authelia helm

Authelia is an open-source authentication and authorization server and portal fulfilling the identity and access management (IAM) role of information security in providing multi-factor authentication and single sign-on (SSO) for your applications via a web portal. It acts as a companion for common reverse proxies.

Install

Install with:

helm repo add bjw-s oci://ghcr.io/bjw-s/helm/
helm install authelia bjw-s/app-template -f values.yaml

Examples

See examples from other people.

Top Repositories (5 out of 27)

NameRepoStarsVersionTimestamp
autheliavaskozl/home-infra923.7.35 days ago
autheliaDiaoul/home-ops713.7.36 days ago
autheliacoolguy1771/home-ops713.7.32 months ago
autheliabrettinternet/homeops2313.5.17 months ago
autheliatoboshii/home-ops3440.2.2a year ago

Values

See the most popular values for this chart:

KeyTypes
persistence.config.name (27)
authelia-configmap
string
persistence.config.type (27)
configMap
string
persistence.config.globalMounts[].path (23)
/config/configuration.yaml
string
persistence.config.globalMounts[].readOnly (22)
true
boolean
persistence.config.globalMounts[].subPath (21)
configuration.yaml
string
persistence.config.enabled (12)
true
boolean
persistence.config.advancedMounts.authelia.app[].path (2)
string
persistence.config.advancedMounts.authelia.app[].readOnly (2)
boolean
persistence.config.advancedMounts.authelia.app[].subPath (2)
string
persistence.config.mountPath (2)
string
persistence.config.readOnly (2)
boolean
persistence.config.subPath (2)
string
persistence.secret-files.enabled (3)
true
boolean
persistence.secret-files.name (3)
string
persistence.secret-files.type (3)
secret
string
persistence.secret-files.globalMounts[].path (2)
string
persistence.secret-files.advancedMounts.authelia.app[].path (1)
string
persistence.data.existingClaim (2)
string
persistence.data.enabled (1)
boolean
persistence.data.globalMounts[].path (1)
string
persistence.data.type (1)
string
persistence.tmp.type (2)
string
persistence.trusted-certs.advancedMounts.authelia.app[].path (2)
string
persistence.trusted-certs.advancedMounts.authelia.app[].readOnly (2)
boolean
persistence.trusted-certs.advancedMounts.authelia.app[].subPath (2)
string
persistence.trusted-certs.name (2)
string
persistence.trusted-certs.type (2)
string
persistence.oidc-issuer.advancedMounts.authelia.app[].path (1)
string
persistence.oidc-issuer.advancedMounts.authelia.app[].readOnly (1)
boolean
persistence.oidc-issuer.advancedMounts.authelia.app[].subPath (1)
string
persistence.oidc-issuer.name (1)
string
persistence.oidc-issuer.type (1)
string
persistence.secrets.globalMounts[].path (1)
string
persistence.secrets.globalMounts[].readOnly (1)
boolean
persistence.secrets.name (1)
string
persistence.secrets.type (1)
string
persistence.users.globalMounts[].path (1)
string
persistence.users.globalMounts[].readOnly (1)
boolean
persistence.users.globalMounts[].subPath (1)
string
persistence.users.name (1)
string
persistence.users.type (1)
string
controllers.authelia.containers.app.image.repository (20)
ghcr.io/authelia/authelia
string
controllers.authelia.containers.app.image.tag (20)
4.39.1@sha256:e325963609cc928861ffe8130c09111862df88dd8fcafbcd2c47e5ff0a4ae268
string
controllers.authelia.containers.app.resources.limits.memory (20)
128Mi
string
controllers.authelia.containers.app.resources.limits.cpu (1)
number
controllers.authelia.containers.app.resources.requests.cpu (20)
10m
string
controllers.authelia.containers.app.resources.requests.memory (10)
32Mi
string
controllers.authelia.containers.app.probes.liveness.enabled (19)
true
boolean
controllers.authelia.containers.app.probes.liveness.custom (18)
true
boolean
controllers.authelia.containers.app.probes.liveness.spec.failureThreshold (18)
3
number
controllers.authelia.containers.app.probes.liveness.spec.httpGet.path (18)
/api/health
string
controllers.authelia.containers.app.probes.liveness.spec.httpGet.port (18)
80
number
controllers.authelia.containers.app.probes.liveness.spec.periodSeconds (18)
10
number
controllers.authelia.containers.app.probes.liveness.spec.timeoutSeconds (18)
1
number
controllers.authelia.containers.app.probes.liveness.spec.initialDelaySeconds (17)
0
number
controllers.authelia.containers.app.probes.readiness.enabled (19)
true
boolean
controllers.authelia.containers.app.probes.readiness.custom (18)
true
boolean
controllers.authelia.containers.app.probes.readiness.spec.failureThreshold (18)
3
number
controllers.authelia.containers.app.probes.readiness.spec.httpGet.path (18)
/api/health
string
controllers.authelia.containers.app.probes.readiness.spec.httpGet.port (18)
80
number
