Discovered and defended the Keycloak choice for a more ambitious and maintainable solution than a first Python-hacked prototype.
Explored and tested the interaction between relying party applications and the identity provider with the OpenId Connect protocol. Identified the advantages of using a more standard protocol than the CAS one, which is currently used by the school.
Team-conception of external services orbiting around this authentication system, notably a centralised storage of organization data useful for authorization features.