authelia helm release

authelia helm

Authelia is an open-source authentication and authorization server and portal fulfilling the identity and access management (IAM) role of information security in providing multi-factor authentication and single sign-on (SSO) for your applications via a web portal. It acts as a companion for common reverse proxies.

More popular helm chart found

authelia from bjw-s-labs/helm/app-template is more popular with 23 repositories.

Install

Install with:

helm repo add bjw-s oci://ghcr.io/bjw-s/helm/
helm install authelia bjw-s/app-template -f values.yaml

Examples

See examples from other people.

Major version:

Filter repos who also have:

Top Repositories (3 out of 14)

Name	Repo	Stars	Version	Timestamp
authelia	oscaromeu/home-ops	31	3.7.3	5 days ago
authelia	brettinternet/homeops	212	3.5.1	10 months ago
authelia	toboshii/home-ops	372	0.2.2	a year ago

Name

Repo

Stars

Version

Timestamp

authelia

oscaromeu/home-ops

3.7.3

5 days ago

authelia

brettinternet/homeops

212

3.5.1

10 months ago

authelia

toboshii/home-ops

372

0.2.2

a year ago

Values

See the most popular values for this chart:

Key	Types
persistence.config.name (14) `authelia-configmap`	string
persistence.config.type (14) `configMap`	string
persistence.config.globalMounts[].path (11) `/config/configuration.yaml`	string
persistence.config.globalMounts[].readOnly (11) `true`	boolean
persistence.config.globalMounts[].subPath (10) `configuration.yaml`	string
persistence.config.enabled (9) `true`	boolean
persistence.config.mountPath (2) `/config/configuration.yaml`	string
persistence.config.readOnly (2) `false`	boolean
persistence.config.subPath (2) `configuration.yaml`	string
persistence.config.advancedMounts.authelia.app[].path (1) `/config/configuration.yaml`	string
persistence.config.advancedMounts.authelia.app[].readOnly (1) `true`	boolean
persistence.config.advancedMounts.authelia.app[].subPath (1) `configuration.yaml`	string
persistence.secret-files.enabled (3) `true`	boolean
persistence.secret-files.name (3) `authelia-files`	string
persistence.secret-files.type (3) `secret`	string
persistence.secret-files.globalMounts[].path (2) `/config/secret`	string
persistence.secret-files.advancedMounts.authelia.app[].path (1) `/app/secrets`	string
persistence.data.existingClaim (1) `${PVC_NAME}`	string
persistence.data.globalMounts[].path (1) `/data`	string
persistence.trusted-certs.advancedMounts.authelia.app[].path (1) `/trusted_certs/letsencrypt-certs.pem`	string
persistence.trusted-certs.advancedMounts.authelia.app[].readOnly (1) `true`	boolean
persistence.trusted-certs.advancedMounts.authelia.app[].subPath (1) `letsencrypt-certs.pem`	string
persistence.trusted-certs.name (1) `letsencrypt-certs`	string
persistence.trusted-certs.type (1) `configMap`	string
persistence.users.globalMounts[].path (1) `/config/users.yaml`	string
persistence.users.globalMounts[].readOnly (1) `true`	boolean
persistence.users.globalMounts[].subPath (1) `users.yaml`	string
persistence.users.name (1) `authelia-users-secret`	string
persistence.users.type (1) `secret`	string
controllers.authelia.annotations."reloader.stakater.com/auto" (9) `true`	string
controllers.authelia.containers.app.image.repository (8) `ghcr.io/authelia/authelia`	string
controllers.authelia.containers.app.image.tag (8) `4.39.4@sha256:64b356c30fd817817a4baafb4dbc0f9f8702e46b49e1edb92ff42e19e487b517`	string
controllers.authelia.containers.app.resources.limits.memory (8) `128Mi`	string
controllers.authelia.containers.app.resources.requests.cpu (8) `10m`	string
controllers.authelia.containers.app.resources.requests.memory (5) `32Mi`	string
controllers.authelia.containers.app.env.AUTHELIA_SERVER_DISABLE_HEALTHCHECK (7) `true`	string, boolean
controllers.authelia.containers.app.env.AUTHELIA_TELEMETRY_METRICS_ADDRESS (7) `tcp://0.0.0.0:8080`	string
controllers.authelia.containers.app.env.AUTHELIA_TELEMETRY_METRICS_ENABLED (7) `true`	string, boolean
controllers.authelia.containers.app.env.AUTHELIA_THEME (7) `dark`	string
controllers.authelia.containers.app.env.AUTHELIA_SERVER_ADDRESS (6) `tcp://0.0.0.0:80`	string
controllers.authelia.containers.app.env.X_AUTHELIA_CONFIG (6) `/config/configuration.yaml`	string
controllers.authelia.containers.app.env.X_AUTHELIA_CONFIG_FILTERS (6) `template`	string
controllers.authelia.containers.app.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_ADDITIONAL_GROUPS_DN (2) `ou=users`	string
controllers.authelia.containers.app.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_ADDITIONAL_USERS_DN (2) `ou=people,ou=users`	string
controllers.authelia.containers.app.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_BASE_DN (2) `dc=home,dc=arpa`	string
controllers.authelia.containers.app.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_GROUPS_FILTER (2) `(&(uniqueMember={dn})(objectClass=posixGroup))`	string
controllers.authelia.containers.app.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_IMPLEMENTATION (2) `custom`	string
controllers.authelia.containers.app.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_START_TLS (2) `false`	string
controllers.authelia.containers.app.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_TIMEOUT (2) `5s`	string
controllers.authelia.containers.app.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_USER (2) `cn=search,ou=svcaccts,ou=users,dc=home,dc=arpa`	string
controllers.authelia.containers.app.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_USERS_FILTER (2) `(&({username_attribute}={input})(objectClass=posixAccount))`	string
controllers.authelia.containers.app.env.AUTHELIA_AUTHENTICATION_BACKEND_PASSWORD_RESET_DISABLE (2) `true`	string
controllers.authelia.containers.app.env.AUTHELIA_AUTHENTICATION_BACKEND_REFRESH_INTERVAL (2) `1m`	string
controllers.authelia.containers.app.env.AUTHELIA_LOG_LEVEL (2) `debug`	string
controllers.authelia.containers.app.env.AUTHELIA_NOTIFIER_DISABLE_STARTUP_CHECK (2) `true`	string
controllers.authelia.containers.app.env.AUTHELIA_NOTIFIER_SMTP_SENDER (2) `Authelia <${SECRET_SMTP_FROM}>`	string
controllers.authelia.containers.app.env.AUTHELIA_SERVER_PORT (2) `80`	number
controllers.authelia.containers.app.env.AUTHELIA_SESSION_REDIS_DATABASE_INDEX (2) `2`	number
controllers.authelia.containers.app.env.AUTHELIA_SESSION_REDIS_HOST (2) `dragonfly.database.svc.cluster.local`	string
controllers.authelia.containers.app.env.AUTHELIA_TOTP_ISSUER (2) `authelia.com`	string
controllers.authelia.containers.app.env.TZ (2) `${TIMEZONE}`	string
controllers.authelia.containers.app.env.AUTHELIA_ACCESS_CONTROL_DEFAULT_POLICY (1) `one_factor`	string
controllers.authelia.containers.app.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_ADDRESS (1) `ldap://glauth.auth.svc.cluster.local:389`	string
