65 lines
1.5 KiB
YAML
65 lines
1.5 KiB
YAML
---
|
|
###############################################################
|
|
# Authelia configuration #
|
|
###############################################################
|
|
|
|
server:
|
|
address: 'tcp://:9091'
|
|
|
|
log:
|
|
level: 'debug'
|
|
|
|
totp:
|
|
issuer: 'akanealw.com'
|
|
|
|
identity_validation:
|
|
reset_password:
|
|
jwt_secret: 'qVwp0m2FE/zrXvSxxehRJXg2Nl0Y7FW9XuxYPpzEQEM='
|
|
|
|
authentication_backend:
|
|
file:
|
|
path: '/config/users_database.yml'
|
|
|
|
access_control:
|
|
default_policy: 'deny'
|
|
rules:
|
|
# Rules applied to everyone
|
|
- domain: 'bitwarden.akanealw.com'
|
|
policy: 'bypass'
|
|
- domain: '*.akanealw.com'
|
|
policy: 'two_factor'
|
|
|
|
session:
|
|
# This secret can also be set using the env variables AUTHELIA_SESSION_SECRET_FILE
|
|
secret: 'm4fHZHAtR3KTmnwvY9NnI2uu8OjnxYkuQjNHtcaozCI='
|
|
|
|
cookies:
|
|
- name: 'authelia_session'
|
|
domain: 'akanealw.com' # Should match whatever your root protected domain is
|
|
authelia_url: 'https://authelia.akanealw.com'
|
|
expiration: '1 hour'
|
|
inactivity: '5 minutes'
|
|
|
|
redis:
|
|
host: 'redis'
|
|
port: 6379
|
|
password: 'IKjU1KidPjRmUrT5yp2G9ud+6Yc86O6xSk53hVQBlu0='
|
|
|
|
regulation:
|
|
max_retries: 3
|
|
find_time: '2 minutes'
|
|
ban_time: '5 minutes'
|
|
|
|
storage:
|
|
encryption_key: 'cF/hDHPpp3ab7vOGgniKsQ9zYPl9n5zIihL/DzLaMAk='
|
|
local:
|
|
path: '/config/db.sqlite3'
|
|
|
|
notifier:
|
|
smtp:
|
|
username: 'test'
|
|
# This secret can also be set using the env variables AUTHELIA_NOTIFIER_SMTP_PASSWORD_FILE
|
|
password: 'password'
|
|
address: 'smtp://mail.example.com:25'
|
|
sender: 'admin@example.com'
|