controllers.authelia.containers.app.probes.readiness.spec.periodSeconds (18)
10
number
controllers.authelia.containers.app.probes.readiness.spec.timeoutSeconds (18)
1
number
controllers.authelia.containers.app.probes.readiness.spec.initialDelaySeconds (17)
0
number
controllers.authelia.containers.app.probes.startup.enabled (8)
false
boolean
controllers.authelia.containers.app.probes.startup.custom (2)
boolean
controllers.authelia.containers.app.probes.startup.spec.failureThreshold (2)
number
controllers.authelia.containers.app.probes.startup.spec.httpGet.path (2)
string
controllers.authelia.containers.app.probes.startup.spec.httpGet.port (2)
number
controllers.authelia.containers.app.probes.startup.spec.periodSeconds (2)
number
controllers.authelia.containers.app.env.AUTHELIA_SERVER_DISABLE_HEALTHCHECK (18)
true
string, boolean
controllers.authelia.containers.app.env.AUTHELIA_TELEMETRY_METRICS_ADDRESS (18)
tcp://0.0.0.0:8080
string
controllers.authelia.containers.app.env.AUTHELIA_TELEMETRY_METRICS_ENABLED (18)
true
string, boolean
controllers.authelia.containers.app.env.AUTHELIA_THEME (18)
dark
string
controllers.authelia.containers.app.env.AUTHELIA_SERVER_ADDRESS (16)
tcp://0.0.0.0:80
string
controllers.authelia.containers.app.env.X_AUTHELIA_CONFIG (16)
/config/configuration.yaml
string
controllers.authelia.containers.app.env.X_AUTHELIA_CONFIG_FILTERS (16)
expand-env
string
controllers.authelia.containers.app.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_ADDITIONAL_GROUPS_DN (3)
string
controllers.authelia.containers.app.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_ADDITIONAL_USERS_DN (3)
string
controllers.authelia.containers.app.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_BASE_DN (3)
dc=home,dc=arpa
string
controllers.authelia.containers.app.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_GROUPS_FILTER (3)
string
controllers.authelia.containers.app.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_IMPLEMENTATION (3)
custom
string
controllers.authelia.containers.app.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_START_TLS (3)
false
string
controllers.authelia.containers.app.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_TIMEOUT (3)
5s
string
controllers.authelia.containers.app.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_USER (3)
string
controllers.authelia.containers.app.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_USERS_FILTER (3)
string
controllers.authelia.containers.app.env.AUTHELIA_AUTHENTICATION_BACKEND_PASSWORD_RESET_DISABLE (3)
string
controllers.authelia.containers.app.env.AUTHELIA_AUTHENTICATION_BACKEND_REFRESH_INTERVAL (3)
1m
string
controllers.authelia.containers.app.env.AUTHELIA_LOG_LEVEL (3)
debug
string
controllers.authelia.containers.app.env.AUTHELIA_NOTIFIER_DISABLE_STARTUP_CHECK (3)
true
string
controllers.authelia.containers.app.env.AUTHELIA_NOTIFIER_SMTP_SENDER (3)
string
controllers.authelia.containers.app.env.AUTHELIA_SERVER_PORT (3)
80
number
controllers.authelia.containers.app.env.AUTHELIA_SESSION_REDIS_DATABASE_INDEX (3)
number
controllers.authelia.containers.app.env.AUTHELIA_SESSION_REDIS_HOST (3)
string
controllers.authelia.containers.app.env.AUTHELIA_TOTP_ISSUER (3)
authelia.com
string
controllers.authelia.containers.app.env.TZ (3)
${TIMEZONE}
string
controllers.authelia.containers.app.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_ADDRESS (2)
string
controllers.authelia.containers.app.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_ATTRIBUTES_DISPLAY_NAME (2)
string
controllers.authelia.containers.app.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_ATTRIBUTES_GROUP_NAME (2)
string
controllers.authelia.containers.app.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_ATTRIBUTES_MAIL (2)
string
controllers.authelia.containers.app.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_ATTRIBUTES_USERNAME (2)
string
controllers.authelia.containers.app.env.AUTHELIA_CERTIFICATES_DIRECTORY (2)
string
controllers.authelia.containers.app.env.AUTHELIA_DUO_API_DISABLE (2)
string
controllers.authelia.containers.app.env.AUTHELIA_NOTIFIER_SMTP_ADDRESS (2)
string
controllers.authelia.containers.app.env.AUTHELIA_NOTIFIER_SMTP_DISABLE_REQUIRE_TLS (2)
string
controllers.authelia.containers.app.env.AUTHELIA_WEBAUTHN_DISABLE (2)
string
controllers.authelia.containers.app.env.AUTHELIA_ACCESS_CONTROL_DEFAULT_POLICY (1)
string
controllers.authelia.containers.app.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_ATTRIBUTES_MEMBER_OF (1)
string
controllers.authelia.containers.app.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_DISPLAY_NAME_ATTRIBUTE (1)
string
