Docker Hub:
GitHub:
Credits:
server:
host: 0.0.0.0
port: 9091
read_buffer_size: 4096
write_buffer_size: 4096
path: "authelia"
log:
level: debug
file_path: /config/authelia.log
jwt_secret: a_very_secret_secret (use 64-bit random hex string)
totp:
issuer: YOUR_DOMAIN_HERE #Root domain, ex. selfhosting.wiki
period: 30
skew: 0
authentication_backend:
disable_reset_password: false
file:
path: /config/users_database.yml
password: #You can use any values below (keep argon2id), following are just an example
algorithm: argon2id
iterations: 1
key_length: 32
salt_length: 16
memory: 512
parallelism: 2
access_control:
default_policy: deny
rules:
- domain:
- YOUR_DOMAIN_HERE #Root domain, ex. selfhosting.wiki
- "*.YOUR_DOMAIN_HERE"
policy: two_factor
session:
name: authelia_session
secret: a_different_very_secret_secret (use different 64-bit random hex string)
expiration: 3h
inactivity: 25m
remember_me_duration: 4h
domain: YOUR_DOMAIN_HERE #Root domain, ex. selfhosting.wiki
regulation:
max_retries: 3
find_time: 2m
ban_time: 5m
storage:
encryption_key: another_different_very_secret_secret (use another different 64-bit random hex string)
local:
path: /config/db.sqlite3
notifier:
smtp:
username: YOUR_EMAIL_ADDRESS
password: YOUR_EMAIL_PASSWORD_OR_APP_KEY
host: YOUR_SMTP_PROVIDER_HOST
port: YOUR_SMTP_PROVIDER_PORT
sender: YOUR_EMAIL_ADDRESS
subject: "[Authelia] {title}"
startup_check_address: [email protected]
disable_require_tls: false
disable_html_emails: false
tls:
skip_verify: false
minimum_version: TLS1.2