authelia helm

Authelia is an open-source authentication and authorization server and portal fulfilling the identity and access management (IAM) role of information security in providing multi-factor authentication and single sign-on (SSO) for your applications via a web portal. It acts as a companion for common reverse proxies.

Install

Install with:

helm repo add bjw-s oci://ghcr.io/bjw-s/helm/
helm install authelia bjw-s/app-template -f values.yaml

Examples

See examples from other people.

Top Repositories (5 out of 43)

NameRepoStarsVersionTimestamp
autheliavaskozl/home-infra933.7.32 days ago
autheliaDiaoul/home-ops713.7.310 days ago
autheliamchestr/home-cluster1073.7.320 days ago
autheliaauricom/home-ops1913.7.320 days ago
autheliadrag0n141/home-ops343.7.323 days ago

Resources

10Mi32Mi128Mi
100Mi128Mi200Mi1024Mi
5m10m

Values

See the most popular values for this chart:

KeyTypes
persistence.config.name (43)
authelia-configmap
string
persistence.config.type (43)
configMap
string
persistence.config.globalMounts[].path (38)
/config/configuration.yaml
string
persistence.config.globalMounts[].readOnly (36)
true
boolean
persistence.config.globalMounts[].subPath (35)
configuration.yaml
string
persistence.config.enabled (17)
true
boolean
persistence.config.mountPath (3)
string
persistence.config.readOnly (3)
false
boolean
persistence.config.subPath (3)
string
persistence.config.advancedMounts.authelia.app[].path (2)
string
persistence.config.advancedMounts.authelia.app[].readOnly (2)
boolean
persistence.config.advancedMounts.authelia.app[].subPath (2)
string
persistence.secret-files.name (8)
authelia-secret
string
persistence.secret-files.type (8)
secret
string
persistence.secret-files.enabled (7)
true
boolean
persistence.secret-files.globalMounts[].path (7)
/config/secret
string
persistence.secret-files.advancedMounts.authelia.app[].path (1)
string
persistence.data.existingClaim (2)
string
persistence.data.enabled (1)
boolean
persistence.data.globalMounts[].path (1)
string
persistence.data.type (1)
string
persistence.tmp.type (2)
string
persistence.trusted-certs.advancedMounts.authelia.app[].path (2)
string
persistence.trusted-certs.advancedMounts.authelia.app[].readOnly (2)
boolean
persistence.trusted-certs.advancedMounts.authelia.app[].subPath (2)
string
persistence.trusted-certs.name (2)
string
persistence.trusted-certs.type (2)
string
persistence.oidc-issuer.advancedMounts.authelia.app[].path (1)
string
persistence.oidc-issuer.advancedMounts.authelia.app[].readOnly (1)
boolean
persistence.oidc-issuer.advancedMounts.authelia.app[].subPath (1)
string
persistence.oidc-issuer.name (1)
string
persistence.oidc-issuer.type (1)
string
persistence.secret-keys.enabled (1)
boolean
persistence.secret-keys.globalMounts[].path (1)
string
persistence.secret-keys.name (1)
string
persistence.secret-keys.type (1)
string
persistence.secrets.globalMounts[].path (1)
string
persistence.secrets.globalMounts[].readOnly (1)
boolean
persistence.secrets.name (1)
string
persistence.secrets.type (1)
string
persistence.users.globalMounts[].path (1)
string
persistence.users.globalMounts[].readOnly (1)
boolean
persistence.users.globalMounts[].subPath (1)
string
persistence.users.name (1)
string
persistence.users.type (1)
string
controllers.authelia.containers.app.image.repository (32)
ghcr.io/authelia/authelia
string
controllers.authelia.containers.app.image.tag (32)
4.39.1@sha256:e325963609cc928861ffe8130c09111862df88dd8fcafbcd2c47e5ff0a4ae268
string
controllers.authelia.containers.app.resources.limits.memory (32)
128Mi
string
controllers.authelia.containers.app.resources.limits.cpu (1)
number
controllers.authelia.containers.app.resources.requests.cpu (32)
10m
string
controllers.authelia.containers.app.resources.requests.memory (18)
32Mi
string
controllers.authelia.containers.app.probes.liveness.enabled (31)
true
boolean
controllers.authelia.containers.app.probes.liveness.custom (30)
true
boolean
controllers.authelia.containers.app.probes.liveness.spec.failureThreshold (30)
3
number
controllers.authelia.containers.app.probes.liveness.spec.httpGet.path (30)
/api/health
string
controllers.authelia.containers.app.probes.liveness.spec.httpGet.port (30)
80
number
controllers.authelia.containers.app.probes.liveness.spec.periodSeconds (30)
10
number
controllers.authelia.containers.app.probes.liveness.spec.timeoutSeconds (30)
1
number
controllers.authelia.containers.app.probes.liveness.spec.initialDelaySeconds (29)
0
number
controllers.authelia.containers.app.probes.readiness.enabled (31)
true
boolean
controllers.authelia.containers.app.probes.readiness.custom (30)
true
boolean
controllers.authelia.containers.app.probes.readiness.spec.failureThreshold (30)
3
number
controllers.authelia.containers.app.probes.readiness.spec.httpGet.path (30)
/api/health
string
controllers.authelia.containers.app.probes.readiness.spec.httpGet.port (30)
80
number