controllers.authelia.containers.app.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_GROUP_NAME_ATTRIBUTE (1)
string
controllers.authelia.containers.app.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_MAIL_ATTRIBUTE (1)
string
controllers.authelia.containers.app.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_PASSWORD_FILE (1)
string
controllers.authelia.containers.app.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_URL (1)
string
controllers.authelia.containers.app.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_USERNAME_ATTRIBUTE (1)
string
controllers.authelia.containers.app.env.AUTHELIA_DEFAULT_REDIRECTION_URL (1)
string
controllers.authelia.containers.app.env.AUTHELIA_DUO_API_INTEGRATION_KEY_FILE (1)
string
controllers.authelia.containers.app.env.AUTHELIA_DUO_API_SECRET_KEY_FILE (1)
string
controllers.authelia.containers.app.env.AUTHELIA_IDENTITY_PROVIDERS_OIDC_HMAC_SECRET_FILE (1)
string
controllers.authelia.containers.app.env.AUTHELIA_IDENTITY_PROVIDERS_OIDC_ISSUER_PRIVATE_KEY_FILE (1)
string
controllers.authelia.containers.app.env.AUTHELIA_NOTIFIER_SMTP_HOST (1)
string
controllers.authelia.containers.app.env.AUTHELIA_NOTIFIER_SMTP_PASSWORD_FILE (1)
string
controllers.authelia.containers.app.env.AUTHELIA_NOTIFIER_SMTP_PORT (1)
string
controllers.authelia.containers.app.env.AUTHELIA_SERVER_BUFFERS_READ (1)
number
controllers.authelia.containers.app.env.AUTHELIA_SERVER_BUFFERS_WRITE (1)
number
controllers.authelia.containers.app.env.AUTHELIA_SESSION_DOMAIN (1)
string
controllers.authelia.containers.app.env.AUTHELIA_SESSION_NAME (1)
string
controllers.authelia.containers.app.env.AUTHELIA_SESSION_REDIS_PASSWORD.valueFrom.secretKeyRef.key (1)
string
controllers.authelia.containers.app.env.AUTHELIA_SESSION_REDIS_PASSWORD.valueFrom.secretKeyRef.name (1)
string
controllers.authelia.containers.app.env.AUTHELIA_SESSION_REDIS_PORT (1)
number
controllers.authelia.containers.app.env.AUTHELIA_SESSION_SECRET_FILE (1)
string
controllers.authelia.containers.app.env.AUTHELIA_STORAGE_ENCRYPTION_KEY_FILE (1)
string
controllers.authelia.containers.app.env.AUTHELIA_STORAGE_LOCAL_PATH (1)
string
controllers.authelia.containers.app.env.AUTHELIA_STORAGE_POSTGRES_ADDRESS (1)
string
controllers.authelia.containers.app.env.AUTHELIA_STORAGE_POSTGRES_DATABASE (1)
string
controllers.authelia.containers.app.env.AUTHELIA_STORAGE_POSTGRES_PASSWORD_FILE (1)
string
controllers.authelia.containers.app.env.AUTHELIA_TOTP_DISABLE (1)
boolean
controllers.authelia.containers.app.env.AUTHELIA_WEBAUTHN_ENABLE_PASSKEY_LOGIN (1)
string
controllers.authelia.containers.app.env.CLUSTER_CIDR (1)
string
controllers.authelia.containers.app.env.HOME_CIDR (1)
string
controllers.authelia.containers.app.env.NODE_CIDR (1)
string
controllers.authelia.containers.app.env.SECRET_DOMAIN (1)
string
controllers.authelia.containers.app.env.SECRET_EXTERNAL_DOMAIN (1)
string
controllers.authelia.containers.app.env.SECRET_INTERNAL_DOMAIN (1)
string
controllers.authelia.containers.app.env.SECRET_PUBLIC_DOMAIN (1)
string
controllers.authelia.containers.app.envFrom[].secretRef.name (17)
authelia-secret
string
controllers.authelia.containers.app.securityContext.allowPrivilegeEscalation (15)
false
boolean
controllers.authelia.containers.app.securityContext.capabilities.drop[] (15)
- ALL
string
controllers.authelia.containers.app.securityContext.readOnlyRootFilesystem (15)
true
boolean
controllers.authelia.containers.app.args[] (4)
string
controllers.authelia.containers.app.command[] (1)
string
controllers.authelia.containers.main.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_BASE_DN.valueFrom.secretKeyRef.key (1)
string
controllers.authelia.containers.main.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_BASE_DN.valueFrom.secretKeyRef.name (1)
string
controllers.authelia.containers.main.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_PASSWORD.valueFrom.secretKeyRef.key (1)
string
controllers.authelia.containers.main.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_PASSWORD.valueFrom.secretKeyRef.name (1)
string
controllers.authelia.containers.main.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_USER.valueFrom.secretKeyRef.key (1)
string
controllers.authelia.containers.main.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_USER.valueFrom.secretKeyRef.name (1)
string
controllers.authelia.containers.main.env.AUTHELIA_NOTIFIER_SMTP_PASSWORD.valueFrom.secretKeyRef.key (1)
string
controllers.authelia.containers.main.env.AUTHELIA_NOTIFIER_SMTP_PASSWORD.valueFrom.secretKeyRef.name (1)
string
controllers.authelia.containers.main.env.AUTHELIA_STORAGE_POSTGRES_ADDRESS (1)
string