controllers.authelia.containers.app.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_ATTRIBUTES_DISPLAY_NAME (1) `givenName`	string
controllers.authelia.containers.app.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_ATTRIBUTES_GROUP_NAME (1) `ou`	string
controllers.authelia.containers.app.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_ATTRIBUTES_MAIL (1) `mail`	string
controllers.authelia.containers.app.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_ATTRIBUTES_MEMBER_OF (1) `memberOf`	string
controllers.authelia.containers.app.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_ATTRIBUTES_USERNAME (1) `uid`	string
controllers.authelia.containers.app.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_DISPLAY_NAME_ATTRIBUTE (1) `displayName`	string
controllers.authelia.containers.app.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_GROUP_NAME_ATTRIBUTE (1) `cn`	string
controllers.authelia.containers.app.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_MAIL_ATTRIBUTE (1) `mail`	string
controllers.authelia.containers.app.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_PASSWORD_FILE (1) `/app/secrets/AUTHELIA_AUTHENTICATION_BACKEND_LDAP_PASSWORD`	string
controllers.authelia.containers.app.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_URL (1) `ldap://lldap.default.svc.cluster.local:389`	string
controllers.authelia.containers.app.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_USERNAME_ATTRIBUTE (1) `uid`	string
controllers.authelia.containers.app.env.AUTHELIA_CERTIFICATES_DIRECTORY (1) `/trusted_certs`	string
controllers.authelia.containers.app.env.AUTHELIA_DEFAULT_REDIRECTION_URL (1) `https://auth.${SECRET_DOMAIN}`	string
controllers.authelia.containers.app.env.AUTHELIA_DUO_API_DISABLE (1) `true`	string
controllers.authelia.containers.app.env.AUTHELIA_DUO_API_INTEGRATION_KEY_FILE (1) `/app/secrets/AUTHELIA_DUO_API_INTEGRATION_KEY`	string
controllers.authelia.containers.app.env.AUTHELIA_DUO_API_SECRET_KEY_FILE (1) `/app/secrets/AUTHELIA_DUO_API_SECRET_KEY`	string
controllers.authelia.containers.app.env.AUTHELIA_IDENTITY_PROVIDERS_OIDC_HMAC_SECRET_FILE (1) `/app/secrets/AUTHELIA_IDENTITY_PROVIDERS_OIDC_HMAC_SECRET`	string
controllers.authelia.containers.app.env.AUTHELIA_NOTIFIER_SMTP_ADDRESS (1) `maddy.default.svc.cluster.local:25`	string
controllers.authelia.containers.app.env.AUTHELIA_NOTIFIER_SMTP_DISABLE_REQUIRE_TLS (1) `true`	string
controllers.authelia.containers.app.env.AUTHELIA_NOTIFIER_SMTP_HOST (1) `${SECRET_MAIL_HOST}`	string
controllers.authelia.containers.app.env.AUTHELIA_NOTIFIER_SMTP_PASSWORD_FILE (1) `/app/secrets/AUTHELIA_NOTIFIER_SMTP_PASSWORD`	string
controllers.authelia.containers.app.env.AUTHELIA_NOTIFIER_SMTP_PORT (1) `${SECRET_MAIL_PORT}`	string
controllers.authelia.containers.app.env.AUTHELIA_SERVER_BUFFERS_READ (1) `16384`	number
controllers.authelia.containers.app.env.AUTHELIA_SERVER_BUFFERS_WRITE (1) `16384`	number
controllers.authelia.containers.app.env.AUTHELIA_SESSION_DOMAIN (1) `${SECRET_DOMAIN}`	string
controllers.authelia.containers.app.env.AUTHELIA_SESSION_NAME (1) `authelia-home-cluster`	string
controllers.authelia.containers.app.env.AUTHELIA_SESSION_REDIS_PASSWORD.valueFrom.secretKeyRef.key (1) `password`	string
controllers.authelia.containers.app.env.AUTHELIA_SESSION_REDIS_PASSWORD.valueFrom.secretKeyRef.name (1) `dragonfly-secret`	string
controllers.authelia.containers.app.env.AUTHELIA_SESSION_REDIS_PORT (1) `6379`	number
controllers.authelia.containers.app.env.AUTHELIA_SESSION_SECRET_FILE (1) `/app/secrets/AUTHELIA_SESSION_SECRET`	string
controllers.authelia.containers.app.env.AUTHELIA_STORAGE_ENCRYPTION_KEY_FILE (1) `/app/secrets/AUTHELIA_STORAGE_ENCRYPTION_KEY`	string
controllers.authelia.containers.app.env.AUTHELIA_STORAGE_LOCAL_PATH (1) `/data/db.sqlite3`	string
controllers.authelia.containers.app.env.AUTHELIA_STORAGE_POSTGRES_ADDRESS (1) `postgres16-rw.database.svc.cluster.local`	string
controllers.authelia.containers.app.env.AUTHELIA_STORAGE_POSTGRES_DATABASE (1) `authelia`	string
controllers.authelia.containers.app.env.AUTHELIA_STORAGE_POSTGRES_PASSWORD_FILE (1) `/app/secrets/AUTHELIA_STORAGE_POSTGRES_PASSWORD`	string
controllers.authelia.containers.app.env.AUTHELIA_TOTP_DISABLE (1) `false`	boolean
controllers.authelia.containers.app.env.AUTHELIA_WEBAUTHN_DISABLE (1) `true`	string
controllers.authelia.containers.app.env.CLUSTER_CIDR (1) `${CLUSTER_CIDR}`	string
controllers.authelia.containers.app.env.HOME_CIDR (1) `${HOME_CIDR}`	string
controllers.authelia.containers.app.env.NODE_CIDR (1) `${NODE_CIDR}`	string
controllers.authelia.containers.app.env.SECRET_EXTERNAL_DOMAIN (1) `${SECRET_EXTERNAL_DOMAIN}`	string
controllers.authelia.containers.app.env.SECRET_INTERNAL_DOMAIN (1) `${SECRET_INTERNAL_DOMAIN}`	string
controllers.authelia.containers.app.envFrom[].secretRef.name (7) `authelia-secret`	string
controllers.authelia.containers.app.probes.liveness.custom (7) `true`	boolean
controllers.authelia.containers.app.probes.liveness.enabled (7) `true`	boolean
controllers.authelia.containers.app.probes.liveness.spec.failureThreshold (7) `3`	number
controllers.authelia.containers.app.probes.liveness.spec.httpGet.path (7) `/api/health`	string
controllers.authelia.containers.app.probes.liveness.spec.httpGet.port (7) `80`	number
controllers.authelia.containers.app.probes.liveness.spec.initialDelaySeconds (7) `0`	number
controllers.authelia.containers.app.probes.liveness.spec.periodSeconds (7) `10`	number
controllers.authelia.containers.app.probes.liveness.spec.timeoutSeconds (7) `1`	number
controllers.authelia.containers.app.probes.readiness.custom (7) `true`	boolean
controllers.authelia.containers.app.probes.readiness.enabled (7) `true`	boolean
controllers.authelia.containers.app.probes.readiness.spec.failureThreshold (7) `3`	number
controllers.authelia.containers.app.probes.readiness.spec.httpGet.path (7) `/api/health`	string
controllers.authelia.containers.app.probes.readiness.spec.httpGet.port (7) `80`	number
controllers.authelia.containers.app.probes.readiness.spec.initialDelaySeconds (7) `0`	number
controllers.authelia.containers.app.probes.readiness.spec.periodSeconds (7) `10`	number
controllers.authelia.containers.app.probes.readiness.spec.timeoutSeconds (7) `1`	number
controllers.authelia.containers.app.probes.startup.enabled (3) `false`	boolean
controllers.authelia.containers.app.securityContext.allowPrivilegeEscalation (5) `false`	boolean
controllers.authelia.containers.app.securityContext.capabilities.drop[] (5) `- ALL`	string
controllers.authelia.containers.app.securityContext.readOnlyRootFilesystem (5) `true`	boolean