controllers.authelia.containers.app.probes.readiness.spec.periodSeconds (30)
10
number
controllers.authelia.containers.app.probes.readiness.spec.timeoutSeconds (30)
1
number
controllers.authelia.containers.app.probes.readiness.spec.initialDelaySeconds (29)
0
number
controllers.authelia.containers.app.probes.startup.enabled (11)
false
boolean
controllers.authelia.containers.app.probes.startup.custom (2)
boolean
controllers.authelia.containers.app.probes.startup.spec.failureThreshold (2)
number
controllers.authelia.containers.app.probes.startup.spec.httpGet.path (2)
string
controllers.authelia.containers.app.probes.startup.spec.httpGet.port (2)
number
controllers.authelia.containers.app.probes.startup.spec.periodSeconds (2)
number
controllers.authelia.containers.app.env.AUTHELIA_SERVER_DISABLE_HEALTHCHECK (30)
true
string, boolean
controllers.authelia.containers.app.env.AUTHELIA_TELEMETRY_METRICS_ADDRESS (30)
tcp://0.0.0.0:8080
string
controllers.authelia.containers.app.env.AUTHELIA_TELEMETRY_METRICS_ENABLED (30)
true
string, boolean
controllers.authelia.containers.app.env.AUTHELIA_THEME (30)
dark
string
controllers.authelia.containers.app.env.AUTHELIA_SERVER_ADDRESS (28)
tcp://0.0.0.0:80
string
controllers.authelia.containers.app.env.X_AUTHELIA_CONFIG (28)
/config/configuration.yaml
string
controllers.authelia.containers.app.env.X_AUTHELIA_CONFIG_FILTERS (28)
expand-env
string
controllers.authelia.containers.app.env.AUTHELIA_TOTP_ISSUER (5)
authelia.com
string
controllers.authelia.containers.app.env.TZ (4)
${TIMEZONE}
string
controllers.authelia.containers.app.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_ADDRESS (3)
string
controllers.authelia.containers.app.env.AUTHELIA_LOG_LEVEL (3)
string
controllers.authelia.containers.app.env.AUTHELIA_NOTIFIER_DISABLE_STARTUP_CHECK (3)
true
string
controllers.authelia.containers.app.env.AUTHELIA_NOTIFIER_SMTP_ADDRESS (3)
string
controllers.authelia.containers.app.env.AUTHELIA_NOTIFIER_SMTP_DISABLE_REQUIRE_TLS (3)
true
string
controllers.authelia.containers.app.env.AUTHELIA_NOTIFIER_SMTP_SENDER (3)
string
controllers.authelia.containers.app.env.AUTHELIA_STORAGE_POSTGRES_PASSWORD.valueFrom.secretKeyRef.key (3)
string
controllers.authelia.containers.app.env.AUTHELIA_STORAGE_POSTGRES_PASSWORD.valueFrom.secretKeyRef.name (3)
string
controllers.authelia.containers.app.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_ADDITIONAL_GROUPS_DN (2)
string
controllers.authelia.containers.app.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_ADDITIONAL_USERS_DN (2)
string
controllers.authelia.containers.app.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_ATTRIBUTES_DISPLAY_NAME (2)
string
controllers.authelia.containers.app.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_ATTRIBUTES_GROUP_NAME (2)
string
controllers.authelia.containers.app.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_ATTRIBUTES_MAIL (2)
string
controllers.authelia.containers.app.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_ATTRIBUTES_USERNAME (2)
string
controllers.authelia.containers.app.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_BASE_DN (2)
string
controllers.authelia.containers.app.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_GROUPS_FILTER (2)
string
controllers.authelia.containers.app.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_IMPLEMENTATION (2)
string
controllers.authelia.containers.app.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_START_TLS (2)
string
controllers.authelia.containers.app.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_TIMEOUT (2)
string
controllers.authelia.containers.app.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_USER (2)
string
controllers.authelia.containers.app.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_USERS_FILTER (2)
string
controllers.authelia.containers.app.env.AUTHELIA_AUTHENTICATION_BACKEND_PASSWORD_RESET_DISABLE (2)
string
controllers.authelia.containers.app.env.AUTHELIA_AUTHENTICATION_BACKEND_REFRESH_INTERVAL (2)
string
controllers.authelia.containers.app.env.AUTHELIA_CERTIFICATES_DIRECTORY (2)
string
controllers.authelia.containers.app.env.AUTHELIA_DUO_API_DISABLE (2)
string
controllers.authelia.containers.app.env.AUTHELIA_SERVER_PORT (2)
number
controllers.authelia.containers.app.env.AUTHELIA_SESSION_REDIS_DATABASE_INDEX (2)
number
controllers.authelia.containers.app.env.AUTHELIA_SESSION_REDIS_HOST (2)
string
controllers.authelia.containers.app.env.AUTHELIA_SESSION_REDIS_PASSWORD.valueFrom.secretKeyRef.key (2)
string
controllers.authelia.containers.app.env.AUTHELIA_SESSION_REDIS_PASSWORD.valueFrom.secretKeyRef.name (2)
string
controllers.authelia.containers.app.env.AUTHELIA_STORAGE_POSTGRES_ADDRESS.valueFrom.secretKeyRef.key (2)
string
controllers.authelia.containers.app.env.AUTHELIA_STORAGE_POSTGRES_ADDRESS.valueFrom.secretKeyRef.name (2)
string
