214 lines
5 KiB
Django/Jinja
214 lines
5 KiB
Django/Jinja
{
|
|
"theme": "auto",
|
|
"identity_validation": {
|
|
"reset_password": {
|
|
"jwt_secret": "{{cfg_authelia.jwt_secret}}"
|
|
}
|
|
},
|
|
"default_2fa_method": "totp",
|
|
"server": {
|
|
"address": "{{cfg_authelia.listen_address}}:9091",
|
|
"endpoints": {
|
|
"enable_pprof": false,
|
|
"enable_expvars": false
|
|
},
|
|
"disable_healthcheck": false
|
|
},
|
|
"log": {
|
|
"level": "info",
|
|
"format": "json",
|
|
"file_path": "{{cfg_authelia.log_file_path}}",
|
|
"keep_stdout": false
|
|
},
|
|
"telemetry": {
|
|
"metrics": {
|
|
"enabled": false,
|
|
"address": "tcp://0.0.0.0:9959"
|
|
}
|
|
},
|
|
"totp": {
|
|
"disable": false,
|
|
"issuer": "authelia.com",
|
|
"algorithm": "sha1",
|
|
"digits": 6,
|
|
"period": 30,
|
|
"skew": 1,
|
|
"secret_size": 32
|
|
},
|
|
"webauthn": {
|
|
"disable": true,
|
|
"timeout": "60s",
|
|
"display_name": "Authelia",
|
|
"attestation_conveyance_preference": "indirect",
|
|
"user_verification": "preferred"
|
|
},
|
|
"ntp": {
|
|
"address": "{{cfg_authelia.ntp_server}}",
|
|
"version": 4,
|
|
"max_desync": "3s",
|
|
"disable_startup_check": false,
|
|
"disable_failure": false
|
|
},
|
|
"authentication_backend": {
|
|
"password_reset": {
|
|
{% if cfg_authelia.password_reset.enabled %}
|
|
"disable": false,
|
|
{% else %}
|
|
"disable": true,
|
|
{% endif %}
|
|
"custom_url": {{cfg_authelia.password_reset.custom_url | to_json}}
|
|
},
|
|
"refresh_interval": "5m",
|
|
"file": {
|
|
"path": "{{cfg_authelia.users_file_path}}",
|
|
"watch": true,
|
|
"search": {
|
|
"email": false,
|
|
"case_insensitive": false
|
|
},
|
|
"password": {
|
|
"algorithm": "argon2",
|
|
"argon2": {
|
|
"variant": "argon2id",
|
|
"iterations": 3,
|
|
"memory": 65536,
|
|
"parallelism": 4,
|
|
"key_length": 32,
|
|
"salt_length": 16
|
|
},
|
|
"scrypt": {
|
|
"iterations": 16,
|
|
"block_size": 8,
|
|
"parallelism": 1,
|
|
"key_length": 32,
|
|
"salt_length": 16
|
|
},
|
|
"pbkdf2": {
|
|
"variant": "sha512",
|
|
"iterations": 310000,
|
|
"salt_length": 16
|
|
},
|
|
"sha2crypt": {
|
|
"variant": "sha512",
|
|
"iterations": 50000,
|
|
"salt_length": 16
|
|
},
|
|
"bcrypt": {
|
|
"variant": "standard",
|
|
"cost": 12
|
|
}
|
|
}
|
|
}
|
|
},
|
|
"password_policy": {
|
|
"standard": {
|
|
"enabled": false,
|
|
"min_length": 8,
|
|
"max_length": 0,
|
|
"require_uppercase": true,
|
|
"require_lowercase": true,
|
|
"require_number": true,
|
|
"require_special": true
|
|
},
|
|
"zxcvbn": {
|
|
"enabled": false,
|
|
"min_score": 3
|
|
}
|
|
},
|
|
"access_control": {
|
|
"default_policy": "one_factor"
|
|
},
|
|
"session": {
|
|
"name": "authelia_session",
|
|
"same_site": "lax",
|
|
"secret": "{{cfg_authelia.session_secret}}",
|
|
"expiration": "1h",
|