controllers.authelia.containers.main.env.AUTHELIA_STORAGE_POSTGRES_DATABASE.valueFrom.secretKeyRef.key (1)
string
controllers.authelia.containers.main.env.AUTHELIA_STORAGE_POSTGRES_DATABASE.valueFrom.secretKeyRef.name (1)
string
controllers.authelia.containers.main.env.AUTHELIA_STORAGE_POSTGRES_PASSWORD.valueFrom.secretKeyRef.key (1)
string
controllers.authelia.containers.main.env.AUTHELIA_STORAGE_POSTGRES_PASSWORD.valueFrom.secretKeyRef.name (1)
string
controllers.authelia.containers.main.env.AUTHELIA_STORAGE_POSTGRES_USERNAME.valueFrom.secretKeyRef.key (1)
string
controllers.authelia.containers.main.env.AUTHELIA_STORAGE_POSTGRES_USERNAME.valueFrom.secretKeyRef.name (1)
string
controllers.authelia.containers.main.env.X_AUTHELIA_CONFIG (1)
string
controllers.authelia.containers.main.env.X_AUTHELIA_CONFIG_FILTERS (1)
string
controllers.authelia.containers.main.envFrom[].secretRef.name (1)
string
controllers.authelia.containers.main.image.repository (1)
string
controllers.authelia.containers.main.image.tag (1)
string
controllers.authelia.containers.main.probes.liveness.enabled (1)
boolean
controllers.authelia.containers.main.probes.readiness.enabled (1)
boolean
controllers.authelia.containers.main.probes.startup.enabled (1)
boolean
controllers.authelia.containers.main.probes.startup.spec.failureThreshold (1)
number
controllers.authelia.containers.main.probes.startup.spec.periodSeconds (1)
number
controllers.authelia.containers.main.resources.requests.cpu (1)
string
controllers.authelia.containers.main.resources.requests.memory (1)
string
controllers.authelia.replicas (19)
2
number
controllers.authelia.strategy (19)
RollingUpdate
string
controllers.authelia.annotations."reloader.stakater.com/auto" (18)
true
string
controllers.authelia.annotations."secret.reloader.stakater.com/reload" (2)
string
controllers.authelia.pod.topologySpreadConstraints[].labelSelector.matchLabels."app.kubernetes.io/name" (13)
authelia
string
controllers.authelia.pod.topologySpreadConstraints[].maxSkew (13)
1
number
controllers.authelia.pod.topologySpreadConstraints[].topologyKey (13)
kubernetes.io/hostname
string
controllers.authelia.pod.topologySpreadConstraints[].whenUnsatisfiable (13)
DoNotSchedule
string
controllers.authelia.pod.securityContext.runAsGroup (10)
568
number
controllers.authelia.pod.securityContext.runAsUser (10)
568
number
controllers.authelia.pod.securityContext.runAsNonRoot (9)
true
boolean
controllers.authelia.pod.securityContext.fsGroup (1)
number
controllers.authelia.pod.securityContext.fsGroupChangePolicy (1)
string
controllers.authelia.pod.securityContext.seccompProfile.type (1)
string
controllers.authelia.pod.enableServiceLinks (3)
false
boolean
controllers.authelia.initContainers.init-db.image.repository (12)
ghcr.io/onedr0p/postgres-init
string
controllers.authelia.initContainers.init-db.image.tag (12)
16
string, number
controllers.authelia.initContainers.init-db.image.pullPolicy (2)
string
controllers.authelia.initContainers.init-db.envFrom[].secretRef.name (11)
authelia-secret
string
controllers.authelia.initContainers.init-db.env.INIT_POSTGRES_DBNAME (1)
string
controllers.authelia.initContainers.init-db.env.INIT_POSTGRES_HOST (1)
string
controllers.authelia.initContainers.init-db.env.INIT_POSTGRES_PASS.valueFrom.secretKeyRef.key (1)
string
controllers.authelia.initContainers.init-db.env.INIT_POSTGRES_PASS.valueFrom.secretKeyRef.name (1)
string
controllers.authelia.initContainers.init-db.env.INIT_POSTGRES_SUPER_PASS.valueFrom.secretKeyRef.key (1)
string
controllers.authelia.initContainers.init-db.env.INIT_POSTGRES_SUPER_PASS.valueFrom.secretKeyRef.name (1)
string
controllers.authelia.initContainers.init-db.env.INIT_POSTGRES_USER.valueFrom.secretKeyRef.key (1)
string
controllers.authelia.initContainers.init-db.env.INIT_POSTGRES_USER.valueFrom.secretKeyRef.name (1)
string
controllers.authelia.initContainers.01-init-db.envFrom[].secretRef.name (1)
string
controllers.authelia.initContainers.01-init-db.image.pullPolicy (1)
string
controllers.authelia.initContainers.01-init-db.image.repository (1)
string
controllers.authelia.initContainers.01-init-db.image.tag (1)
string
controllers.authelia.statefulset.podManagementPolicy (1)
string
controllers.authelia.statefulset.volumeClaimTemplates[].accessMode (1)
string
controllers.authelia.statefulset.volumeClaimTemplates[].globalMounts[].path (1)
string
controllers.authelia.statefulset.volumeClaimTemplates[].name (1)
string
controllers.authelia.statefulset.volumeClaimTemplates[].size (1)
string
controllers.authelia.type (1)
string
controllers.main.annotations."reloader.stakater.com/auto" (4)
true
string
