.org/debian/authentik.sh 
replace all restart: unless-stopped to restart: always
docker compose up -d 

Publish on 


https://idp.e3labs.net/if/flow/initial-setup/

adminops@2twelvesolutions.com 

add webauth 

Authentik Configuration
- 
Admin interface > System > Brands > authentik-default > action > Branding Settings
Title: e3lab
Logo: /media/icon_left_brand.svg 
Favicon: /media/icon.png 
Default flow background: /media/flow_background.jpg

Admin interface > Flows and Stages > Flows > default-authentication-flow
Name: Welcome BCORE!
Title: Welcome BCORE!

Admin interface > Flows and Stages > Flows > default-invalidation-flow
Name: Welcome BCORE!
Title: Welcome BCORE!

Admin interface > Flows and Stages > Flows > default-source-enrollement 
Name: Welcome BCORE! Please select a username
Title: Welcome BCORE! Please select a username