Authelia is an open-source authentication and authorization server and portal fulfilling the identity and access management (IAM) role of information security in providing multi-factor authentication and single sign-on (SSO) for your applications via a web portal. It acts as a companion for common reverse proxies.
authelia from bjw-s-labs/helm/app-template is more popular with 20 repositories.
Install with:
helm repo add bjw-s https://bjw-s-labs.github.io/helm-charts/
helm install authelia bjw-s/app-template -f values.yaml
See examples from other people.
Name | Repo | Stars | Version | Timestamp |
---|---|---|---|---|
authelia | Diaoul/home-ops | 77 | 4.2.0 | 6 hours ago |
authelia | vaskozl/home-infra | 95 | 4.2.0 | a day ago |
authelia | carpenike/k8s-gitops | 282 | 2.0.1 | 9 months ago |
See the most popular values for this chart:
Key | Types |
---|---|
persistence.config.name (6) authelia-configmap | string |
persistence.config.type (6) configMap | string |
persistence.config.globalMounts[].path (5) /config/configuration.yaml | string |
boolean | |
persistence.config.globalMounts[].subPath (4) configuration.yaml | string |
boolean | |
persistence.config.mountPath (1) /config/configuration.yaml | string |
boolean | |
persistence.config.subPath (1) configuration.yaml | string |
persistence.secret-files.globalMounts[].path (2) /config/secret | string |
persistence.secret-files.name (2) authelia-oauth-secret | string |
string | |
boolean | |
boolean | |
persistence.data.existingClaim (1) data-authelia | string |
string | |
persistence.secrets.globalMounts[].path (1) /config/secrets | string |
boolean | |
persistence.secrets.name (1) authelia | string |
string | |
persistence.tmp.type (1) emptyDir | string |
controllers.authelia.containers.app.image.repository (5) ghcr.io/authelia/authelia | string |
controllers.authelia.containers.app.image.tag (5) 4.39.5@sha256:023e02e5203dfa0ebaee7a48b5bae34f393d1f9cada4a9df7fbf87eb1759c671 | string |
boolean | |
boolean | |
number | |
string | |
number | |
number | |
number | |
number | |
boolean | |
boolean | |
number | |
string | |
number | |
number | |
number | |
number | |
string | |
number | |
string | |
string | |
boolean | |
string | |
boolean | |
string | |
string | |
string | |
string | |
string | |
controllers.authelia.containers.app.env.X_AUTHELIA_CONFIG (4) /config/configuration.yaml | string |
string | |
controllers.authelia.containers.app.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_ADDRESS (1) ldap://lldap.kube-auth.svc.cluster.local:389 | string |
string | |
string | |
string | |
string | |
string | |
string | |
string | |
string | |
string | |
string | |
string | |
string | |
string | |
controllers.authelia.containers.app.args[] (1) - --config | string |
number | |
controllers.authelia.strategy (4) RollingUpdate | string |
string | |
string | |
controllers.authelia.initContainers.init-db.image.repository (2) ghcr.io/home-operations/postgres-init | string |
number | |
number | |
boolean | |
number | |
string | |
number | |
string | |
string | |
string | |
number | |
controllers.authelia.pod.topologySpreadConstraints[].topologyKey (1) kubernetes.io/hostname | string |
string | |
string | |
string | |
string | |
string | |
string | |
controllers.authelia.type (1) statefulset | string |
ingress.app.hosts[].host (5) auth.${DOMAIN_NAME} | string |
string | |
string | |
string | |
ingress.app.className (4) external | string |
ingress.app.annotations."nginx.ingress.kubernetes.io/configuration-snippet" (2) add_header Cache-Control "no-store";
add_header Pragma "no-cache";
add_header X-Frame-Options "SAMEORIGIN";
add_header X-XSS-Protection "1; mode=block";
| string |