controllers.authelia.containers.app.env.AUTHELIA_STORAGE_POSTGRES_ADDRESS (2)
string
controllers.authelia.containers.app.env.AUTHELIA_STORAGE_POSTGRES_DATABASE.valueFrom.secretKeyRef.key (2)
string
controllers.authelia.containers.app.env.AUTHELIA_STORAGE_POSTGRES_DATABASE.valueFrom.secretKeyRef.name (2)
string
controllers.authelia.containers.app.env.AUTHELIA_STORAGE_POSTGRES_DATABASE (2)
string
controllers.authelia.containers.app.env.AUTHELIA_STORAGE_POSTGRES_USERNAME.valueFrom.secretKeyRef.key (2)
string
controllers.authelia.containers.app.env.AUTHELIA_STORAGE_POSTGRES_USERNAME.valueFrom.secretKeyRef.name (2)
string
controllers.authelia.containers.app.env.AUTHELIA_STORAGE_POSTGRES_USERNAME (1)
string
controllers.authelia.containers.app.env.AUTHELIA_WEBAUTHN_DISABLE (2)
string
controllers.authelia.containers.app.env.AUTHELIA_ACCESS_CONTROL_DEFAULT_POLICY (1)
string
controllers.authelia.containers.app.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_ATTRIBUTES_MEMBER_OF (1)
string
controllers.authelia.containers.app.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_PASSWORD_FILE (1)
string
controllers.authelia.containers.app.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_PASSWORD.valueFrom.secretKeyRef.key (1)
string
controllers.authelia.containers.app.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_PASSWORD.valueFrom.secretKeyRef.name (1)
string
controllers.authelia.containers.app.env.AUTHELIA_DUO_API_INTEGRATION_KEY_FILE (1)
string
controllers.authelia.containers.app.env.AUTHELIA_DUO_API_SECRET_KEY_FILE (1)
string
controllers.authelia.containers.app.env.AUTHELIA_IDENTITY_PROVIDERS_OIDC_HMAC_SECRET_FILE (1)
string
controllers.authelia.containers.app.env.AUTHELIA_IDENTITY_PROVIDERS_OIDC_ISSUER_PRIVATE_KEY_FILE (1)
string
controllers.authelia.containers.app.env.AUTHELIA_NOTIFIER_SMTP_PASSWORD_FILE (1)
string
controllers.authelia.containers.app.env.AUTHELIA_SERVER_BUFFERS_READ (1)
number
controllers.authelia.containers.app.env.AUTHELIA_SERVER_BUFFERS_WRITE (1)
number
controllers.authelia.containers.app.env.AUTHELIA_SESSION_REDIS_PORT (1)
number
controllers.authelia.containers.app.env.AUTHELIA_SESSION_SECRET_FILE (1)
string
controllers.authelia.containers.app.env.AUTHELIA_STORAGE_ENCRYPTION_KEY_FILE (1)
string
controllers.authelia.containers.app.env.AUTHELIA_STORAGE_LOCAL_PATH (1)
string
controllers.authelia.containers.app.env.AUTHELIA_STORAGE_POSTGRES_PASSWORD_FILE (1)
string
controllers.authelia.containers.app.env.AUTHELIA_TOTP_DISABLE (1)
boolean
controllers.authelia.containers.app.env.CLUSTER_CIDR (1)
string
controllers.authelia.containers.app.env.HOME_CIDR (1)
string
controllers.authelia.containers.app.env.NODE_CIDR (1)
string
controllers.authelia.containers.app.env.SECRET_DOMAIN (1)
string
controllers.authelia.containers.app.env.SECRET_EXTERNAL_DOMAIN (1)
string
controllers.authelia.containers.app.env.SECRET_INTERNAL_DOMAIN (1)
string
controllers.authelia.containers.app.env.SECRET_PUBLIC_DOMAIN (1)
string
controllers.authelia.containers.app.envFrom[].secretRef.name (29)
authelia-secret
string
controllers.authelia.containers.app.securityContext.allowPrivilegeEscalation (26)
false
boolean
controllers.authelia.containers.app.securityContext.readOnlyRootFilesystem (26)
true
boolean
controllers.authelia.containers.app.securityContext.capabilities.drop[] (24)
- ALL
string
controllers.authelia.containers.app.securityContext.drop[] (2)
string
controllers.authelia.containers.app.args[] (4)
string
controllers.authelia.containers.app.command[] (1)
string
controllers.authelia.containers.main.env.AUTHELIA_STORAGE_POSTGRES_ADDRESS (2)
string
controllers.authelia.containers.main.env.AUTHELIA_STORAGE_POSTGRES_DATABASE.valueFrom.secretKeyRef.key (2)
string
controllers.authelia.containers.main.env.AUTHELIA_STORAGE_POSTGRES_DATABASE.valueFrom.secretKeyRef.name (2)
string
controllers.authelia.containers.main.env.AUTHELIA_STORAGE_POSTGRES_PASSWORD.valueFrom.secretKeyRef.key (2)
string
controllers.authelia.containers.main.env.AUTHELIA_STORAGE_POSTGRES_PASSWORD.valueFrom.secretKeyRef.name (2)
string
controllers.authelia.containers.main.env.AUTHELIA_STORAGE_POSTGRES_USERNAME.valueFrom.secretKeyRef.key (2)
string
controllers.authelia.containers.main.env.AUTHELIA_STORAGE_POSTGRES_USERNAME.valueFrom.secretKeyRef.name (2)
string
controllers.authelia.containers.main.env.X_AUTHELIA_CONFIG (2)
string
controllers.authelia.containers.main.env.X_AUTHELIA_CONFIG_FILTERS (2)
string
controllers.authelia.containers.main.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_BASE_DN.valueFrom.secretKeyRef.key (1)
string
controllers.authelia.containers.main.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_BASE_DN.valueFrom.secretKeyRef.name (1)
string
controllers.authelia.containers.main.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_PASSWORD.valueFrom.secretKeyRef.key (1)
string
controllers.authelia.containers.main.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_PASSWORD.valueFrom.secretKeyRef.name (1)
