Copy ---
###############################################################################
# Authelia Configuration #
###############################################################################
theme : dark
identity_validation :
reset_password :
jwt_secret : "YOUR_JWT_SECRET"
server :
address : 'tcp://0.0.0.0:9091/'
buffers :
read : 4096
write : 4096
endpoints :
enable_pprof : false
enable_expvars : false
disable_healthcheck : false
tls :
key : ""
certificate : ""
log :
level : info
totp :
issuer : YOUR_DOMAIN.COM
period : 30
skew : 1
authentication_backend :
password_reset :
disable : false
refresh_interval : 5m
file :
path : /config/users_database.yml
password :
algorithm : argon2id
iterations : 1
key_length : 32
salt_length : 16
memory : 1024
parallelism : 8
access_control :
default_policy : deny
rules :
## bypass rule
- domain :
- "auth.domain.com"
policy : bypass
## catch-all
- domain :
- "*.domain.com"
subject :
- "group:admins"
policy : one_factor
session :
name : authelia_session
same_site : lax
secret : "YOUR_SESSION_SECRET"
expiration : 1h
inactivity : 5m
remember_me_duration : 2M
cookies :
- domain : YOUR_DOMAIN.COM
authelia_url :
default_redirection_url : https://YOUR_DOMAIN.COM/
redis :
host : redis
port : 6379
password : "YOUR_REDIS_PASSWORD"
database_index : 0
maximum_active_connections : 10
minimum_idle_connections : 0
regulation :
max_retries : 3
find_time : 10m
ban_time : 12h
storage :
encryption_key : "YOUR_STORAGE_ENCRYPTION_KEY"
mysql :
address : 'tcp://mariadb:3306/'
database : authelia
username : authelia
password : "YOUR_MYSQL_AUTHELIA_DB_PASSWORD"
notifier :
disable_startup_check : false
smtp :
username : YOUR@EMAIL.HERE
password : "YOUR_EMAIL_PASSWORD"
host : YOUR_SMTP_HOST
port : 587
sender : YOUR@EMAIL.HERE
identifier : localhost
subject : "[Authelia] {title}"
startup_check_address : test@authelia.com
disable_require_tls : false
disable_html_emails : false
tls :
skip_verify : false
minimum_version : TLS1.2
...
Note: Host lines may need to be updated to match the exact name of your container if you do not have the same as whats in the example file. Alternatively you can also you the IP for the service instead. See below for examples of alternative setups.
Copy mysql:
host: mariadb
port: 3306
Copy mysql:
host: MariaDB-Official
port: 3306
Copy mysql:
host: YOURSERVERIP
port: 3306