controllers.authelia.containers.app.args[] (2) `- --config - /config/configuration.yaml - --config.experimental.filters - expand-env`	string
controllers.authelia.containers.app.command[] (1) `- authelia`	string
controllers.authelia.containers.main.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_BASE_DN.valueFrom.secretKeyRef.key (1) `LLDAP_LDAP_BASE_DN`	string
controllers.authelia.containers.main.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_BASE_DN.valueFrom.secretKeyRef.name (1) `lldap-secret`	string
controllers.authelia.containers.main.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_PASSWORD.valueFrom.secretKeyRef.key (1) `LLDAP_LDAP_USER_PASS`	string
controllers.authelia.containers.main.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_PASSWORD.valueFrom.secretKeyRef.name (1) `lldap-secret`	string
controllers.authelia.containers.main.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_USER.valueFrom.secretKeyRef.key (1) `LDAP_BIND_DN`	string
controllers.authelia.containers.main.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_USER.valueFrom.secretKeyRef.name (1) `lldap-secret`	string
controllers.authelia.containers.main.env.AUTHELIA_NOTIFIER_SMTP_PASSWORD.valueFrom.secretKeyRef.key (1) `LLDAP_LDAP_USER_PASS`	string
controllers.authelia.containers.main.env.AUTHELIA_NOTIFIER_SMTP_PASSWORD.valueFrom.secretKeyRef.name (1) `lldap-secret`	string
controllers.authelia.containers.main.env.AUTHELIA_STORAGE_POSTGRES_ADDRESS (1) `tcp://pgo-cluster-ha.postgres-operator.svc.cluster.local:5432`	string
controllers.authelia.containers.main.env.AUTHELIA_STORAGE_POSTGRES_DATABASE.valueFrom.secretKeyRef.key (1) `dbname`	string
controllers.authelia.containers.main.env.AUTHELIA_STORAGE_POSTGRES_DATABASE.valueFrom.secretKeyRef.name (1) `pgo-cluster-pguser-authelia`	string
controllers.authelia.containers.main.env.AUTHELIA_STORAGE_POSTGRES_PASSWORD.valueFrom.secretKeyRef.key (1) `password`	string
controllers.authelia.containers.main.env.AUTHELIA_STORAGE_POSTGRES_PASSWORD.valueFrom.secretKeyRef.name (1) `pgo-cluster-pguser-authelia`	string
controllers.authelia.containers.main.env.AUTHELIA_STORAGE_POSTGRES_USERNAME.valueFrom.secretKeyRef.key (1) `user`	string
controllers.authelia.containers.main.env.AUTHELIA_STORAGE_POSTGRES_USERNAME.valueFrom.secretKeyRef.name (1) `pgo-cluster-pguser-authelia`	string
controllers.authelia.containers.main.env.X_AUTHELIA_CONFIG (1) `/config/configuration.yaml`	string
controllers.authelia.containers.main.env.X_AUTHELIA_CONFIG_FILTERS (1) `template`	string
controllers.authelia.containers.main.envFrom[].secretRef.name (1) `authelia-secret`	string
controllers.authelia.containers.main.image.repository (1) `ghcr.io/authelia/authelia`	string
controllers.authelia.containers.main.image.tag (1) `4.38.18`	string
controllers.authelia.containers.main.probes.liveness.enabled (1) `true`	boolean
controllers.authelia.containers.main.probes.readiness.enabled (1) `true`	boolean
controllers.authelia.containers.main.probes.startup.enabled (1) `true`	boolean
controllers.authelia.containers.main.probes.startup.spec.failureThreshold (1) `30`	number
controllers.authelia.containers.main.probes.startup.spec.periodSeconds (1) `5`	number
controllers.authelia.containers.main.resources.requests.cpu (1) `1m`	string
controllers.authelia.containers.main.resources.requests.memory (1) `50Mi`	string
controllers.authelia.replicas (8) `2`	number
controllers.authelia.strategy (8) `RollingUpdate`	string
controllers.authelia.initContainers.init-db.image.repository (6) `ghcr.io/onedr0p/postgres-init`	string
controllers.authelia.initContainers.init-db.image.tag (6) `17.4`	number, string
controllers.authelia.initContainers.init-db.image.pullPolicy (2) `IfNotPresent`	string
controllers.authelia.initContainers.init-db.envFrom[].secretRef.name (5) `authelia-secret`	string
controllers.authelia.initContainers.init-db.env.INIT_POSTGRES_DBNAME (1) `authelia`	string
controllers.authelia.initContainers.init-db.env.INIT_POSTGRES_HOST (1) `postgres16-rw.database.svc.cluster.local`	string
controllers.authelia.initContainers.init-db.env.INIT_POSTGRES_PASS.valueFrom.secretKeyRef.key (1) `AUTHELIA_STORAGE_POSTGRES_PASSWORD`	string
controllers.authelia.initContainers.init-db.env.INIT_POSTGRES_PASS.valueFrom.secretKeyRef.name (1) `authelia-secret`	string
controllers.authelia.initContainers.init-db.env.INIT_POSTGRES_SUPER_PASS.valueFrom.secretKeyRef.key (1) `password`	string
controllers.authelia.initContainers.init-db.env.INIT_POSTGRES_SUPER_PASS.valueFrom.secretKeyRef.name (1) `cloudnative-pg-secret`	string
controllers.authelia.initContainers.init-db.env.INIT_POSTGRES_USER.valueFrom.secretKeyRef.key (1) `AUTHELIA_STORAGE_POSTGRES_USERNAME`	string
controllers.authelia.initContainers.init-db.env.INIT_POSTGRES_USER.valueFrom.secretKeyRef.name (1) `authelia-secret`	string
controllers.authelia.pod.topologySpreadConstraints[].labelSelector.matchLabels."app.kubernetes.io/name" (4) `authelia`	string
controllers.authelia.pod.topologySpreadConstraints[].maxSkew (4) `1`	number
controllers.authelia.pod.topologySpreadConstraints[].topologyKey (4) `kubernetes.io/hostname`	string
controllers.authelia.pod.topologySpreadConstraints[].whenUnsatisfiable (4) `DoNotSchedule`	string
controllers.authelia.pod.securityContext.runAsGroup (3) `568`	number
controllers.authelia.pod.securityContext.runAsUser (3) `568`	number
controllers.authelia.pod.securityContext.runAsNonRoot (2) `true`	boolean
controllers.authelia.pod.enableServiceLinks (2) `false`	boolean
controllers.main.annotations."reloader.stakater.com/auto" (3) `true`	string
controllers.main.containers.main.env.AUTHELIA_SERVER_ADDRESS (3) `tcp://0.0.0.0:80`	string
controllers.main.containers.main.env.AUTHELIA_SERVER_DISABLE_HEALTHCHECK (3) `true`	boolean, string
controllers.main.containers.main.env.AUTHELIA_TELEMETRY_METRICS_ADDRESS (3) `tcp://0.0.0.0:8080`	string
controllers.main.containers.main.env.AUTHELIA_TELEMETRY_METRICS_ENABLED (3) `true`	boolean, string
controllers.main.containers.main.env.AUTHELIA_THEME (3) `dark`	string
controllers.main.containers.main.env.X_AUTHELIA_CONFIG (3) `/config/configuration.yaml`	string
controllers.main.containers.main.env.X_AUTHELIA_CONFIG_FILTERS (3) `expand-env`	string
controllers.main.containers.main.env.AUTHELIA_LOG_LEVEL (1) `debug`	string
controllers.main.containers.main.env.AUTHELIA_NOTIFIER_DISABLE_STARTUP_CHECK (1) `true`	string
controllers.main.containers.main.envFrom[].secretRef.name (3) `authelia-secret`	string
controllers.main.containers.main.image.repository (3) `ghcr.io/authelia/authelia`	string
controllers.main.containers.main.image.tag (3) `v4.38.0-beta3@sha256:b48ae4d0ed9d1eee76efe382df60928bae550ec19e5663858dde6dc5f41cf285`	string