string
controllers.authelia.containers.main.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_USER.valueFrom.secretKeyRef.key (1)
string
controllers.authelia.containers.main.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_USER.valueFrom.secretKeyRef.name (1)
string
controllers.authelia.containers.main.env.AUTHELIA_NOTIFIER_SMTP_PASSWORD.valueFrom.secretKeyRef.key (1)
string
controllers.authelia.containers.main.env.AUTHELIA_NOTIFIER_SMTP_PASSWORD.valueFrom.secretKeyRef.name (1)
string
controllers.authelia.containers.main.envFrom[].secretRef.name (2)
string
controllers.authelia.containers.main.image.repository (2)
string
controllers.authelia.containers.main.image.tag (2)
string
controllers.authelia.containers.main.probes.liveness.enabled (2)
boolean
controllers.authelia.containers.main.probes.readiness.enabled (2)
boolean
controllers.authelia.containers.main.probes.startup.enabled (2)
boolean
controllers.authelia.containers.main.probes.startup.spec.failureThreshold (2)
number
controllers.authelia.containers.main.probes.startup.spec.periodSeconds (2)
number
controllers.authelia.containers.main.resources.requests.cpu (2)
string
controllers.authelia.containers.main.resources.requests.memory (2)
string
controllers.authelia.replicas (32)
2
number
controllers.authelia.strategy (32)
RollingUpdate
string
controllers.authelia.annotations."reloader.stakater.com/auto" (29)
true
string
controllers.authelia.annotations."secret.reloader.stakater.com/reload" (3)
string
controllers.authelia.pod.topologySpreadConstraints[].labelSelector.matchLabels."app.kubernetes.io/name" (17)
authelia
string
controllers.authelia.pod.topologySpreadConstraints[].maxSkew (17)
1
number
controllers.authelia.pod.topologySpreadConstraints[].topologyKey (17)
kubernetes.io/hostname
string
controllers.authelia.pod.topologySpreadConstraints[].whenUnsatisfiable (17)
DoNotSchedule
string
controllers.authelia.pod.securityContext.runAsGroup (15)
568
number
controllers.authelia.pod.securityContext.runAsUser (15)
568
number
controllers.authelia.pod.securityContext.runAsNonRoot (14)
true
boolean
controllers.authelia.pod.securityContext.fsGroup (2)
number
controllers.authelia.pod.securityContext.fsGroupChangePolicy (2)
string
controllers.authelia.pod.securityContext.seccompProfile.type (2)
string
controllers.authelia.pod.enableServiceLinks (4)
false
boolean
controllers.authelia.pod.labels."auth.home.arpa/ldap" (2)
string
controllers.authelia.pod.labels."db.home.arpa/dragonfly" (2)
string
controllers.authelia.pod.labels."db.home.arpa/pg" (2)
string
controllers.authelia.pod.labels."egress.home.arpa/kubedns" (2)
string
controllers.authelia.pod.labels."ingress.home.arpa/nginx-internal" (2)
string
controllers.authelia.pod.labels."mail.home.arpa/smtp-relay" (2)
string
controllers.authelia.pod.labels."monitoring.home.arpa/prometheus" (2)
string
controllers.authelia.pod.annotations."reloader.stakater.com/auto" (1)
string
controllers.authelia.initContainers.init-db.image.repository (15)
ghcr.io/onedr0p/postgres-init
string
controllers.authelia.initContainers.init-db.image.tag (15)
16
string, number
controllers.authelia.initContainers.init-db.image.pullPolicy (1)
string
controllers.authelia.initContainers.init-db.envFrom[].secretRef.name (14)
authelia-secret
string
controllers.authelia.initContainers.init-db.env.INIT_POSTGRES_DBNAME (1)
string
controllers.authelia.initContainers.init-db.env.INIT_POSTGRES_HOST (1)
string
controllers.authelia.initContainers.init-db.env.INIT_POSTGRES_PASS.valueFrom.secretKeyRef.key (1)
string
controllers.authelia.initContainers.init-db.env.INIT_POSTGRES_PASS.valueFrom.secretKeyRef.name (1)
string
controllers.authelia.initContainers.init-db.env.INIT_POSTGRES_SUPER_PASS.valueFrom.secretKeyRef.key (1)
string
controllers.authelia.initContainers.init-db.env.INIT_POSTGRES_SUPER_PASS.valueFrom.secretKeyRef.name (1)
string
controllers.authelia.initContainers.init-db.env.INIT_POSTGRES_USER.valueFrom.secretKeyRef.key (1)
string
controllers.authelia.initContainers.init-db.env.INIT_POSTGRES_USER.valueFrom.secretKeyRef.name (1)
string
controllers.authelia.initContainers.01-init-db.envFrom[].secretRef.name (3)
string
controllers.authelia.initContainers.01-init-db.image.repository (3)
ghcr.io/home-operations/postgres-init
string
controllers.authelia.initContainers.01-init-db.image.tag (3)
string, number
controllers.authelia.initContainers.01-init-db.image.pullPolicy (1)
string
controllers.authelia.statefulset.podManagementPolicy (1)
string
controllers.authelia.statefulset.volumeClaimTemplates[].accessMode (1)
string
controllers.authelia.statefulset.volumeClaimTemplates[].globalMounts[].path (1)
string
controllers.authelia.statefulset.volumeClaimTemplates[].name (1)
string
controllers.authelia.statefulset.volumeClaimTemplates[].size (1)
string
controllers.authelia.type (1)
string