controllers.main.containers.main.env.AUTHELIA_SERVER_DISABLE_HEALTHCHECK (4)
true
string, boolean
controllers.main.containers.main.env.AUTHELIA_TELEMETRY_METRICS_ADDRESS (4)
tcp://0.0.0.0:8080
string
controllers.main.containers.main.env.AUTHELIA_TELEMETRY_METRICS_ENABLED (4)
true
string, boolean
controllers.main.containers.main.env.AUTHELIA_THEME (4)
dark
string
controllers.main.containers.main.env.AUTHELIA_SERVER_ADDRESS (3)
string
controllers.main.containers.main.env.X_AUTHELIA_CONFIG (3)
string
controllers.main.containers.main.env.X_AUTHELIA_CONFIG_FILTERS (3)
expand-env
string
controllers.main.containers.main.env.AUTHELIA_LOG_LEVEL (2)
string
controllers.main.containers.main.env.AUTHELIA_NOTIFIER_DISABLE_STARTUP_CHECK (2)
string
controllers.main.containers.main.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_ADDITIONAL_GROUPS_DN (1)
string
controllers.main.containers.main.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_ADDITIONAL_USERS_DN (1)
string
controllers.main.containers.main.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_BASE_DN (1)
string
controllers.main.containers.main.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_DISPLAY_NAME_ATTRIBUTE (1)
string
controllers.main.containers.main.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_GROUP_NAME_ATTRIBUTE (1)
string
controllers.main.containers.main.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_GROUPS_FILTER (1)
string
controllers.main.containers.main.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_IMPLEMENTATION (1)
string
controllers.main.containers.main.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_MAIL_ATTRIBUTE (1)
string
controllers.main.containers.main.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_PASSWORD (1)
string
controllers.main.containers.main.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_START_TLS (1)
string
controllers.main.containers.main.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_TIMEOUT (1)
string
controllers.main.containers.main.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_URL (1)
string
controllers.main.containers.main.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_USER (1)
string
controllers.main.containers.main.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_USERNAME_ATTRIBUTE (1)
string
controllers.main.containers.main.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_USERS_FILTER (1)
string
controllers.main.containers.main.env.AUTHELIA_AUTHENTICATION_BACKEND_PASSWORD_RESET_DISABLE (1)
string
controllers.main.containers.main.env.AUTHELIA_AUTHENTICATION_BACKEND_REFRESH_INTERVAL (1)
string
controllers.main.containers.main.env.AUTHELIA_DEFAULT_REDIRECTION_URL (1)
string
controllers.main.containers.main.env.AUTHELIA_DUO_API_DISABLE (1)
string
controllers.main.containers.main.env.AUTHELIA_IDENTITY_PROVIDERS_OIDC_HMAC_SECRET (1)
string
controllers.main.containers.main.env.AUTHELIA_JWT_SECRET (1)
string
controllers.main.containers.main.env.AUTHELIA_NOTIFIER_SMTP_DISABLE_REQUIRE_TLS (1)
string
controllers.main.containers.main.env.AUTHELIA_NOTIFIER_SMTP_HOST (1)
string
controllers.main.containers.main.env.AUTHELIA_NOTIFIER_SMTP_PORT (1)
string
controllers.main.containers.main.env.AUTHELIA_NOTIFIER_SMTP_SENDER (1)
string
controllers.main.containers.main.env.AUTHELIA_SERVER_BUFFERS_READ (1)
string
controllers.main.containers.main.env.AUTHELIA_SERVER_PORT (1)
number
controllers.main.containers.main.env.AUTHELIA_SESSION_DOMAIN (1)
string
controllers.main.containers.main.env.AUTHELIA_SESSION_NAME (1)
string
controllers.main.containers.main.env.AUTHELIA_SESSION_SECRET (1)
string
controllers.main.containers.main.env.AUTHELIA_STORAGE_ENCRYPTION_KEY (1)
string
controllers.main.containers.main.env.AUTHELIA_STORAGE_POSTGRES_DATABASE (1)
string
controllers.main.containers.main.env.AUTHELIA_STORAGE_POSTGRES_HOST (1)
string
controllers.main.containers.main.env.AUTHELIA_STORAGE_POSTGRES_PASSWORD (1)
string
controllers.main.containers.main.env.AUTHELIA_STORAGE_POSTGRES_USERNAME (1)
string
controllers.main.containers.main.env.AUTHELIA_TOTP_ISSUER (1)
string
controllers.main.containers.main.env.AUTHELIA_WEBAUTHN_DISABLE (1)
string
controllers.main.containers.main.env.GRAFANA_OAUTH_CLIENT_SECRET (1)
string
controllers.main.containers.main.envFrom[].secretRef.name (4)
authelia-secret
string
controllers.main.containers.main.image.repository (4)
ghcr.io/authelia/authelia
string
controllers.main.containers.main.image.tag (4)
v4.38.0-beta3@sha256:b48ae4d0ed9d1eee76efe382df60928bae550ec19e5663858dde6dc5f41cf285
string
controllers.main.containers.main.probes.liveness.custom (4)
true
boolean
controllers.main.containers.main.probes.liveness.enabled (4)