controllers.main.containers.main.probes.liveness.custom (3) `true`	boolean
controllers.main.containers.main.probes.liveness.enabled (3) `true`	boolean
controllers.main.containers.main.probes.liveness.spec.failureThreshold (3) `3`	number
controllers.main.containers.main.probes.liveness.spec.httpGet.path (3) `/api/health`	string
controllers.main.containers.main.probes.liveness.spec.httpGet.port (3) `80`	number
controllers.main.containers.main.probes.liveness.spec.initialDelaySeconds (3) `0`	number
controllers.main.containers.main.probes.liveness.spec.periodSeconds (3) `10`	number
controllers.main.containers.main.probes.liveness.spec.timeoutSeconds (3) `1`	number
controllers.main.containers.main.probes.readiness.custom (3) `true`	boolean
controllers.main.containers.main.probes.readiness.enabled (3) `true`	boolean
controllers.main.containers.main.probes.readiness.spec.failureThreshold (3) `3`	number
controllers.main.containers.main.probes.readiness.spec.httpGet.path (3) `/api/health`	string
controllers.main.containers.main.probes.readiness.spec.httpGet.port (3) `80`	number
controllers.main.containers.main.probes.readiness.spec.initialDelaySeconds (3) `0`	number
controllers.main.containers.main.probes.readiness.spec.periodSeconds (3) `10`	number
controllers.main.containers.main.probes.readiness.spec.timeoutSeconds (3) `1`	number
controllers.main.containers.main.probes.startup.enabled (3) `false`	boolean
controllers.main.containers.main.resources.limits.memory (3) `128Mi`	string
controllers.main.containers.main.resources.requests.cpu (3) `10m`	string
controllers.main.containers.main.resources.requests.memory (2) `10Mi`	string
controllers.main.containers.main.securityContext.allowPrivilegeEscalation (2) `false`	boolean
controllers.main.containers.main.securityContext.capabilities.drop[] (2) `- ALL`	string
controllers.main.containers.main.securityContext.readOnlyRootFilesystem (2) `true`	boolean
controllers.main.initContainers.init-db.envFrom[].secretRef.name (3) `authelia-secret`	string
controllers.main.initContainers.init-db.image.repository (3) `ghcr.io/onedr0p/postgres-init`	string
controllers.main.initContainers.init-db.image.tag (3) `16`	number
controllers.main.initContainers.init-db.image.pullPolicy (1) `IfNotPresent`	string
controllers.main.pod.enableServiceLinks (3) `false`	boolean
controllers.main.pod.securityContext.runAsGroup (3) `568`	number
controllers.main.pod.securityContext.runAsUser (3) `568`	number
controllers.main.pod.securityContext.runAsNonRoot (2) `true`	boolean
controllers.main.pod.topologySpreadConstraints[].labelSelector.matchLabels."app.kubernetes.io/name" (3) `authelia`	string
controllers.main.pod.topologySpreadConstraints[].maxSkew (3) `1`	number
controllers.main.pod.topologySpreadConstraints[].topologyKey (3) `kubernetes.io/hostname`	string
controllers.main.pod.topologySpreadConstraints[].whenUnsatisfiable (3) `DoNotSchedule`	string
controllers.main.replicas (3) `2`	number
controllers.main.strategy (3) `RollingUpdate`	string
service.app.controller (8) `authelia`	string
service.app.ports.http.port (8) `80`	number
service.app.ports.metrics.port (7) `8080`	number
service.app.annotations."lbipam.cilium.io/ips" (1) `${AUTH_LB_IP}`	string
service.app.type (1) `LoadBalancer`	string
service.main.ports.http.port (6) `80`	number
service.main.ports.metrics.port (5) `8080`	number
service.main.ports.metrics.enabled (2) `true`	boolean
service.main.controller (1) `authelia`	string
ingress.app.annotations."external-dns.alpha.kubernetes.io/target" (7) `external.${SECRET_DOMAIN}`	string
ingress.app.annotations."nginx.ingress.kubernetes.io/configuration-snippet" (6) `add_header Cache-Control "no-store"; add_header Pragma "no-cache"; add_header X-Frame-Options "SAMEORIGIN"; add_header X-XSS-Protection "1; mode=block";`	string
ingress.app.annotations."gethomepage.dev/enabled" (2) `true`	string
ingress.app.annotations."gethomepage.dev/group" (2) `Services`	string
ingress.app.annotations."gethomepage.dev/icon" (2) `mdi-two-factor-authentication`	string
ingress.app.annotations."gethomepage.dev/name" (2) `Authelia`	string
ingress.app.annotations."hajimari.io/icon" (2) `mdi:shield-account`	string
ingress.app.annotations."external-dns.alpha.kubernetes.io/enabled" (1) `true`	string
ingress.app.annotations."gethomepage.dev/pod-selector" (1) `app in ( authelia )`	string
ingress.app.annotations."nginx.ingress.kubernetes.io/add-header-Cache-Control" (1) `no-store`	string
ingress.app.annotations."nginx.ingress.kubernetes.io/add-header-Pragma" (1) `no-cache`	string
ingress.app.annotations."nginx.ingress.kubernetes.io/add-header-X-Frame-Options" (1) `SAMEORIGIN`	string
ingress.app.annotations."nginx.ingress.kubernetes.io/add-header-X-XSS-Protection" (1) `1; mode=block`	string
ingress.app.className (7) `external`	string
ingress.app.hosts[].host (7) `auth.${SECRET_DOMAIN}`	string
ingress.app.hosts[].paths[].path (7) `/`	string
ingress.app.hosts[].paths[].service.identifier (7) `app`	string
ingress.app.hosts[].paths[].service.port (7) `http`	string, number
ingress.app.tls[].hosts[] (3) `- auth.${SECRET_DOMAIN}`	string
ingress.app.enabled (2) `true`	boolean
ingress.main.enabled (7) `true`	boolean
ingress.main.hosts[].host (7) `{{ .Release.Name }}.${SECRET_DOMAIN} auth.${SECRET_DOMAIN}`	string
ingress.main.hosts[].paths[].path (7) `/`	string
ingress.main.hosts[].paths[].service.port (5) `http`	string
ingress.main.hosts[].paths[].service.name (3) `main main`	string
ingress.main.hosts[].paths[].service.identifier (2) `main`	string
ingress.main.hosts[].paths[].pathType (4) `Prefix`	string
ingress.main.tls[].hosts[] (7) `- {{ .Release.Name }}.${SECRET_DOMAIN} - auth.${SECRET_DOMAIN}`	string
ingress.main.tls[].secretName (2) `authelia-tls`	string
ingress.main.annotations."external-dns.alpha.kubernetes.io/target" (5) `external.${SECRET_DOMAIN}`	string
ingress.main.annotations."nginx.ingress.kubernetes.io/configuration-snippet" (5) `add_header Cache-Control "no-store"; add_header Pragma "no-cache"; add_header X-Frame-Options "SAMEORIGIN"; add_header X-XSS-Protection "1; mode=block";`	string
ingress.main.annotations."external-dns.home.arpa/enabled" (2) `true`	string
ingress.main.annotations."hajimari.io/icon" (2) `mdi:shield-account`	string
ingress.main.annotations."cert-manager.io/cluster-issuer" (1) `letsencrypt-production`	string
ingress.main.annotations."gatus.io/enabled" (1) `true`	string
ingress.main.annotations."gatus.io/path" (1) `/api/health`	string
ingress.main.annotations."hajimari.io/url" (1) `https://auth.${SECRET_DOMAIN}`	string
ingress.main.className (5) `external`	string
ingress.main.ingressClassName (2) `external`	string
serviceMonitor.app.endpoints[].interval (7) `1m`	string
