Authelia Collection
Add the Authelia Collection
sudo nano /opt/appdata/crowdsec/docker-compose.yml
version: "3.4"
services:
crowdsec:
image: crowdsecurity/crowdsec
container_name: crowdsec
expose:
- 8080
environment:
PGID: "1000"
COLLECTIONS: "crowdsecurity/traefik crowdsecurity/http-cve LePresidente/authelia"
volumes:
- /opt/appdata/crowdsec/data:/var/lib/crowdsec/data
- /opt/appdata/crowdsec:/etc/crowdsec
- /var/log/auth.log:/var/log/auth.log:ro
- /var/log/crowdsec:/var/log/crowdsec:ro
restart: unless-stopped
crowdsec-traefik-bouncer:
image: fbonalair/traefik-crowdsec-bouncer
container_name: bouncer-traefik
environment:
CROWDSEC_BOUNCER_API_KEY: YourSuperSecureAPIKey
CROWDSEC_AGENT_HOST: crowdsec:8080
GIN_MODE: release
depends_on:
- crowdsec
restart: unless-stopped
networks:
default:
external: true
name: proxy
Add Authelia to the acquis.yml
sudo nano /opt/appdata/crowdsec/acquis.yaml
filenames:
- /var/log/crowdsec/traefik.log
labels:
type: traefik
---
filenames:
- /var/log/auth.log
labels:
type: syslog
---
filenames:
- /var/log/crowdsec/authelia.log
labels:
type: authelia
Enable Logging to file
sudo nano /opt/appdata/authelia/configuration.yml
log:
level: info
format: json
file_path: "/var/log/crowdsec/authelia.log"
keep_stdout: true
Add Log File Bind Mount
sudo nano /opt/appdata/authelia/docker-compose.yml
volumes:
- /opt/appdata/authelia:/config
- /var/log/crowdsec:/var/log/crowdsec
Restart Containers
cd /opt/appdata/authelia; sudo docker-compose up -d
cd /opt/appdata/crowdsec; sudo docker-compose up -d
Last updated