aggarwalakshun/ipv6-k3s
Archived
1
0
Fork 0
Code Issues 1 Pull Requests Actions Packages Projects Releases Wiki Activity
This repository has been archived on 2026-01-04. You can view files and clone it. You cannot open issues or pull requests or push a commit.
Files
a20e4c0f4badacf1cb6a698d06d6111e65ec6809
ipv6-k3s/clusters/ipv6/tools/authelia/authelia-config.yml
aggarwalakshun 25c12c0bbd add authelia
2025-12-27 14:12:05 +00:00

116 lines
2.7 KiB
YAML
Raw Blame History

apiVersion: v1
kind: ConfigMap
metadata:
name: authelia-config
namespace: tools
data:
configuration.yaml: |
server:
address: 'tcp4://:9091'
buffers:
read: 16384
log:
level: info
file_path: ''
keep_stdout: true
identity_validation:
elevated_session:
require_second_factor: true
reset_password:
jwt_lifespan: '5 minutes'
theme: dark
totp:
disable: false
issuer: 'akshun-lab.cc'
period: 30
skew: 1
algorithm: 'sha1'
digits: 6
secret_size: 32
allowed_algorithms:
- 'SHA1'
allowed_digits:
- 6
allowed_periods:
- 30
disable_reuse_security_policy: false
password_policy:
zxcvbn:
enabled: true
min_score: 4
authentication_backend:
file:
path: '/config/users.yml'
password:
algorithm: 'argon2'
argon2:
variant: 'argon2id'
iterations: 3
memory: 65535
parallelism: 4
key_length: 32
salt_length: 16
access_control:
default_policy: 'deny'
rules:
- domain: 'auth.akshun-lab.cc'
policy: bypass
- domain: 'invidious.akshun-lab.cc'
resources: '^/(api/v1|feed|videoplayback|vi/.+\.(jpg|webp)|ggpht|latest_version|sb)'
policy: bypass
- domain: 'immich.akshun-lab.cc'
policy: bypass
- domain: 'jellyfin.akshun-lab.cc'
policy: bypass
- domain: 'gitea.akshun-lab.cc'
policy: bypass
- domain: 'nextcloud.akshun-lab.cc'
policy: bypass
- domain: 'collabora.akshun-lab.cc'
policy: bypass
- domain: 'vw.akshun-lab.cc'
policy: bypass
- domain: '*.akshun-lab.cc'
policy: two_factor
session:
name: 'authelia_session'
cookies:
- domain: 'akshun-lab.cc'
authelia_url: 'https://auth.akshun-lab.cc'
regulation:
max_retries: 4
find_time: 120
ban_time: 300
storage:
local:
path: '/config/db.sqlite3'
notifier:
disable_startup_check: false
smtp:
address: submissions://smtp.gmail.com:465
username: aggarwalakshun@gmail.com
sender: aggarwalakshun@gmail.com
identifier: localhost
subject: "[Authelia] {title}"
startup_check_address: aggarwalakshun@gmail.com
disable_require_tls: false
disable_html_emails: false
tls:
skip_verify: false
minimum_version: TLS1.2
ntp:
address: 'time.google.com:123'
version: 4
max_desync: '3s'
disable_startup_check: false
Reference in New Issue View Git Blame Copy Permalink