serviceMonitor.app.endpoints[].path (7) `/metrics`	string
serviceMonitor.app.endpoints[].port (7) `metrics`	string
serviceMonitor.app.endpoints[].scheme (7) `http`	string
serviceMonitor.app.endpoints[].scrapeTimeout (7) `10s`	string
serviceMonitor.app.serviceName (7) `authelia`	string
serviceMonitor.app.enabled (2) `true`	boolean
serviceMonitor.main.enabled (3) `true`	boolean
serviceMonitor.main.endpoints[].interval (3) `1m`	string
serviceMonitor.main.endpoints[].path (3) `/metrics`	string
serviceMonitor.main.endpoints[].port (3) `metrics`	string
serviceMonitor.main.endpoints[].scheme (3) `http`	string
serviceMonitor.main.endpoints[].scrapeTimeout (3) `10s`	string
defaultPodOptions.securityContext.runAsGroup (4) `65534`	number
defaultPodOptions.securityContext.runAsNonRoot (4) `true`	boolean
defaultPodOptions.securityContext.runAsUser (4) `65534`	number
defaultPodOptions.securityContext.seccompProfile.type (4) `RuntimeDefault`	string
defaultPodOptions.securityContext.fsGroupChangePolicy (1) `OnRootMismatch`	string
defaultPodOptions.topologySpreadConstraints[].labelSelector.matchLabels."app.kubernetes.io/name" (3) `authelia`	string
defaultPodOptions.topologySpreadConstraints[].maxSkew (3) `1`	number
defaultPodOptions.topologySpreadConstraints[].topologyKey (3) `kubernetes.io/hostname`	string
defaultPodOptions.topologySpreadConstraints[].whenUnsatisfiable (3) `DoNotSchedule`	string
controller.replicas (2) `2`	number
controller.strategy (2) `RollingUpdate`	string
controller.annotations."reloader.stakater.com/auto" (1) `true`	string
controller.rollingUpdate.surge (1) `1`	number
controller.rollingUpdate.unavailable (1) `1`	number
enableServiceLinks (2) `false`	boolean
envFrom[].secretRef.name (2) `authelia-secret`	string
image.repository (2) `ghcr.io/authelia/authelia`	string
image.tag (2) `master@sha256:c1a838724e95a3ebc9ca210f0d81fc25a77e47e0b583f146c5781e1701a4199f`	string
podSecurityContext.fsGroup (2) `568`	number
podSecurityContext.fsGroupChangePolicy (2) `OnRootMismatch`	string
podSecurityContext.runAsGroup (2) `568`	number
podSecurityContext.runAsUser (2) `568`	number
resources.limits.memory (2) `100Mi`	string
resources.requests.cpu (2) `5m`	string
resources.requests.memory (2) `10Mi`	string
topologySpreadConstraints[].labelSelector.matchLabels."app.kubernetes.io/name" (2) `authelia`	string
topologySpreadConstraints[].maxSkew (2) `1`	number
topologySpreadConstraints[].topologyKey (2) `kubernetes.io/hostname`	string
topologySpreadConstraints[].whenUnsatisfiable (2) `DoNotSchedule`	string
args[] (1) `- --config - /config/configuration.yaml - --config.experimental.filters - expand-env`	string
env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_ADDITIONAL_GROUPS_DN (1) `ou=groups`	string
env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_ADDITIONAL_USERS_DN (1) `ou=people`	string
env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_ADDRESS (1) `ldap://lldap.auth.svc.cluster.local:389`	string
env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_ATTRIBUTES_DISPLAY_NAME (1) `displayName`	string
env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_ATTRIBUTES_GROUP_NAME (1) `cn`	string
env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_ATTRIBUTES_MAIL (1) `mail`	string
env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_ATTRIBUTES_USERNAME (1) `uid`	string
env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_BASE_DN (1) `dc=home,dc=arpa`	string
env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_GROUPS_FILTER (1) `(member={dn})`	string
env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_IMPLEMENTATION (1) `custom`	string
env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_START_TLS (1) `false`	string
env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_TIMEOUT (1) `5s`	string
env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_USER (1) `uid=admin,ou=people,dc=home,dc=arpa`	string
env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_USERS_FILTER (1) `(&({username_attribute}={input})(objectClass=person))`	string
env.AUTHELIA_AUTHENTICATION_BACKEND_PASSWORD_RESET_DISABLE (1) `true`	string
env.AUTHELIA_DEFAULT_REDIRECTION_URL (1) `https://auth.${ORG_DOMAIN}`	string
env.AUTHELIA_DUO_API_DISABLE (1) `true`	string
env.AUTHELIA_LOG_LEVEL (1) `info`	string
env.AUTHELIA_NOTIFIER_DISABLE_STARTUP_CHECK (1) `true`	string
env.AUTHELIA_NOTIFIER_SMTP_SENDER (1) `Authelia <noreply@${NET_DOMAIN}>`	string
env.AUTHELIA_SERVER_ADDRESS (1) `tcp://:80`	string
env.AUTHELIA_SERVER_DISABLE_HEALTHCHECK (1) `true`	string
env.AUTHELIA_SESSION_DOMAIN (1) `${ORG_DOMAIN}`	string
env.AUTHELIA_SESSION_REDIS_DATABASE_INDEX (1) `14`	number
env.AUTHELIA_SESSION_REDIS_HOST (1) `redis.default.svc.cluster.local`	string
env.AUTHELIA_STORAGE_POSTGRES_ADDRESS (1) `postgres.database.svc.cluster.local:5432`	string
env.AUTHELIA_STORAGE_POSTGRES_DATABASE.valueFrom.secretKeyRef.key (1) `DATABASE_NAME`	string
env.AUTHELIA_STORAGE_POSTGRES_DATABASE.valueFrom.secretKeyRef.name (1) `database-authelia-user`	string
env.AUTHELIA_STORAGE_POSTGRES_PASSWORD.valueFrom.secretKeyRef.key (1) `PASSWORD`	string
env.AUTHELIA_STORAGE_POSTGRES_PASSWORD.valueFrom.secretKeyRef.name (1) `database-authelia-user`	string
env.AUTHELIA_STORAGE_POSTGRES_USERNAME.valueFrom.secretKeyRef.key (1) `LOGIN`	string
env.AUTHELIA_STORAGE_POSTGRES_USERNAME.valueFrom.secretKeyRef.name (1) `database-authelia-user`	string
env.AUTHELIA_TELEMETRY_METRICS_ADDRESS (1) `tcp://0.0.0.0:8080`	string
env.AUTHELIA_TELEMETRY_METRICS_ENABLED (1) `true`	string
env.AUTHELIA_THEME (1) `grey`	string
env.AUTHELIA_TOTP_ISSUER (1) `authelia.com`	string
env.AUTHELIA_WEBAUTHN_DISABLE (1) `true`	string
global.nameOverride (1) `authelia`	string
podAnnotations."configmap.reloader.stakater.com/reload" (1) `authelia`	string
podAnnotations."secret.reloader.stakater.com/reload" (1) `authelia`	string
probes.liveness.custom (1) `true`	boolean
probes.liveness.enabled (1) `true`	boolean
probes.liveness.spec.failureThreshold (1) `3`	number
probes.liveness.spec.httpGet.path (1) `/api/health`	string
probes.liveness.spec.httpGet.port (1) `80`	number
probes.liveness.spec.initialDelaySeconds (1) `0`	number
probes.liveness.spec.periodSeconds (1) `10`	number
probes.liveness.spec.timeoutSeconds (1) `1`	number
probes.readiness.custom (1) `true`	boolean
probes.readiness.enabled (1) `true`	boolean
probes.readiness.spec.failureThreshold (1) `3`	number
probes.readiness.spec.httpGet.path (1) `/api/health`	string
probes.readiness.spec.httpGet.port (1) `80`	number
probes.readiness.spec.initialDelaySeconds (1) `0`	number
probes.readiness.spec.periodSeconds (1) `10`	number
probes.readiness.spec.timeoutSeconds (1) `1`	number
probes.startup.enabled (1) `false`	boolean

