You can not select more than 25 topics
Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
72 lines
1.9 KiB
72 lines
1.9 KiB
############################################################################## |
|
# Authelia configuration # |
|
############################################################################## |
|
|
|
host: 0.0.0.0 |
|
port: 8080 # if you need this changed make sure it reflects also in the docker-compose.yml |
|
log_level: info |
|
default_redirection_url: https://auth.jaredtsmith.com |
|
totp: |
|
issuer: jaredtsmith.com |
|
period: 30 |
|
skew: 1 |
|
|
|
authentication_backend: |
|
disable_reset_password: false |
|
file: |
|
path: /config/users_database.yml # Make sure this file exists |
|
password: |
|
algorithm: argon2id |
|
iterations: 1 |
|
salt_length: 16 |
|
parallelism: 8 |
|
memory: 64 |
|
|
|
access_control: |
|
default_policy: deny |
|
rules: |
|
# Rules applied to everyone |
|
- domain: |
|
- "auth.jaredtsmith.com" |
|
- "wikidata.jaredtsmith.com" |
|
policy: bypass |
|
- domain: # Proxies only requiring username and password |
|
- "wiki.jaredtsmith.com" |
|
- "wikidata-admin.jaredtsmith.com" |
|
policy: one_factor |
|
- domain: # Proxies needing 2 factor below |
|
- "budget.jaredtsmith.com" |
|
- "budget1.jaredtsmith.com" |
|
policy: two_factor |
|
|
|
|
|
session: |
|
name: authelia_session |
|
expiration: 3600 # 1 hour |
|
inactivity: 7200 # 2 hours |
|
domain: jaredtsmith.com # Needs to be your root domain |
|
|
|
redis: |
|
host: outline_redis |
|
port: 6379 |
|
|
|
regulation: |
|
max_retries: 5 |
|
find_time: 2m |
|
ban_time: 10m |
|
|
|
theme: dark # options: dark, light |
|
|
|
storage: |
|
local: |
|
path: /config/db.sqlite3 |
|
|
|
notifier: |
|
smtp: |
|
username: admin@jaredtsmith.com |
|
host: mail.jaredtsmith.com |
|
port: 465 # 25 non-ssl, 443 ssl, 587 tls |
|
sender: authelia@auth.jaredtsmith.com |
|
subject: "[Authelia] {title}" |
|
disable_require_tls: true # set to true if your domain uses no tls or ssl only |
|
disable_html_emails: false # set to true if you don't want html in your emails |