So I'm about to have a weird tech stack, I'll be using #authentik for my IdP, but.. almost all through LDAP providers, except for services that don't support LDAP and need something like OIDC / OAuth (or, lord help me, SAML).
Why? Because just slapping your username and password into the login box is less friction then finding the "Sign in with TD-StorageBay SSO" button to direct you to another page.