SSO(Single Sign-On)
Logging in once with a central identity provider to access many separate applications.
In a homelab, tools like Authelia, Authentik or Keycloak provide SSO and can add 2FA in front of apps that lack it. Users authenticate once and reach every service, while you manage access in one place.
Related articles
2FA / MFA(Two-Factor / Multi-Factor Authentication)
Requiring more than just a password to log in — typically something you know plus something you have.
Reverse Proxy
A server that sits in front of your services, routing requests by domain name and handling TLS certificates.
OAuth / OIDC(Open Authorization / OpenID Connect)
Standards that let apps delegate authentication and authorization to a trusted identity provider.