Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- ###############################################################
- # Authelia configuration #
- ###############################################################
- host: 0.0.0.0
- port: 9091
- log_level: debug
- # This secret can also be set using the env variables AUTHELIA_JWT_SECRET_FILE
- jwt_secret: xxxxx
- default_redirection_url: https://www.xxxxx.wtf
- totp:
- issuer: authelia.com
- #duo_api:
- # hostname: api-123456789.example.com
- # integration_key: ABCDEF
- # # This secret can also be set using the env variables AUTHELIA_DUO_API_SECRET_KEY_FILE
- # secret_key: 1234567890abcdefghifjkl
- authentication_backend:
- disable_reset_password: false
- file:
- path: /config/users_database.yml
- password:
- algorithm: argon2id
- iterations: 1
- salt_length: 16
- parallelism: 8
- memory: 1024
- server:
- path: "authelia"
- read_buffer_size: 4096
- write_buffer_size: 4096
- access_control:
- default_policy: deny
- rules:
- - domain:
- - xxxx.wtf
- - "*.xxxxxx.wtf"
- policy: one_factor
- session:
- name: authelia_session
- # This secret can also be set using the env variables AUTHELIA_SESSION_SECRET_FILE
- secret: xxxx
- expiration: 7200 # 2 hours
- inactivity: 600 # 10 minutes
- domain: xxxxxx.wtf # Should match whatever your root protected domain is
- redis:
- host: redis
- port: 6379
- # This secret can also be set using the env variables AUTHELIA_SESSION_REDIS_PASSWORD_FILE
- password: xxxxx
- regulation:
- max_retries: 3
- find_time: 120
- ban_time: 300
- storage:
- local:
- path: /config/db.sqlite3
- notifier:
- disable_startup_check: true
- filesystem:
- filename: /config/noti.txt
- ###############################################################
- # docker-compose.yml #
- ###############################################################
- version: '3.3'
- networks:
- user_network:
- external: true
- services:
- authelia:
- image: authelia/authelia
- container_name: authelia
- volumes:
- - ./authelia:/config
- networks:
- - user_network
- expose:
- - 9091
- restart: unless-stopped
- environment:
- - TZ=America/New_York
- ###############################################################
- # sonarr.subdomain.conf #
- ###############################################################
- # make sure that your dns has a cname set for sonarr and that your sonarr container is not using a base url
- server {
- listen 443 ssl;
- listen [::]:443 ssl;
- server_name sonarr.*;
- include /config/nginx/ssl.conf;
- client_max_body_size 0;
- # enable for ldap auth, fill in ldap details in ldap.conf
- #include /config/nginx/ldap.conf;
- # enable for Authelia
- include /config/nginx/authelia-server.conf;
- location / {
- # enable the next two lines for http auth
- #auth_basic "Restricted";
- #auth_basic_user_file /config/nginx/.htpasswd;
- # enable the next two lines for ldap auth
- #auth_request /auth;
- #error_page 401 =200 /ldaplogin;
- # enable for Authelia
- include /config/nginx/authelia-location.conf;
- include /config/nginx/proxy.conf;
- resolver 127.0.0.11 valid=30s;
- set $upstream_app sonarr;
- set $upstream_port 8989;
- set $upstream_proto http;
- proxy_pass $upstream_proto://$upstream_app:$upstream_port;
- }
- location ~ (/sonarr)?/api {
- include /config/nginx/proxy.conf;
- resolver 127.0.0.11 valid=30s;
- set $upstream_app sonarr;
- set $upstream_port 8989;
- set $upstream_proto http;
- proxy_pass $upstream_proto://$upstream_app:$upstream_port;
- }
- }
- Didn't touch authelia-location.conf or authelia-server.conf; double checked and sonarr works fine when I comment out the athelia lines in sonarr.subdomain.conf
Add Comment
Please, Sign In to add comment