Authelia is an open-source authentication and authorization server and portal fulfilling the identity and access management (IAM) role of information security in providing multi-factor authentication and single sign-on (SSO) for your applications via a web portal. It acts as a companion for common reverse proxies.
authelia from bjw-s is more popular with 18 repositories.
Install with:
helm repo add authelia-charts https://charts.authelia.com/
helm install authelia authelia-charts/authelia -f values.yaml
See examples from other people.
Name | Repo | Stars | Version | Timestamp |
---|---|---|---|---|
authelia | wrmilling/k3s-gitops | 178 | 0.8.57 | a day ago |
authelia | dfroberg/cluster | 42 | 0.8.38 | a year ago |
See the most popular values for this chart:
Key | Types |
---|---|
string | |
configMap.access_control.rules[].policy (4) bypass | string |
configMap.access_control.rules[].domain (3) *.${SECRET_DOMAIN} | string |
configMap.access_control.rules[].domain[] (3) - paperless.${SECRET_DOMAIN} | string |
string | |
configMap.access_control.rules[].subject[] (2) - group:admins | string |
configMap.access_control.rules[].resources[] (1) - ^/api([/?].*)?$ | string |
string | |
configMap.access_control.networks[].networks[] (3) - ${PRIVATE_NETWORK} | string |
boolean | |
boolean | |
configMap.notifier.smtp.host (5) smtp.gmail.com | string |
number | |
configMap.notifier.smtp.sender (5) authelia@${SECRET_DOMAIN} | string |
configMap.notifier.smtp.subject (4) [Authelia] {title} | string |
configMap.notifier.smtp.username (4) mail@${SECRET_DOMAIN} | string |
configMap.notifier.smtp.identifier (3) ${SECRET_DOMAIN} | string |
configMap.notifier.smtp.startup_check_address (3) ${SECRET_SMTP_USER} | string |
boolean | |
boolean | |
string | |
boolean | |
boolean | |
configMap.notifier.filesystem.filename (1) /config/notification.txt | string |
boolean | |
boolean | |
configMap.session.redis.host (5) authelia-redis-master | string |
number | |
number | |
string | |
string | |
string | |
configMap.session.name (3) authelia_session | string |
string | |
string | |
boolean | |
configMap.storage.postgres.host (4) authelia-postgresql | string |
string | |
string | |
number | |
string | |
string | |
boolean | |
configMap.storage.local.path (1) /config/db.sqlite3 | string |
boolean | |
boolean | |
string | |
configMap.authentication_backend.ldap.base_dn (3) ${SECRET_LDAP_BASE_DN} | string |
configMap.authentication_backend.ldap.groups_filter (3) (&(member={dn})(objectclass=posixGroup)) | string |
string | |
configMap.authentication_backend.ldap.url (3) ldap://openldap.auth.svc.cluster.local:389 | string |
configMap.authentication_backend.ldap.user (3) cn=admin,${SECRET_LDAP_BASE_DN} | string |
string | |
configMap.authentication_backend.ldap.users_filter (3) (&({username_attribute}={input})(objectClass=posixAccount)) | string |
string | |
string | |
configMap.authentication_backend.ldap.mail_attribute (1) ${SECRET_ACME_EMAIL} | string |
boolean | |
string | |
number | |
number | |
number | |
number | |
number | |
string | |
configMap.authentication_backend.file.path (3) /config/users_database.yml | string |
boolean | |
string | |
boolean | |
string | |
string | |
string | |
number | |
number | |
number | |
configMap.totp.issuer (1) ${SECRET_PUBLIC_DOMAIN} | string |
domain (6) ${SECRET_DOMAIN} | string |
boolean | |
string | |
boolean | |
ingress.tls.secret (3) ${SECRET_DOMAIN//./-}-tls | string |
ingress.annotations."external-dns.alpha.kubernetes.io/target" (3) ${SECRET_GATEWAY} | string |
string | |
ingress.annotations."cert-manager.io/cluster-issuer" (1) letsencrypt-prod | string |
string | |
string | |
ingress.annotations."hajimari.io/icon" (1) alarm-light-outline | string |
string | |
string | |
string | |
string | |
string | |
string | |
string | |
boolean | |
boolean | |
ingress.traefikCRD.entryPoints[] (1) - websecure | string |
pod.kind (5) Deployment | string |
number | |
pod.extraVolumeMounts[].mountPath (3) /config/users_database.yml | string |
pod.extraVolumeMounts[].name (3) users-volume | string |
pod.extraVolumeMounts[].subPath (2) users_database.yml | string |
pod.extraVolumes[].name (3) users-volume | string |
pod.extraVolumes[].secret.secretName (2) authelia-users | string |
pod.extraVolumes[].configMap.items[].key (1) users_database.yml | string |
pod.extraVolumes[].configMap.items[].path (1) users_database.yml | string |
pod.extraVolumes[].configMap.name (1) authelia-config-custom | string |
string, number | |
string | |
string | |
pod.strategy.type (3) Recreate | string |
string | |
pod.env[].value (2) ${CLUSTER_TZ} | string |
string | |
string | |
string | |
pod.env.AUTHELIA_DEFAULT_REDIRECTION_URL (1) https://auth.${SECRET_DOMAIN} | string |
string | |
string | |
number | |
pod.env.AUTHELIA_SESSION_DOMAIN (1) ${SECRET_DOMAIN} | string |
string | |
pod.env.AUTHELIA_TOTP_ISSUER (1) authelia.com | string |
string | |
string | |
string | |
secret.existingSecret (4) authelia-secrets | string |
secret.redis.key (3) REDIS_PASSWORD | string |
secret.redis.value (2) ${SECRET_REDIS_PASSWORD} | string |
secret.redis.filename (1) REDIS_PASSWORD | string |
secret.smtp.key (3) SMTP_PASSWORD | string |
secret.smtp.value (2) ${SECRET_AUTHELIA_SMTP_PASSWORD} | string |
secret.smtp.filename (1) SMTP_PASSWORD | string |
secret.storage.key (3) STORAGE_PASSWORD | string |
secret.storage.value (2) ${SECRET_AUTHELIA_POSTGRES_PASSWORD} | string |
secret.storage.filename (1) STORAGE_PASSWORD | string |
secret.jwt.key (2) JWT_TOKEN | string |
secret.jwt.filename (1) JWT_TOKEN | string |
secret.jwt.value (1) ${SECRET_AUTHELIA_JWT_SECRET} | string |
secret.ldap.key (2) LDAP_ADMIN_PASSWORD | string |
secret.ldap.value (1) ${SECRET_LDAP_ADMIN_PASSWORD} | string |
secret.storageEncryptionKey.key (2) STORAGE_ENCRYPTION_KEY | string |
secret.storageEncryptionKey.filename (1) STORAGE_ENCRYPTION_KEY | string |
secret.storageEncryptionKey.value (1) ${SECRET_AUTHELIA_STORAGE_ENCRYPTION_KEY} | string |
secret.redisSentinel.key (1) redis_password | string |
secret.session.key (1) session_encryption_key | string |
envFrom[].secretRef.name (1) authelia-secrets | string |
boolean | |
persistence.existingClaim (1) pvc-authelia | string |
string | |
string | |
number |