Current state

authelia/configuration.yml

@@ -0,0 +1,54 @@
+authentication_backend:
+  refresh_interval: '5m'
+  password_reset:
+    disable: false
+    custom_url: ''
+  password_change:
+    disable: false
+  file:
+    path: '/config/users.yml'
+    watch: false
+    search:
+      email: false
+      case_insensitive: false
+    password:
+      algorithm: 'argon2'
+      argon2:
+        variant: 'argon2id'
+        iterations: 3
+        memory: 65536
+        parallelism: 4
+        key_length: 32
+        salt_length: 16
+session:
+  name: 'authelia_session'
+  # same_site: 'lax'
+  inactivity: '5m'
+  expiration: '1h'
+  remember_me: '1M'
+  cookies:
+    - domain: 'loadingm.xyz'
+      authelia_url: 'https://auth.loadingm.xyz'
+      default_redirection_url: 'https://loadingm.xyz'
+      name: 'authelia_session'
+      same_site: 'lax'
+      inactivity: '5m'
+      expiration: '1h'
+      remember_me: '1d'
+notifier:
+  disable_startup_check: false
+  filesystem:
+    filename: '/config/notification.txt'
+storage:
+  local:
+    path: '/config/db.sqlite3'
+access_control:
+  default_policy: deny
+  rules:
+    - domain: '*.loadingm.xyz'
+      policy: one_factor
+server:
+  endpoints:
+    authz:
+      auth-request:
+        implementation: 'AuthRequest'

authelia/gen-secrets.sh

@@ -0,0 +1,10 @@
+#!/bin/bash
+
+parent_path=$( cd "$(dirname "${BASH_SOURCE[0]}")" ; pwd -P )
+cd $parent_path
+mkdir -p ./secrets
+openssl rand -base64 60 > ./secrets/JWT_SECRET
+openssl rand -base64 60 > ./secrets/SESSION_SECRET
+openssl rand -base64 60 > ./secrets/STORAGE_PASSWORD
+openssl rand -base64 60 > ./secrets/STORAGE_ENCRYPTION_KEY
+