controllers.main.annotations."reloader.stakater.com/auto" (6)
true
string
controllers.main.containers.main.env.AUTHELIA_SERVER_DISABLE_HEALTHCHECK (6)
true
string, boolean
controllers.main.containers.main.env.AUTHELIA_TELEMETRY_METRICS_ADDRESS (6)
tcp://0.0.0.0:8080
string
controllers.main.containers.main.env.AUTHELIA_TELEMETRY_METRICS_ENABLED (6)
true
string, boolean
controllers.main.containers.main.env.AUTHELIA_THEME (6)
dark
string
controllers.main.containers.main.env.AUTHELIA_SERVER_ADDRESS (5)
string
controllers.main.containers.main.env.X_AUTHELIA_CONFIG (5)
/config/configuration.yaml
string
controllers.main.containers.main.env.X_AUTHELIA_CONFIG_FILTERS (5)
expand-env
string
controllers.main.containers.main.env.AUTHELIA_LOG_LEVEL (2)
string
controllers.main.containers.main.env.AUTHELIA_NOTIFIER_DISABLE_STARTUP_CHECK (2)
string
controllers.main.containers.main.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_ADDITIONAL_GROUPS_DN (1)
string
controllers.main.containers.main.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_ADDITIONAL_USERS_DN (1)
string
controllers.main.containers.main.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_BASE_DN (1)
string
controllers.main.containers.main.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_DISPLAY_NAME_ATTRIBUTE (1)
string
controllers.main.containers.main.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_GROUP_NAME_ATTRIBUTE (1)
string
controllers.main.containers.main.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_GROUPS_FILTER (1)
string
controllers.main.containers.main.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_IMPLEMENTATION (1)
string
controllers.main.containers.main.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_MAIL_ATTRIBUTE (1)
string
controllers.main.containers.main.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_PASSWORD (1)
string
controllers.main.containers.main.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_START_TLS (1)
string
controllers.main.containers.main.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_TIMEOUT (1)
string
controllers.main.containers.main.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_URL (1)
string
controllers.main.containers.main.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_USER (1)
string
controllers.main.containers.main.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_USERNAME_ATTRIBUTE (1)
string
controllers.main.containers.main.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_USERS_FILTER (1)
string
controllers.main.containers.main.env.AUTHELIA_AUTHENTICATION_BACKEND_PASSWORD_RESET_DISABLE (1)
string
controllers.main.containers.main.env.AUTHELIA_AUTHENTICATION_BACKEND_REFRESH_INTERVAL (1)
string
controllers.main.containers.main.env.AUTHELIA_DEFAULT_REDIRECTION_URL (1)
string
controllers.main.containers.main.env.AUTHELIA_DUO_API_DISABLE (1)
string
controllers.main.containers.main.env.AUTHELIA_IDENTITY_PROVIDERS_OIDC_HMAC_SECRET (1)
string
controllers.main.containers.main.env.AUTHELIA_JWT_SECRET (1)
string
controllers.main.containers.main.env.AUTHELIA_NOTIFIER_SMTP_DISABLE_REQUIRE_TLS (1)
string
controllers.main.containers.main.env.AUTHELIA_NOTIFIER_SMTP_HOST (1)
string
controllers.main.containers.main.env.AUTHELIA_NOTIFIER_SMTP_PORT (1)
string
controllers.main.containers.main.env.AUTHELIA_NOTIFIER_SMTP_SENDER (1)
string
controllers.main.containers.main.env.AUTHELIA_SERVER_BUFFERS_READ (1)
string
controllers.main.containers.main.env.AUTHELIA_SERVER_PORT (1)
number
controllers.main.containers.main.env.AUTHELIA_SESSION_DOMAIN (1)
string
controllers.main.containers.main.env.AUTHELIA_SESSION_NAME (1)
string
controllers.main.containers.main.env.AUTHELIA_SESSION_SECRET (1)
string
controllers.main.containers.main.env.AUTHELIA_STORAGE_ENCRYPTION_KEY (1)
string
controllers.main.containers.main.env.AUTHELIA_STORAGE_POSTGRES_DATABASE (1)
string
controllers.main.containers.main.env.AUTHELIA_STORAGE_POSTGRES_HOST (1)
string
controllers.main.containers.main.env.AUTHELIA_STORAGE_POSTGRES_PASSWORD (1)
string
controllers.main.containers.main.env.AUTHELIA_STORAGE_POSTGRES_USERNAME (1)
string
controllers.main.containers.main.env.AUTHELIA_TOTP_ISSUER (1)
string
controllers.main.containers.main.env.AUTHELIA_WEBAUTHN_DISABLE (1)
string
controllers.main.containers.main.env.GRAFANA_OAUTH_CLIENT_SECRET (1)
string
controllers.main.containers.main.envFrom[].secretRef.name (6)
authelia-secret
string
controllers.main.containers.main.image.repository (6)
ghcr.io/authelia/authelia
string
controllers.main.containers.main.image.tag (6)
v4.38.0-beta3@sha256:b48ae4d0ed9d1eee76efe382df60928bae550ec19e5663858dde6dc5f41cf285
string
controllers.main.containers.main.probes.liveness.custom (6)
true
boolean
controllers.main.containers.main.probes.liveness.enabled (6)
true
boolean
controllers.main.containers.main.probes.liveness.spec.failureThreshold (6)
3
number
