Nomos 2026 wish list

[coryalder]

Some stuff I am interested in removing

NOTE: All of this needs more research to confirm it's not in use anywhere, but at first glance most of this looks unused.

• webhooks - this seems to be about allowing nomos to trigger other services when stuff happens. So that's stuff like notifying slack when a new user signs up, or when someone gets laser training access. My feeling is that this is a lot of infrastructure for something that could be a weekly or daily report run by a cron job or similar.
• rabbitmq - this is underlying webhooks, so if they go it may be able to go - I will have to dig into it.
• github / slack / google oauth - this isn't needed anymore for laser stuff, and I suspect it isn't needed anywhere.
• User API keys - there are system api keys for stuff that needs to access multiple users. Unless nomos is built out in other ways, I don't really see this as useful
• oauth app clients https://membership.vanhack.ca/#/oauth/clients - I think this was to allow mobile apps and the like.

Some stuff I'd like to add to nomos:

1. OIDC / Oauth - allow other services to outsource auth to nomos. Specifically the wiki, and laser access
   • note: some oauth exists, but I think we should remove it (see above) in favour of a more off-the-shelf tool, like:
     • https://www.npmjs.com/package/oidc-provider
     • https://github.com/ory/kratos
     • https://goauthentik.io/
     • https://www.keycloak.org/
     • https://www.authelia.com/
     • https://github.com/pocket-id/pocket-id
     • https://dexidp.io/
     • could also go mysql users table -> https://www.npmjs.com/package/ldap -> dokuwiki / anything that can talk LDAP
2. Tool status page
   • I think a bunch of this has been done already, but let's bring it home!
   • A central place to look to see if the laser is up, or if the table saw is down
   • Should be able to manually update it with a status, or wire it into some automated tool that checks something