|
"inactivity": "5m",
|
|
"remember_me": "1M",
|
|
"cookies": [
|
|
{
|
|
"domain": "{{cfg_authelia.session_domain}}",
|
|
"authelia_url": "https://{{cfg_authelia.domain}}/",
|
|
"default_redirection_url": "{{cfg_authelia.redirect_url}}"
|
|
}
|
|
]
|
|
},
|
|
"regulation": {
|
|
"max_retries": 3,
|
|
"find_time": "2m",
|
|
"ban_time": "5m"
|
|
},
|
|
"storage": {
|
|
"encryption_key": "{{cfg_authelia.storage_encryption_key}}",
|
|
{% if cfg_authelia.storage.kind == "sqlite" %}
|
|
"local": {
|
|
"path": "{{cfg_authelia.storage.data.path}}"
|
|
}
|
|
{% endif %}
|
|
{% if cfg_authelia.storage.kind == "postgresql" %}
|
|
"postgres": {
|
|
"address": "{{cfg_authelia.storage.data.host}}:{{cfg_authelia.storage.data.port | string}}",
|
|
"schema": "public",
|
|
"username": "{{cfg_authelia.storage.data.username}}",
|
|
"password": "{{cfg_authelia.storage.data.password}}",
|
|
"database": "{{cfg_authelia.storage.data.schema}}"
|
|
}
|
|
{% endif %}
|
|
{% if cfg_authelia.storage.kind == "mariadb" %}
|
|
"mysql": {
|
|
"host": "{{cfg_authelia.storage.data.host}}",
|
|
"port": {{cfg_authelia.storage.data.port | string}},
|
|
"username": "{{cfg_authelia.storage.data.username}}",
|
|
"password": "{{cfg_authelia.storage.data.password}}",
|
|
"database": "{{cfg_authelia.storage.data.schema}}"
|
|
}
|
|
{% endif %}
|
|
},
|
|
"notifier": {
|
|
"disable_startup_check": true,
|
|
{% if cfg_authelia.notification.kind == "file" %}
|
|
"filesystem": {
|
|
"filename": "{{cfg_authelia.notification.data.path}}"
|
|
}
|
|
{% endif %}
|
|
{% if cfg_authelia.notification.kind == "smtp" %}
|
|
"smtp": {
|
|
"address": "{{cfg_authelia.notification.data.host}}:{{cfg_authelia.notification.data.port | string}}",
|
|
"username": "{{cfg_authelia.notification.data.username}}",
|
|
"password": "{{cfg_authelia.notification.data.password}}",
|
|
"sender": "{{cfg_authelia.notification.data.sender}}",
|
|
"disable_require_tls": false,
|
|
"disable_html_emails": false,
|
|
"tls": {
|
|
"skip_verify": false
|
|
}
|
|
}
|
|
{% endif %}
|
|
},
|
|
"identity_providers": {
|
|
"oidc": {
|
|
"hmac_secret": "{{cfg_authelia.oidc.hmac_secret}}",
|
|
"jwks": [
|
|
{
|
|
"algorithm": "RS256",
|
|
"key": "{{temp_tls_result.privatekey | replace('\n', '\\n')}}"
|
|
}
|
|
],
|
|
"lifespans": {
|
|
"access_token": "{{cfg_authelia.oidc.lifespan.default.access_token}}",
|
|
"refresh_token": "{{cfg_authelia.oidc.lifespan.default.refresh_token}}",
|
|
"custom": {{cfg_authelia.oidc.lifespan.custom | to_json}}
|
|
},
|
|
"cors": {
|
|
"allowed_origins_from_client_redirect_uris": true
|
|
{% if cfg_authelia.oidc.cors_endpoints == None %}
|
|
{% else %}
|
|
,"endpoints": {{cfg_authelia.oidc.cors_endpoints | to_json}}
|
|
{% endif %}
|
|
},
|
|
"clients": [
|
|
]
|
|
}
|
|
}
|
|
}
|