controllers.main.containers.main.probes.liveness.spec.httpGet.path (6)
/api/health
string
controllers.main.containers.main.probes.liveness.spec.httpGet.port (6)
80
number
controllers.main.containers.main.probes.liveness.spec.initialDelaySeconds (6)
0
number
controllers.main.containers.main.probes.liveness.spec.periodSeconds (6)
10
number
controllers.main.containers.main.probes.liveness.spec.timeoutSeconds (6)
1
number
controllers.main.containers.main.probes.readiness.custom (6)
true
boolean
controllers.main.containers.main.probes.readiness.enabled (6)
true
boolean
controllers.main.containers.main.probes.readiness.spec.failureThreshold (6)
3
number
controllers.main.containers.main.probes.readiness.spec.httpGet.path (6)
/api/health
string
controllers.main.containers.main.probes.readiness.spec.httpGet.port (6)
80
number
controllers.main.containers.main.probes.readiness.spec.initialDelaySeconds (6)
0
number
controllers.main.containers.main.probes.readiness.spec.periodSeconds (6)
10
number
controllers.main.containers.main.probes.readiness.spec.timeoutSeconds (6)
1
number
controllers.main.containers.main.probes.startup.enabled (6)
false
boolean
controllers.main.containers.main.resources.limits.memory (6)
128Mi
string
controllers.main.containers.main.resources.requests.cpu (6)
10m
string
controllers.main.containers.main.resources.requests.memory (5)
string
controllers.main.containers.main.securityContext.allowPrivilegeEscalation (4)
false
boolean
controllers.main.containers.main.securityContext.capabilities.drop[] (4)
- ALL
string
controllers.main.containers.main.securityContext.readOnlyRootFilesystem (4)
true
boolean
controllers.main.containers.main.args[] (1)
string
controllers.main.pod.enableServiceLinks (6)
false
boolean
controllers.main.pod.securityContext.runAsGroup (6)
568
number
controllers.main.pod.securityContext.runAsUser (6)
568
number
controllers.main.pod.securityContext.runAsNonRoot (4)
true
boolean
controllers.main.pod.securityContext.fsGroup (1)
number
controllers.main.pod.securityContext.fsGroupChangePolicy (1)
string
controllers.main.pod.topologySpreadConstraints[].labelSelector.matchLabels."app.kubernetes.io/name" (6)
authelia
string
controllers.main.pod.topologySpreadConstraints[].maxSkew (6)
1
number
controllers.main.pod.topologySpreadConstraints[].topologyKey (6)
kubernetes.io/hostname
string
controllers.main.pod.topologySpreadConstraints[].whenUnsatisfiable (6)
DoNotSchedule
string
controllers.main.replicas (6)
2
number
controllers.main.strategy (6)
RollingUpdate
string
controllers.main.initContainers.init-db.envFrom[].secretRef.name (5)
authelia-secret
string
controllers.main.initContainers.init-db.image.repository (5)
string
controllers.main.initContainers.init-db.image.tag (5)
number, string
controllers.main.initContainers.init-db.image.pullPolicy (1)
string
controllers.main.initContainers.01-init-db.env.INIT_POSTGRES_DBNAME (1)
string
controllers.main.initContainers.01-init-db.env.INIT_POSTGRES_HOST (1)
string
controllers.main.initContainers.01-init-db.env.INIT_POSTGRES_PASS (1)
string
controllers.main.initContainers.01-init-db.env.INIT_POSTGRES_SUPER_PASS (1)
string
controllers.main.initContainers.01-init-db.env.INIT_POSTGRES_USER (1)
string
controllers.main.initContainers.01-init-db.image.pullPolicy (1)
string
controllers.main.initContainers.01-init-db.image.repository (1)
string
controllers.main.initContainers.01-init-db.image.tag (1)
number
service.app.controller (32)
authelia
string
service.app.ports.http.port (32)
80
number
service.app.ports.http.primary (6)
true
boolean
service.app.ports.http.enabled (1)
boolean
service.app.ports.http.targetPort (1)
number
service.app.ports.metrics.port (30)
8080
number
service.app.ports.metrics.enabled (4)
true
boolean
service.app.ipFamilyPolicy (4)
PreferDualStack
string
service.app.annotations."lbipam.cilium.io/ips" (2)
string
service.app.annotations."external-dns.alpha.kubernetes.io/hostname" (1)
string
service.app.type (2)
string
service.app.enabled (1)
boolean
service.app.externalTrafficPolicy (1)
string
service.main.ports.http.port (11)
80
number
service.main.ports.metrics.port (9)
8080
number
service.main.ports.metrics.enabled (4)
true
boolean
service.main.controller (5)
main
string
serviceMonitor.app.endpoints[].port (28)
metrics
string
serviceMonitor.app.endpoints[].interval (23)
1m
string
serviceMonitor.app.endpoints[].path (23)
/metrics
string
serviceMonitor.app.endpoints[].scheme (23)
http
string
serviceMonitor.app.endpoints[].scrapeTimeout (23)
10s
string
serviceMonitor.app.serviceName (28)
authelia
string
serviceMonitor.app.enabled (5)
true
boolean
serviceMonitor.main.enabled (7)
true
boolean
serviceMonitor.main.endpoints[].interval (7)
1m
string
serviceMonitor.main.endpoints[].path (7)
/metrics
string
serviceMonitor.main.endpoints[].port (7)
metrics
string
serviceMonitor.main.endpoints[].scheme (7)
http
string
serviceMonitor.main.endpoints[].scrapeTimeout (7)
10s
string
