Authelia

1. ###############################################################
2. # Authelia minimal configuration #
3. ###############################################################
4. port: 8080
5. logs_level: trace
6. jwt_secret: insecure_secret
7. authentication_backend:
8. file:
9. path: /etc/authelia/users.yml
10. totp:
11. issuer: authelia.<domain>.com
12.  
13. duo_api:
14. hostname: <hostname>
15. integration_key: <key>
16. secret_key: <secret_key>
17.  
18. session:
19. name: authelia_session_id
20. secret: insecure_session_secret
21. domain: <domain>.com
22. expiration: 3600 # 1 hour
23. inactivity: 300 # 5 minutes
24. redis:
25. host: redis
26. port: 6379
27. password: <redis_pw>
28.  
29. storage:
30. mysql:
31. host: mariadb
32. port: 3306
33. database: authelia
34. username: authelia
35. password: <pass>
36.  
37. # local:
38. # path: /var/lib/authelia/db.sqlite3
39.  
40. access_control:
41. default_policy: deny
42. rules:
43.  
44. - domain: authelia.<domain>.com
45. policy: bypass
46.  
47. - domain: archbw.<domain>.com
48. policy: two_factor
49.  
50. - domain: bwbackend.<domain>.com
51. policy: two_factor
52.  
53. - domain: bw.<domain>.com
54. policy: two_factor
55.  
56. # - domain: "*.<domain>.com"
57. # subject: "group:admin"
58. # policy: two_factor
59.  
60. notifier:
61. # : filesystem:
62. # filename: /var/data/authelia/emails.txt
63. smtp:
64. username: smtp
65. password: <pass>
66. host: postfix.<domain>.com
67. port: 587
68. sender: postmaster@authelia.<domain>.com