true
boolean
controllers.main.containers.main.probes.liveness.spec.failureThreshold (4)
3
number
controllers.main.containers.main.probes.liveness.spec.httpGet.path (4)
/api/health
string
controllers.main.containers.main.probes.liveness.spec.httpGet.port (4)
80
number
controllers.main.containers.main.probes.liveness.spec.initialDelaySeconds (4)
0
number
controllers.main.containers.main.probes.liveness.spec.periodSeconds (4)
10
number
controllers.main.containers.main.probes.liveness.spec.timeoutSeconds (4)
1
number
controllers.main.containers.main.probes.readiness.custom (4)
true
boolean
controllers.main.containers.main.probes.readiness.enabled (4)
true
boolean
controllers.main.containers.main.probes.readiness.spec.failureThreshold (4)
3
number
controllers.main.containers.main.probes.readiness.spec.httpGet.path (4)
/api/health
string
controllers.main.containers.main.probes.readiness.spec.httpGet.port (4)
80
number
controllers.main.containers.main.probes.readiness.spec.initialDelaySeconds (4)
0
number
controllers.main.containers.main.probes.readiness.spec.periodSeconds (4)
10
number
controllers.main.containers.main.probes.readiness.spec.timeoutSeconds (4)
1
number
controllers.main.containers.main.probes.startup.enabled (4)
false
boolean
controllers.main.containers.main.resources.limits.memory (4)
string
controllers.main.containers.main.resources.requests.cpu (4)
string
controllers.main.containers.main.resources.requests.memory (3)
string
controllers.main.containers.main.securityContext.allowPrivilegeEscalation (2)
boolean
controllers.main.containers.main.securityContext.capabilities.drop[] (2)
string
controllers.main.containers.main.securityContext.readOnlyRootFilesystem (2)
boolean
controllers.main.containers.main.args[] (1)
string
controllers.main.pod.enableServiceLinks (4)
false
boolean
controllers.main.pod.securityContext.runAsGroup (4)
568
number
controllers.main.pod.securityContext.runAsUser (4)
568
number
controllers.main.pod.securityContext.runAsNonRoot (2)
boolean
controllers.main.pod.securityContext.fsGroup (1)
number
controllers.main.pod.securityContext.fsGroupChangePolicy (1)
string
controllers.main.pod.topologySpreadConstraints[].labelSelector.matchLabels."app.kubernetes.io/name" (4)
authelia
string
controllers.main.pod.topologySpreadConstraints[].maxSkew (4)
1
number
controllers.main.pod.topologySpreadConstraints[].topologyKey (4)
kubernetes.io/hostname
string
controllers.main.pod.topologySpreadConstraints[].whenUnsatisfiable (4)
DoNotSchedule
string
controllers.main.replicas (4)
2
number
controllers.main.strategy (4)
RollingUpdate
string
controllers.main.initContainers.init-db.envFrom[].secretRef.name (3)
authelia-secret
string
controllers.main.initContainers.init-db.image.repository (3)
string
controllers.main.initContainers.init-db.image.tag (3)
number
controllers.main.initContainers.init-db.image.pullPolicy (1)
string
controllers.main.initContainers.01-init-db.env.INIT_POSTGRES_DBNAME (1)
string
controllers.main.initContainers.01-init-db.env.INIT_POSTGRES_HOST (1)
string
controllers.main.initContainers.01-init-db.env.INIT_POSTGRES_PASS (1)
string
controllers.main.initContainers.01-init-db.env.INIT_POSTGRES_SUPER_PASS (1)
string
controllers.main.initContainers.01-init-db.env.INIT_POSTGRES_USER (1)
string
controllers.main.initContainers.01-init-db.image.pullPolicy (1)
string
controllers.main.initContainers.01-init-db.image.repository (1)
string
controllers.main.initContainers.01-init-db.image.tag (1)
number
service.app.controller (20)
authelia
string
service.app.ports.http.port (20)
80
number
service.app.ports.http.primary (3)
true
boolean
service.app.ports.http.enabled (1)
boolean
service.app.ports.http.targetPort (1)
number
service.app.ports.metrics.port (18)
8080
number
service.app.ports.metrics.enabled (1)
boolean
service.app.ipFamilyPolicy (2)
string
service.app.annotations."lbipam.cilium.io/ips" (1)
string
service.app.enabled (1)
boolean
service.app.type (1)
string
service.main.ports.http.port (7)
80
number
service.main.ports.metrics.port (6)
8080
number
service.main.ports.metrics.enabled (3)
true
boolean
service.main.controller (2)
string
ingress.app.className (17)
external
string
ingress.app.hosts[].host (17)
auth.${SECRET_DOMAIN}
string
ingress.app.hosts[].paths[].path (17)
/
string
ingress.app.hosts[].paths[].service.identifier (17)
app
string
ingress.app.hosts[].paths[].service.port (17)
http
string, number
ingress.app.hosts[].paths[].pathType (1)
string
ingress.app.annotations."external-dns.alpha.kubernetes.io/target" (14)
external.${SECRET_DOMAIN}
string
ingress.app.annotations."nginx.ingress.kubernetes.io/configuration-snippet" (13)