serviceMonitor.main.serviceName (3)
authelia
string
ingress.app.hosts[].host (26)
auth.${SECRET_DOMAIN}
string
ingress.app.hosts[].paths[].path (26)
/
string
ingress.app.hosts[].paths[].service.identifier (26)
app
string
ingress.app.hosts[].paths[].service.port (26)
http
string
ingress.app.hosts[].paths[].pathType (2)
string
ingress.app.className (25)
external
string
ingress.app.annotations."nginx.ingress.kubernetes.io/configuration-snippet" (19)
add_header Cache-Control "no-store"; add_header Pragma "no-cache"; add_header X-Frame-Options "SAMEORIGIN"; add_header X-XSS-Protection "1; mode=block";
string
ingress.app.annotations."external-dns.alpha.kubernetes.io/target" (16)
external.${SECRET_DOMAIN}
string
ingress.app.annotations."hajimari.io/icon" (5)
mdi:shield-account
string
ingress.app.annotations."gethomepage.dev/enabled" (3)
true
string
ingress.app.annotations."gethomepage.dev/group" (3)
string
ingress.app.annotations."gethomepage.dev/icon" (3)
string
ingress.app.annotations."gethomepage.dev/name" (3)
Authelia
string
ingress.app.annotations."traefik.ingress.kubernetes.io/router.middlewares" (3)
string
ingress.app.annotations."gethomepage.dev/pod-selector" (2)
string
ingress.app.annotations."traefik.ingress.kubernetes.io/router.entrypoints" (2)
string
ingress.app.annotations."auth.home.arpa/disabled" (1)
string
ingress.app.annotations."external-dns.alpha.kubernetes.io/enabled" (1)
string
ingress.app.annotations."hajimari.io/appName" (1)
string
ingress.app.annotations."hajimari.io/enable" (1)
string
ingress.app.annotations."hajimari.io/instance" (1)
string
ingress.app.annotations."nginx.ingress.kubernetes.io/cors-allow-origin" (1)
string
ingress.app.annotations."nginx.ingress.kubernetes.io/enable-cors" (1)
string
ingress.app.annotations."nginx.org/proxy-set-headers" (1)
string
ingress.app.tls[].hosts[] (10)
string
ingress.app.tls[].secretName (1)
string
ingress.app.enabled (5)
true
boolean
ingress.main.enabled (14)
true
boolean
ingress.main.hosts[].host (14)
auth.${SECRET_DOMAIN}
string
ingress.main.hosts[].paths[].path (14)
/
string
ingress.main.hosts[].paths[].service.port (11)
http
string, number
ingress.main.hosts[].paths[].service.identifier (8)
main
string
ingress.main.hosts[].paths[].service.name (3)
string
ingress.main.hosts[].paths[].pathType (7)
Prefix
string
ingress.main.annotations."nginx.ingress.kubernetes.io/configuration-snippet" (12)
add_header Cache-Control "no-store"; add_header Pragma "no-cache"; add_header X-Frame-Options "SAMEORIGIN"; add_header X-XSS-Protection "1; mode=block";
string
ingress.main.annotations."external-dns.alpha.kubernetes.io/target" (8)
external.${SECRET_DOMAIN}
string
ingress.main.annotations."hajimari.io/icon" (5)
mdi:shield-account
string
ingress.main.annotations."external-dns.home.arpa/enabled" (3)
true
string
ingress.main.annotations."hajimari.io/enable" (3)
true
string
ingress.main.annotations."hajimari.io/group" (3)
string
ingress.main.annotations."hajimari.io/appName" (2)
string
ingress.main.annotations."cert-manager.io/cluster-issuer" (1)
string
ingress.main.annotations."gatus.io/enabled" (1)
string
ingress.main.annotations."gatus.io/path" (1)
string
ingress.main.annotations."hajimari.io/name" (1)
string
ingress.main.annotations."hajimari.io/url" (1)
string
ingress.main.tls[].hosts[] (12)
- auth.${SECRET_DOMAIN}
string
ingress.main.tls[].secretName (4)
string
ingress.main.className (11)
external
string
ingress.main.ingressClassName (3)
string
ingress.internal.annotations."nginx.ingress.kubernetes.io/configuration-snippet" (1)
string
ingress.internal.className (1)
string
ingress.internal.enabled (1)
boolean
ingress.internal.hosts[].host (1)
string
ingress.internal.hosts[].paths[].path (1)
string
ingress.internal.hosts[].paths[].pathType (1)
string
ingress.internal.hosts[].paths[].service.identifier (1)
string
ingress.internal.hosts[].paths[].service.port (1)
string
ingress.internal.tls[].hosts[] (1)
string
ingress.nginx.annotations."external-dns.alpha.kubernetes.io/target" (1)
string
ingress.nginx.annotations."nginx.ingress.kubernetes.io/configuration-snippet" (1)
string
ingress.nginx.className (1)
string
ingress.nginx.enabled (1)
boolean
ingress.nginx.hosts[].host (1)
string
ingress.nginx.hosts[].paths[].path (1)
string
ingress.nginx.hosts[].paths[].service.identifier (1)
string
ingress.nginx.hosts[].paths[].service.port (1)
string
defaultPodOptions.securityContext.runAsGroup (16)
65534
number
defaultPodOptions.securityContext.runAsUser (16)
65534
number
defaultPodOptions.securityContext.runAsNonRoot (14)
true
boolean
defaultPodOptions.securityContext.seccompProfile.type (11)
RuntimeDefault
string
defaultPodOptions.securityContext.fsGroup (5)
568
number
defaultPodOptions.securityContext.fsGroupChangePolicy (5)
OnRootMismatch
string
defaultPodOptions.topologySpreadConstraints[].labelSelector.matchLabels."app.kubernetes.io/name" (8)
authelia
string
