Self-Hosting n8n on AWS ECS Fargate with Terraform, Okta OIDC SSO and a Shared ALB + RDS

TL;DR: A practical walkthrough of deploying n8n on AWS ECS Fargate using Terraform, sharing an existing ALB and RDS instance, wiring up OIDC SSO via a community init-container pattern, and all the sharp edges you'll hit along the way. Why self-host n8n? n8n is a powerful workflow automation platform. The cloud version is great, but once your team starts building internal automations that touch internal APIs, credentials, or sensitive data, self-hosting becomes the obvious move. You get full data residency, SSO enforcement, and no per-workflow pricing. Since this is (at least for now) a PoC, wouldn't make much sense pay for a license, however I also didn't wanted to keep managing users, so I challenged myself to add SSO to it, even in the community edition (yes, it's possible). This post covers the full AWS infrastructure we built: every Terraform resource, the SSO integration, and the surprising number of things that look right but aren't. Architecture overview ┌──────────────────────-