API tools faq
paste
Advertisement
kindrudekid

authelia config

kindrudekid
Mar 17th, 2024
722
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
YAML 2.22 KB | Cybersecurity | 0 0
raw download clone embed print report
  1. # Server Config
  2. server:
  3.   address: "tcp://0.0.0.0:9091/authelia"
  4.   buffers:
  5.     read: 4096
  6.     write: 4096
  7.   endpoints:
  8.     authz:
  9.       auth-request:
  10.         implementation: 'AuthRequest'
  11.           #authn_strategies:
  12.           #- name: 'HeaderAuthRequestProxyAuthorization'
  13.           #  schemes:
  14.           #    - 'Basic'
  15.           #- name: 'CookieSession'
  16.   timeouts:
  17.     read: '6s'
  18.     write: '6s'
  19.     idle: '30s'
  20.  
  21. # Log config
  22. log:
  23.   level: debug
  24.   format: text
  25.   file_path: "/config/authelia.log"
  26.   keep_stdout: false
  27.   #log_format: json
  28.  
  29.  
  30. # 2FA Config
  31.  
  32. # TOTP Config
  33. totp:
  34.   disable: false
  35.   issuer: example.com
  36.   algorithm: sha256
  37.   digits: 6
  38.   period: 30
  39.   skew: 1
  40.   secret_size: 32
  41.  
  42. # Authelia Backend
  43. authentication_backend:
  44.   password_reset:
  45.     disable: false
  46.     custom_url: ""
  47.   file:
  48.     path: /config/users_database.yml
  49.     password:
  50.       algorithm: argon2id
  51.       iterations: 1
  52.       key_length: 32
  53.       salt_length: 16
  54.       memory: 512
  55.       parallelism: 8
  56.  
  57. # Access Control for domains
  58. access_control:
  59.   rules:
  60.    # Allow free access from local network
  61.     - domain:
  62.      - example.com
  63.       - "*.example.com"
  64.       networks:
  65.        - 192.168.0.44/32
  66.         - 76.183.182.193/32
  67.       policy: one_factor
  68.     - domain:
  69.      - example.com
  70.       - "*.example.com"
  71.       policy: two_factor
  72.   default_policy: deny
  73.  
  74.  
  75.  
  76. # Session Info
  77. session:
  78.   name: authelia_session
  79.   secret: RANDOMDATA
  80.   expiration: 8h
  81.   inactivity: 5m
  82.   remember_me: 1w
  83.   same_site: lax
  84.   cookies:
  85.     - domain: 'example.com'
  86.       authelia_url: 'https://authelia.example.com'
  87.       name: 'authelia_session2'
  88.       #default_redirection_url: 'https://heimdall.example.com'
  89.  
  90. identity_validation:
  91.   reset_password:
  92.     jwt_lifespan: '5 minutes'
  93.     jwt_algorithm: 'HS256'
  94.     jwt_secret: 'RANDOMDATA'
  95.  
  96. # regulation
  97.  
  98. regulation:
  99.   max_retries: 3
  100.   find_time: 2m
  101.   ban_time: 5m
  102. storage:
  103.   encryption_key: RANDOMDATA
  104.   local:
  105.     path: /config/db.sqlite3
  106. notifier:
  107.  # You can disable the notifier startup check by setting this to true.
  108.   disable_startup_check: false
  109.  
  110.   # For testing purpose, notifications can be sent in a file.
  111.   filesystem:
  112.     filename: /config/notification.txt
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!