defaultPodOptions.topologySpreadConstraints[].maxSkew (8)
1
number
defaultPodOptions.topologySpreadConstraints[].topologyKey (8)
kubernetes.io/hostname
string
defaultPodOptions.topologySpreadConstraints[].whenUnsatisfiable (8)
DoNotSchedule
string
defaultPodOptions.enableServiceLinks (4)
false
boolean
defaultPodOptions.automountServiceAccountToken (3)
false
boolean
defaultPodOptions.shareProcessNamespace (1)
boolean
enableServiceLinks (4)
false
boolean
controller.replicas (3)
number
controller.strategy (3)
string
controller.annotations."reloader.stakater.com/auto" (2)
string
controller.rollingUpdate.surge (1)
number
controller.rollingUpdate.unavailable (1)
number
envFrom[].secretRef.name (3)
string
image.repository (3)
string
image.tag (3)
string
podSecurityContext.fsGroup (3)
568
number
podSecurityContext.fsGroupChangePolicy (3)
OnRootMismatch
string
podSecurityContext.runAsGroup (3)
568
number
podSecurityContext.runAsUser (3)
568
number
resources.limits.memory (3)
string
resources.requests.cpu (3)
string
resources.requests.memory (3)
string
topologySpreadConstraints[].labelSelector.matchLabels."app.kubernetes.io/name" (3)
authelia
string
topologySpreadConstraints[].maxSkew (3)
1
number
topologySpreadConstraints[].topologyKey (3)
kubernetes.io/hostname
string
topologySpreadConstraints[].whenUnsatisfiable (3)
DoNotSchedule
string
podAnnotations."configmap.reloader.stakater.com/reload" (2)
string
podAnnotations."secret.reloader.stakater.com/reload" (2)
string
route.app.hostnames[] (2)
string
route.app.parentRefs[].name (2)
string
route.app.parentRefs[].namespace (2)
string
route.app.parentRefs[].sectionName (2)
string
route.app.rules[].backendRefs[].name (2)
string
route.app.rules[].backendRefs[].port (2)
number
args[] (1)
string
env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_ADDITIONAL_GROUPS_DN (1)
string
env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_ADDITIONAL_USERS_DN (1)
string
env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_BASE_DN (1)
string
env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_DISPLAY_NAME_ATTRIBUTE (1)
string
env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_GROUP_NAME_ATTRIBUTE (1)
string
env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_GROUPS_FILTER (1)
string
env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_IMPLEMENTATION (1)
string
env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_MAIL_ATTRIBUTE (1)
string
env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_START_TLS (1)
string
env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_TIMEOUT (1)
string
env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_URL (1)
string
env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_USERNAME_ATTRIBUTE (1)
string
env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_USERS_FILTER (1)
string
env.AUTHELIA_AUTHENTICATION_BACKEND_PASSWORD_RESET_DISABLE (1)
string
env.AUTHELIA_AUTHENTICATION_BACKEND_REFRESH_INTERVAL (1)
string
env.AUTHELIA_DEFAULT_REDIRECTION_URL (1)
string
env.AUTHELIA_DUO_API_DISABLE (1)
string
env.AUTHELIA_LOG_LEVEL (1)
string
env.AUTHELIA_NOTIFIER_SMTP_HOST (1)
string
env.AUTHELIA_NOTIFIER_SMTP_PORT (1)
string
env.AUTHELIA_NOTIFIER_SMTP_SENDER (1)
string
env.AUTHELIA_NOTIFIER_SMTP_USERNAME (1)
string
env.AUTHELIA_SERVER_DISABLE_HEALTHCHECK (1)
string
env.AUTHELIA_SERVER_PORT (1)
number
env.AUTHELIA_SESSION_DOMAIN (1)
string
env.AUTHELIA_SESSION_NAME (1)
string
env.AUTHELIA_STORAGE_LOCAL_PATH (1)
string
env.AUTHELIA_TELEMETRY_METRICS_ADDRESS (1)
string
env.AUTHELIA_TELEMETRY_METRICS_ENABLED (1)
string
env.AUTHELIA_THEME (1)
string
env.AUTHELIA_TOTP_ISSUER (1)
string
env.AUTHELIA_WEBAUTHN_DISABLE (1)
string
global.nameOverride (1)
string
initContainers.init-db.envFrom[].secretRef.name (1)
string
initContainers.init-db.image (1)
string
initContainers.init-db.imagePullPolicy (1)
string
probes.liveness.custom (1)
boolean
probes.liveness.enabled (1)
boolean
probes.liveness.spec.failureThreshold (1)
number
probes.liveness.spec.httpGet.path (1)
string
probes.liveness.spec.httpGet.port (1)
number
probes.liveness.spec.initialDelaySeconds (1)
number
probes.liveness.spec.periodSeconds (1)
number
probes.liveness.spec.timeoutSeconds (1)
number
probes.readiness.custom (1)
boolean
probes.readiness.enabled (1)
boolean
probes.readiness.spec.failureThreshold (1)
number
probes.readiness.spec.httpGet.path (1)
string
probes.readiness.spec.httpGet.port (1)
number
probes.readiness.spec.initialDelaySeconds (1)
number
probes.readiness.spec.periodSeconds (1)
number
probes.readiness.spec.timeoutSeconds (1)
number
probes.startup.custom (1)
boolean
probes.startup.enabled (1)
boolean
probes.startup.spec.failureThreshold (1)
number
probes.startup.spec.httpGet.path (1)
string
probes.startup.spec.httpGet.port (1)
number
probes.startup.spec.periodSeconds (1)
number
probes.startup.spec.successThreshold (1)
number
probes.startup.spec.timeoutSeconds (1)
number