Key

Types

persistence.config.name (14)

authelia-configmap

string

persistence.config.type (14)

configMap

string

persistence.config.globalMounts[].path (11)

/config/configuration.yaml

string

persistence.config.globalMounts[].readOnly (11)

true

boolean

persistence.config.globalMounts[].subPath (10)

configuration.yaml

string

persistence.config.enabled (9)

true

boolean

persistence.config.mountPath (2)

/config/configuration.yaml

string

persistence.config.readOnly (2)

false

boolean

persistence.config.subPath (2)

configuration.yaml

string

persistence.config.advancedMounts.authelia.app[].path (1)

/config/configuration.yaml

string

persistence.config.advancedMounts.authelia.app[].readOnly (1)

true

boolean

persistence.config.advancedMounts.authelia.app[].subPath (1)

configuration.yaml

string

persistence.secret-files.enabled (3)

true

boolean

persistence.secret-files.name (3)

authelia-files

string

persistence.secret-files.type (3)

secret

string

persistence.secret-files.globalMounts[].path (2)

/config/secret

string

persistence.secret-files.advancedMounts.authelia.app[].path (1)

/app/secrets

string

persistence.data.existingClaim (1)

${PVC_NAME}

string

persistence.data.globalMounts[].path (1)

/data

string

persistence.trusted-certs.advancedMounts.authelia.app[].path (1)

