1 changed files with 0 additions and 116 deletions
@ -1,116 +0,0 @@ |
|||||||
############################################################################## |
|
||||||
# Authelia configuration # |
|
||||||
############################################################################## |
|
||||||
|
|
||||||
server: |
|
||||||
host: 0.0.0.0 |
|
||||||
port: 8080 # if you need this changed make sure it reflects also in the docker-compose.yml |
|
||||||
log: |
|
||||||
level: info |
|
||||||
jwt_secret: # insert secret |
|
||||||
default_redirection_url: https://auth.jaredtsmith.com |
|
||||||
totp: |
|
||||||
issuer: jaredtsmith.com |
|
||||||
period: 30 |
|
||||||
skew: 1 |
|
||||||
|
|
||||||
authentication_backend: |
|
||||||
password_reset: |
|
||||||
disable: false |
|
||||||
file: |
|
||||||
path: /config/users_database.yml # Make sure this file exists |
|
||||||
password: |
|
||||||
algorithm: argon2id |
|
||||||
iterations: 1 |
|
||||||
salt_length: 16 |
|
||||||
parallelism: 8 |
|
||||||
memory: 64 |
|
||||||
|
|
||||||
access_control: |
|
||||||
default_policy: deny |
|
||||||
rules: |
|
||||||
# Rules applied to everyone |
|
||||||
- domain: |
|
||||||
- "auth.jaredtsmith.com" |
|
||||||
- "wikidata.jaredtsmith.com" |
|
||||||
policy: bypass |
|
||||||
- domain: # Proxies only requiring username and password |
|
||||||
- "wiki.jaredtsmith.com" |
|
||||||
- "wikidata-admin.jaredtsmith.com" |
|
||||||
policy: one_factor |
|
||||||
- domain: # Proxies needing 2 factor below |
|
||||||
- "budget.jaredtsmith.com" |
|
||||||
- "budget1.jaredtsmith.com" |
|
||||||
policy: two_factor |
|
||||||
|
|
||||||
|
|
||||||
session: |
|
||||||
name: authelia_session |
|
||||||
secret: # insert secret |
|
||||||
expiration: 3600 # 1 hour |
|
||||||
inactivity: 7200 # 2 hours |
|
||||||
domain: jaredtsmith.com # Needs to be your root domain |
|
||||||
|
|
||||||
redis: |
|
||||||
host: authelia-redis-1 |
|
||||||
port: 6379 |
|
||||||
password: # insert secret |
|
||||||
|
|
||||||
regulation: |
|
||||||
max_retries: 5 |
|
||||||
find_time: 2m |
|
||||||
ban_time: 10m |
|
||||||
|
|
||||||
theme: dark # options: dark, light |
|
||||||
|
|
||||||
storage: |
|
||||||
encryption_key: # insert secret |
|
||||||
local: |
|
||||||
path: /config/db.sqlite3 |
|
||||||
|
|
||||||
notifier: |
|
||||||
smtp: |
|
||||||
username: admin@jaredtsmith.com |
|
||||||
password: # insert password |
|
||||||
host: mail.jaredtsmith.com |
|
||||||
port: 465 # 25 non-ssl, 443 ssl, 587 tls |
|
||||||
sender: authelia@auth.jaredtsmith.com |
|
||||||
subject: "[Authelia] {title}" |
|
||||||
disable_require_tls: true # set to true if your domain uses no tls or ssl only |
|
||||||
disable_html_emails: false # set to true if you don't want html in your emails |
|
||||||
|
|
||||||
identity_providers: |
|
||||||
oidc: |
|
||||||
hmac_secret: |
|
||||||
issuer_private_key: | |
|
||||||
--- KEY START |
|
||||||
--- KEY END |
|
||||||
access_token_lifespan: 1h |
|
||||||
authorize_code_lifespan: 1m |
|
||||||
id_token_lifespan: 1h |
|
||||||
refresh_token_lifespan: 90m |
|
||||||
enable_client_debug_messages: false |
|
||||||
clients: |
|
||||||
- id: outline |
|
||||||
description: Outline Wiki |
|
||||||
secret: |
|
||||||
public: false |
|
||||||
authorization_policy: one_factor |
|
||||||
audience: [] |
|
||||||
scopes: |
|
||||||
- openid |
|
||||||
- groups |
|
||||||
- email |
|
||||||
- profile |
|
||||||
redirect_uris: |
|
||||||
- https://wiki.jaredtsmith.com/auth/oidc.callback |
|
||||||
grant_types: |
|
||||||
- refresh_token |
|
||||||
- authorization_code |
|
||||||
response_types: |
|
||||||
- code |
|
||||||
response_modes: |
|
||||||
- form_post |
|
||||||
- query |
|
||||||
- fragment |
|
||||||
userinfo_signing_algorithm: none |
|
||||||
Loading…
Reference in new issue