Issue 39: Harden SSO - Bimba roadmap 2025-04-26T12:20:47+00:00 https://roadmap.apiote.xyz/issues/issue39 Message 35 https://roadmap.apiote.xyz/issues/issue39#msg35

Also, Keycloak should be importable/exportable, or better configuration as code

 2025-04-26T12:20:47+00:00 2025-04-26T12:20:47+00:00 adam Message 31 https://roadmap.apiote.xyz/issues/issue39#msg31 
It should be hard to pwn an account, eg. notify about email change. But it should be easy to recover.

Can we enforce 2fa for higher seats? Can we currently disable FIDO2 for users and only avmin-enable?
 2025-04-26T09:46:00+00:00 2025-04-26T09:46:00+00:00 adam