/trusted_certs/letsencrypt-certs.pem

string

persistence.trusted-certs.advancedMounts.authelia.app[].readOnly (1)

true

boolean

persistence.trusted-certs.advancedMounts.authelia.app[].subPath (1)

letsencrypt-certs.pem

string

persistence.trusted-certs.name (1)

letsencrypt-certs

string

persistence.trusted-certs.type (1)

configMap

string

persistence.users.globalMounts[].path (1)

/config/users.yaml

string

persistence.users.globalMounts[].readOnly (1)

true

boolean

persistence.users.globalMounts[].subPath (1)

users.yaml

string

persistence.users.name (1)

authelia-users-secret

string

persistence.users.type (1)

secret

string

controllers.authelia.annotations."reloader.stakater.com/auto" (9)

true

string

controllers.authelia.containers.app.image.repository (8)

ghcr.io/authelia/authelia

string

controllers.authelia.containers.app.image.tag (8)

4.39.4@sha256:64b356c30fd817817a4baafb4dbc0f9f8702e46b49e1edb92ff42e19e487b517

string

controllers.authelia.containers.app.resources.limits.memory (8)

128Mi

string

controllers.authelia.containers.app.resources.requests.cpu (8)

10m

string

controllers.authelia.containers.app.resources.requests.memory (5)

32Mi

string

controllers.authelia.containers.app.env.AUTHELIA_SERVER_DISABLE_HEALTHCHECK (7)

true

string, boolean

controllers.authelia.containers.app.env.AUTHELIA_TELEMETRY_METRICS_ADDRESS (7)

tcp://0.0.0.0:8080

string

controllers.authelia.containers.app.env.AUTHELIA_TELEMETRY_METRICS_ENABLED (7)

true

string, boolean

controllers.authelia.containers.app.env.AUTHELIA_THEME (7)

dark

string

controllers.authelia.containers.app.env.AUTHELIA_SERVER_ADDRESS (6)

tcp://0.0.0.0:80

string

controllers.authelia.containers.app.env.X_AUTHELIA_CONFIG (6)

/config/configuration.yaml

string

controllers.authelia.containers.app.env.X_AUTHELIA_CONFIG_FILTERS (6)

template

string

controllers.authelia.containers.app.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_ADDITIONAL_GROUPS_DN (2)

ou=users

string

controllers.authelia.containers.app.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_ADDITIONAL_USERS_DN (2)

ou=people,ou=users

string

controllers.authelia.containers.app.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_BASE_DN (2)

dc=home,dc=arpa

string

controllers.authelia.containers.app.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_GROUPS_FILTER (2)

(&(uniqueMember={dn})(objectClass=posixGroup))

string

controllers.authelia.containers.app.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_IMPLEMENTATION (2)

custom

string

controllers.authelia.containers.app.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_START_TLS (2)

false

string

controllers.authelia.containers.app.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_TIMEOUT (2)

5s

string

controllers.authelia.containers.app.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_USER (2)

cn=search,ou=svcaccts,ou=users,dc=home,dc=arpa

string

controllers.authelia.containers.app.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_USERS_FILTER (2)

(&({username_attribute}={input})(objectClass=posixAccount))

string

controllers.authelia.containers.app.env.AUTHELIA_AUTHENTICATION_BACKEND_PASSWORD_RESET_DISABLE (2)

true

string

controllers.authelia.containers.app.env.AUTHELIA_AUTHENTICATION_BACKEND_REFRESH_INTERVAL (2)

1m

string

controllers.authelia.containers.app.env.AUTHELIA_LOG_LEVEL (2)

debug

string

controllers.authelia.containers.app.env.AUTHELIA_NOTIFIER_DISABLE_STARTUP_CHECK (2)

true

string

controllers.authelia.containers.app.env.AUTHELIA_NOTIFIER_SMTP_SENDER (2)

Authelia <${SECRET_SMTP_FROM}>

string

controllers.authelia.containers.app.env.AUTHELIA_SERVER_PORT (2)

number

controllers.authelia.containers.app.env.AUTHELIA_SESSION_REDIS_DATABASE_INDEX (2)

number

controllers.authelia.containers.app.env.AUTHELIA_SESSION_REDIS_HOST (2)

dragonfly.database.svc.cluster.local

string

controllers.authelia.containers.app.env.AUTHELIA_TOTP_ISSUER (2)

authelia.com

string

controllers.authelia.containers.app.env.TZ (2)

${TIMEZONE}

string

controllers.authelia.containers.app.env.AUTHELIA_ACCESS_CONTROL_DEFAULT_POLICY (1)

one_factor

string

controllers.authelia.containers.app.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_ADDRESS (1)

ldap://glauth.auth.svc.cluster.local:389

string

controllers.authelia.containers.app.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_ATTRIBUTES_DISPLAY_NAME (1)

givenName

string

controllers.authelia.containers.app.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_ATTRIBUTES_GROUP_NAME (1)

ou

string

controllers.authelia.containers.app.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_ATTRIBUTES_MAIL (1)

mail

string

controllers.authelia.containers.app.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_ATTRIBUTES_MEMBER_OF (1)

memberOf

string

controllers.authelia.containers.app.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_ATTRIBUTES_USERNAME (1)

uid

string

controllers.authelia.containers.app.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_DISPLAY_NAME_ATTRIBUTE (1)

displayName

string

controllers.authelia.containers.app.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_GROUP_NAME_ATTRIBUTE (1)

cn

string

controllers.authelia.containers.app.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_MAIL_ATTRIBUTE (1)

mail

string

controllers.authelia.containers.app.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_PASSWORD_FILE (1)

/app/secrets/AUTHELIA_AUTHENTICATION_BACKEND_LDAP_PASSWORD

string

controllers.authelia.containers.app.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_URL (1)

ldap://lldap.default.svc.cluster.local:389

string

controllers.authelia.containers.app.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_USERNAME_ATTRIBUTE (1)

uid

string

controllers.authelia.containers.app.env.AUTHELIA_CERTIFICATES_DIRECTORY (1)

/trusted_certs

string

controllers.authelia.containers.app.env.AUTHELIA_DEFAULT_REDIRECTION_URL (1)

https://auth.${SECRET_DOMAIN}

string

controllers.authelia.containers.app.env.AUTHELIA_DUO_API_DISABLE (1)

true

string

controllers.authelia.containers.app.env.AUTHELIA_DUO_API_INTEGRATION_KEY_FILE (1)

/app/secrets/AUTHELIA_DUO_API_INTEGRATION_KEY

string

controllers.authelia.containers.app.env.AUTHELIA_DUO_API_SECRET_KEY_FILE (1)

/app/secrets/AUTHELIA_DUO_API_SECRET_KEY

string

controllers.authelia.containers.app.env.AUTHELIA_IDENTITY_PROVIDERS_OIDC_HMAC_SECRET_FILE (1)

