I built this because I was tired of configuring Keycloak for local development and CI/CD testing. NanoIDP is a pip-installable IdP that supports OAuth2/OIDC (Authorization Code + PKCE, Client Credentials, Password, Device Flow) and SAML 2.0.

Setup is just `pip install nanoidp && python -m nanoidp`. Configuration lives in YAML files, no database required. It also has a web UI for managing users and clients, and token introspection/revocation endpoints.

It's a dev/testing tool, not meant for production. MIT licensed.

Blog post with more context: https://cdelmonte.medium.com/stop-spinning-up-keycloak-just-...