ingress.app.annotations."traefik.ingress.kubernetes.io/router.middlewares" (2) network-system-authelia-headers@kubernetescrd | string |
string | |
ingress.app.annotations."external-dns.alpha.kubernetes.io/target" (1) ipv4.${SECRET_PUBLIC_DOMAIN} | string |
ingress.app.annotations."hajimari.io/icon" (1) mdi:shield-account | string |
string | |
boolean | |
ingress.app.tls[].hosts[] (1) - auth.ergho.org | string |
ingress.main.annotations."external-dns.alpha.kubernetes.io/target" (1) external.holthome.net | string |
ingress.main.annotations."nginx.ingress.kubernetes.io/configuration-snippet" (1) add_header Cache-Control "no-store";
add_header Pragma "no-cache";
add_header X-Frame-Options "SAMEORIGIN";
add_header X-XSS-Protection "1; mode=block";
| string |
boolean | |
ingress.main.hosts[].host (1) auth.holthome.net | string |
string | |
string | |
ingress.main.ingressClassName (1) external-nginx | string |
ingress.main.tls[].hosts[] (1) - auth.holthome.net | string |
service.app.controller (5) authelia | string |
number | |
boolean | |
number | |
boolean | |
boolean | |
number | |
boolean | |
number | |
number | |
boolean | |
number | |
string | |
number | |
string | |
number | |
defaultPodOptions.topologySpreadConstraints[].topologyKey (2) kubernetes.io/hostname | string |
string | |
boolean | |
boolean | |
string | |
string | |
string | |
string | |
string | |
string | |
boolean | |
boolean | |
string | |
string | |
string | |
string | |
string | |
args[] (1) - --config | string |
string | |
number | |
controller.strategy (1) Recreate | string |
boolean | |
string | |
string | |
env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_BASE_DN (1) dc=holthome,dc=net | string |
string | |
string | |
string | |
string | |
string | |
string | |
string | |
env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_URL (1) ldap://lldap.security.svc.cluster.local:389 | string |
string | |
env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_USERS_FILTER (1) (&({username_attribute}={input})(objectClass=person)) | string |
string | |
string | |
env.AUTHELIA_DEFAULT_REDIRECTION_URL (1) https://auth.holthome.net | string |
string | |
string | |
env.AUTHELIA_NOTIFIER_SMTP_HOST (1) smtp.mailgun.org | string |
string | |
env.AUTHELIA_NOTIFIER_SMTP_SENDER (1) Authelia <authelia@holthome.net> | string |
env.AUTHELIA_NOTIFIER_SMTP_USERNAME (1) authelia@holthome.net | string |
string | |
number | |
env.AUTHELIA_SESSION_DOMAIN (1) holthome.net | string |
env.AUTHELIA_SESSION_NAME (1) authelia-home-ops | string |
env.AUTHELIA_STORAGE_LOCAL_PATH (1) /data/db.sqlite3 | string |
env.AUTHELIA_TELEMETRY_METRICS_ADDRESS (1) tcp://0.0.0.0:8080 | string |
string | |
string | |
env.AUTHELIA_TOTP_ISSUER (1) authelia.com | string |
string | |
envFrom[].secretRef.name (1) authelia-secret | string |
image.repository (1) ghcr.io/authelia/authelia | string |
image.tag (1) master@sha256:bf33fbcf6a63e76be876908118a522c1d3aa99049957f9f83c490f076348e615 | string |
number | |
podSecurityContext.fsGroupChangePolicy (1) OnRootMismatch | string |
number | |
number | |
boolean | |
boolean | |
number | |
probes.liveness.spec.httpGet.path (1) /api/health | string |
number | |
number | |
number | |
number | |
boolean | |
boolean | |
number | |
probes.readiness.spec.httpGet.path (1) /api/health | string |
number | |
number | |
number | |
number | |
boolean | |
boolean | |
number | |
probes.startup.spec.httpGet.path (1) /api/health | string |
number | |
number | |
number | |
number | |
string | |
string | |
string | |
string | |
number | |
topologySpreadConstraints[].topologyKey (1) kubernetes.io/hostname | string |
topologySpreadConstraints[].whenUnsatisfiable (1) DoNotSchedule | string |