add_header Cache-Control "no-store"; add_header Pragma "no-cache"; add_header X-Frame-Options "SAMEORIGIN"; add_header X-XSS-Protection "1; mode=block";
string
ingress.app.annotations."hajimari.io/icon" (3)
string
ingress.app.annotations."gethomepage.dev/enabled" (2)
string
ingress.app.annotations."gethomepage.dev/group" (2)
string
ingress.app.annotations."gethomepage.dev/icon" (2)
string
ingress.app.annotations."gethomepage.dev/name" (2)
string
ingress.app.annotations."external-dns.alpha.kubernetes.io/enabled" (1)
string
ingress.app.annotations."gethomepage.dev/pod-selector" (1)
string
ingress.app.annotations."hajimari.io/enable" (1)
string
ingress.app.annotations."hajimari.io/instance" (1)
string
ingress.app.annotations."nginx.ingress.kubernetes.io/add-header-Cache-Control" (1)
string
ingress.app.annotations."nginx.ingress.kubernetes.io/add-header-Pragma" (1)
string
ingress.app.annotations."nginx.ingress.kubernetes.io/add-header-X-Frame-Options" (1)
string
ingress.app.annotations."nginx.ingress.kubernetes.io/add-header-X-XSS-Protection" (1)
string
ingress.app.annotations."nginx.ingress.kubernetes.io/cors-allow-origin" (1)
string
ingress.app.annotations."nginx.ingress.kubernetes.io/enable-cors" (1)
string
ingress.app.tls[].hosts[] (7)
- auth.${SECRET_DOMAIN}
string
ingress.app.enabled (3)
true
boolean
ingress.main.enabled (9)
true
boolean
ingress.main.hosts[].host (9)
auth.${SECRET_DOMAIN}
string
ingress.main.hosts[].paths[].path (9)
/
string
ingress.main.hosts[].paths[].service.port (7)
http
string
ingress.main.hosts[].paths[].service.identifier (4)
string
ingress.main.hosts[].paths[].service.name (3)
string
ingress.main.hosts[].paths[].pathType (5)
Prefix
string
ingress.main.tls[].hosts[] (9)
- auth.${SECRET_DOMAIN}
string
ingress.main.tls[].secretName (3)
string
ingress.main.annotations."nginx.ingress.kubernetes.io/configuration-snippet" (7)
add_header Cache-Control "no-store"; add_header Pragma "no-cache"; add_header X-Frame-Options "SAMEORIGIN"; add_header X-XSS-Protection "1; mode=block";
string
ingress.main.annotations."external-dns.alpha.kubernetes.io/target" (6)
external.${SECRET_DOMAIN}
string
ingress.main.annotations."external-dns.home.arpa/enabled" (3)
true
string
ingress.main.annotations."hajimari.io/icon" (2)
string
ingress.main.annotations."cert-manager.io/cluster-issuer" (1)
string
ingress.main.annotations."gatus.io/enabled" (1)
string
ingress.main.annotations."gatus.io/path" (1)
string
ingress.main.annotations."hajimari.io/enable" (1)
string
ingress.main.annotations."hajimari.io/group" (1)
string
ingress.main.annotations."hajimari.io/name" (1)
string
ingress.main.annotations."hajimari.io/url" (1)
string
ingress.main.className (7)
external
string
ingress.main.ingressClassName (2)
string
ingress.internal.annotations."nginx.ingress.kubernetes.io/configuration-snippet" (1)
string
ingress.internal.className (1)
string
ingress.internal.enabled (1)
boolean
ingress.internal.hosts[].host (1)
string
ingress.internal.hosts[].paths[].path (1)
string
ingress.internal.hosts[].paths[].pathType (1)
string
ingress.internal.hosts[].paths[].service.identifier (1)
string
ingress.internal.hosts[].paths[].service.port (1)
string
ingress.internal.tls[].hosts[] (1)
string
ingress.nginx.annotations."external-dns.alpha.kubernetes.io/target" (1)
string
ingress.nginx.annotations."nginx.ingress.kubernetes.io/configuration-snippet" (1)
string
ingress.nginx.className (1)
string
ingress.nginx.enabled (1)
boolean
ingress.nginx.hosts[].host (1)
string
ingress.nginx.hosts[].paths[].path (1)
string
ingress.nginx.hosts[].paths[].service.identifier (1)
string
ingress.nginx.hosts[].paths[].service.port (1)
string
serviceMonitor.app.endpoints[].port (17)
metrics
string
serviceMonitor.app.endpoints[].interval (15)
1m
string
serviceMonitor.app.endpoints[].path (15)
/metrics
string
serviceMonitor.app.endpoints[].scheme (15)
http
string
serviceMonitor.app.endpoints[].scrapeTimeout (15)
10s
string
serviceMonitor.app.serviceName (17)
authelia
string
serviceMonitor.app.enabled (3)
true
boolean
serviceMonitor.main.enabled (5)
true
boolean
serviceMonitor.main.endpoints[].interval (5)
1m
string
serviceMonitor.main.endpoints[].path (5)
/metrics
string
serviceMonitor.main.endpoints[].port (5)
metrics
string
serviceMonitor.main.endpoints[].scheme (5)
http
string
serviceMonitor.main.endpoints[].scrapeTimeout (5)
10s
string
serviceMonitor.main.serviceName (1)
string
defaultPodOptions.securityContext.runAsGroup (8)
65534
number
defaultPodOptions.securityContext.runAsUser (8)
65534
number
defaultPodOptions.securityContext.runAsNonRoot (7)
true
boolean
defaultPodOptions.securityContext.seccompProfile.type (7)
RuntimeDefault
string
defaultPodOptions.securityContext.fsGroup (3)
568
number
defaultPodOptions.securityContext.fsGroupChangePolicy (3)
OnRootMismatch
string
defaultPodOptions.topologySpreadConstraints[].labelSelector.matchLabels."app.kubernetes.io/name" (3)
authelia
string
defaultPodOptions.topologySpreadConstraints[].maxSkew (3)
1
number
defaultPodOptions.topologySpreadConstraints[].topologyKey (3)
kubernetes.io/hostname
string
defaultPodOptions.topologySpreadConstraints[].whenUnsatisfiable (3)
DoNotSchedule
string
defaultPodOptions.automountServiceAccountToken (1)
boolean
defaultPodOptions.shareProcessNamespace (1)
boolean
enableServiceLinks (3)
false
boolean
controller.replicas (2)
number
controller.strategy (2)
string
controller.annotations."reloader.stakater.com/auto" (1)
string
controller.rollingUpdate.surge (1)
number
controller.rollingUpdate.unavailable (1)
number
envFrom[].secretRef.name (2)
string
image.repository (2)
string
image.tag (2)
string
podSecurityContext.fsGroup (2)
number
podSecurityContext.fsGroupChangePolicy (2)
string
podSecurityContext.runAsGroup (2)
number
podSecurityContext.runAsUser (2)
number
resources.limits.memory (2)
string
resources.requests.cpu (2)
string
resources.requests.memory (2)
string
topologySpreadConstraints[].labelSelector.matchLabels."app.kubernetes.io/name" (2)
string
topologySpreadConstraints[].maxSkew (2)
number
topologySpreadConstraints[].topologyKey (2)
string
topologySpreadConstraints[].whenUnsatisfiable (2)
string
args[] (1)
string
env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_ADDITIONAL_GROUPS_DN (1)
string
env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_ADDITIONAL_USERS_DN (1)
string
env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_BASE_DN (1)
string
env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_DISPLAY_NAME_ATTRIBUTE (1)
string
env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_GROUP_NAME_ATTRIBUTE (1)
string
env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_GROUPS_FILTER (1)
string
env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_IMPLEMENTATION (1)
string
env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_MAIL_ATTRIBUTE (1)
string
env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_START_TLS (1)
string
env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_TIMEOUT (1)
string
env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_URL (1)
string
env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_USERNAME_ATTRIBUTE (1)
string
env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_USERS_FILTER (1)
string
env.AUTHELIA_AUTHENTICATION_BACKEND_PASSWORD_RESET_DISABLE (1)
string
env.AUTHELIA_AUTHENTICATION_BACKEND_REFRESH_INTERVAL (1)
string
env.AUTHELIA_DEFAULT_REDIRECTION_URL (1)
string
env.AUTHELIA_DUO_API_DISABLE (1)
string
env.AUTHELIA_LOG_LEVEL (1)
string
env.AUTHELIA_NOTIFIER_SMTP_HOST (1)
string
env.AUTHELIA_NOTIFIER_SMTP_PORT (1)
string
env.AUTHELIA_NOTIFIER_SMTP_SENDER (1)
string
env.AUTHELIA_NOTIFIER_SMTP_USERNAME (1)
string
env.AUTHELIA_SERVER_DISABLE_HEALTHCHECK (1)
string
env.AUTHELIA_SERVER_PORT (1)
number
env.AUTHELIA_SESSION_DOMAIN (1)
string
env.AUTHELIA_SESSION_NAME (1)
string
env.AUTHELIA_STORAGE_LOCAL_PATH (1)
string
env.AUTHELIA_TELEMETRY_METRICS_ADDRESS (1)
string
env.AUTHELIA_TELEMETRY_METRICS_ENABLED (1)
string
env.AUTHELIA_THEME (1)
string
env.AUTHELIA_TOTP_ISSUER (1)
string
env.AUTHELIA_WEBAUTHN_DISABLE (1)
string
global.nameOverride (1)
string
podAnnotations."configmap.reloader.stakater.com/reload" (1)
string
podAnnotations."secret.reloader.stakater.com/reload" (1)
string
probes.liveness.custom (1)
boolean
probes.liveness.enabled (1)
boolean
probes.liveness.spec.failureThreshold (1)
number
probes.liveness.spec.httpGet.path (1)
string
probes.liveness.spec.httpGet.port (1)
number
probes.liveness.spec.initialDelaySeconds (1)
number
probes.liveness.spec.periodSeconds (1)
number
probes.liveness.spec.timeoutSeconds (1)
number
probes.readiness.custom (1)
boolean
probes.readiness.enabled (1)
boolean
probes.readiness.spec.failureThreshold (1)
number
probes.readiness.spec.httpGet.path (1)
string
probes.readiness.spec.httpGet.port (1)
number
probes.readiness.spec.initialDelaySeconds (1)
number
probes.readiness.spec.periodSeconds (1)
number
probes.readiness.spec.timeoutSeconds (1)
number
probes.startup.custom (1)
boolean
probes.startup.enabled (1)
boolean
probes.startup.spec.failureThreshold (1)
number
probes.startup.spec.httpGet.path (1)
string
probes.startup.spec.httpGet.port (1)
number
probes.startup.spec.periodSeconds (1)
number
probes.startup.spec.successThreshold (1)
number
probes.startup.spec.timeoutSeconds (1)
number