/app/secrets/AUTHELIA_IDENTITY_PROVIDERS_OIDC_HMAC_SECRET

string

controllers.authelia.containers.app.env.AUTHELIA_NOTIFIER_SMTP_ADDRESS (1)

maddy.default.svc.cluster.local:25

string

controllers.authelia.containers.app.env.AUTHELIA_NOTIFIER_SMTP_DISABLE_REQUIRE_TLS (1)

true

string

controllers.authelia.containers.app.env.AUTHELIA_NOTIFIER_SMTP_HOST (1)

${SECRET_MAIL_HOST}

string

controllers.authelia.containers.app.env.AUTHELIA_NOTIFIER_SMTP_PASSWORD_FILE (1)

/app/secrets/AUTHELIA_NOTIFIER_SMTP_PASSWORD

string

controllers.authelia.containers.app.env.AUTHELIA_NOTIFIER_SMTP_PORT (1)

${SECRET_MAIL_PORT}

string

controllers.authelia.containers.app.env.AUTHELIA_SERVER_BUFFERS_READ (1)

number

controllers.authelia.containers.app.env.AUTHELIA_SERVER_BUFFERS_WRITE (1)

number

controllers.authelia.containers.app.env.AUTHELIA_SESSION_DOMAIN (1)

${SECRET_DOMAIN}

string

controllers.authelia.containers.app.env.AUTHELIA_SESSION_NAME (1)

authelia-home-cluster

string

controllers.authelia.containers.app.env.AUTHELIA_SESSION_REDIS_PASSWORD.valueFrom.secretKeyRef.key (1)

password

string

controllers.authelia.containers.app.env.AUTHELIA_SESSION_REDIS_PASSWORD.valueFrom.secretKeyRef.name (1)

dragonfly-secret

string

controllers.authelia.containers.app.env.AUTHELIA_SESSION_REDIS_PORT (1)

number

controllers.authelia.containers.app.env.AUTHELIA_SESSION_SECRET_FILE (1)

/app/secrets/AUTHELIA_SESSION_SECRET

string

controllers.authelia.containers.app.env.AUTHELIA_STORAGE_ENCRYPTION_KEY_FILE (1)

/app/secrets/AUTHELIA_STORAGE_ENCRYPTION_KEY

string

controllers.authelia.containers.app.env.AUTHELIA_STORAGE_LOCAL_PATH (1)

/data/db.sqlite3

string

controllers.authelia.containers.app.env.AUTHELIA_STORAGE_POSTGRES_ADDRESS (1)

postgres16-rw.database.svc.cluster.local

string

controllers.authelia.containers.app.env.AUTHELIA_STORAGE_POSTGRES_DATABASE (1)

authelia

string

controllers.authelia.containers.app.env.AUTHELIA_STORAGE_POSTGRES_PASSWORD_FILE (1)

/app/secrets/AUTHELIA_STORAGE_POSTGRES_PASSWORD

string

controllers.authelia.containers.app.env.AUTHELIA_TOTP_DISABLE (1)

false

boolean

controllers.authelia.containers.app.env.AUTHELIA_WEBAUTHN_DISABLE (1)

true

string

controllers.authelia.containers.app.env.CLUSTER_CIDR (1)

${CLUSTER_CIDR}

string

controllers.authelia.containers.app.env.HOME_CIDR (1)

${HOME_CIDR}

string

controllers.authelia.containers.app.env.NODE_CIDR (1)

${NODE_CIDR}

string

controllers.authelia.containers.app.env.SECRET_EXTERNAL_DOMAIN (1)

${SECRET_EXTERNAL_DOMAIN}

string

controllers.authelia.containers.app.env.SECRET_INTERNAL_DOMAIN (1)

${SECRET_INTERNAL_DOMAIN}

string

controllers.authelia.containers.app.envFrom[].secretRef.name (7)

authelia-secret

string

controllers.authelia.containers.app.probes.liveness.custom (7)

true

boolean

controllers.authelia.containers.app.probes.liveness.enabled (7)

true

boolean

controllers.authelia.containers.app.probes.liveness.spec.failureThreshold (7)

number

controllers.authelia.containers.app.probes.liveness.spec.httpGet.path (7)

/api/health

string

controllers.authelia.containers.app.probes.liveness.spec.httpGet.port (7)

number

controllers.authelia.containers.app.probes.liveness.spec.initialDelaySeconds (7)

number

controllers.authelia.containers.app.probes.liveness.spec.periodSeconds (7)

number

controllers.authelia.containers.app.probes.liveness.spec.timeoutSeconds (7)

number

controllers.authelia.containers.app.probes.readiness.custom (7)

true

boolean

controllers.authelia.containers.app.probes.readiness.enabled (7)

true

boolean

controllers.authelia.containers.app.probes.readiness.spec.failureThreshold (7)

number

controllers.authelia.containers.app.probes.readiness.spec.httpGet.path (7)

/api/health

string

controllers.authelia.containers.app.probes.readiness.spec.httpGet.port (7)

number

controllers.authelia.containers.app.probes.readiness.spec.initialDelaySeconds (7)

number

controllers.authelia.containers.app.probes.readiness.spec.periodSeconds (7)

number

controllers.authelia.containers.app.probes.readiness.spec.timeoutSeconds (7)

number

controllers.authelia.containers.app.probes.startup.enabled (3)

false

boolean

controllers.authelia.containers.app.securityContext.allowPrivilegeEscalation (5)

false

boolean

controllers.authelia.containers.app.securityContext.capabilities.drop[] (5)

- ALL

string

controllers.authelia.containers.app.securityContext.readOnlyRootFilesystem (5)

true

boolean

controllers.authelia.containers.app.args[] (2)

- --config
- /config/configuration.yaml
- --config.experimental.filters
- expand-env

string

controllers.authelia.containers.app.command[] (1)

- authelia

string

controllers.authelia.containers.main.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_BASE_DN.valueFrom.secretKeyRef.key (1)

LLDAP_LDAP_BASE_DN

string

controllers.authelia.containers.main.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_BASE_DN.valueFrom.secretKeyRef.name (1)

lldap-secret

string

controllers.authelia.containers.main.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_PASSWORD.valueFrom.secretKeyRef.key (1)

LLDAP_LDAP_USER_PASS

string

controllers.authelia.containers.main.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_PASSWORD.valueFrom.secretKeyRef.name (1)

lldap-secret

string

controllers.authelia.containers.main.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_USER.valueFrom.secretKeyRef.key (1)

LDAP_BIND_DN

string

controllers.authelia.containers.main.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_USER.valueFrom.secretKeyRef.name (1)

lldap-secret

string

controllers.authelia.containers.main.env.AUTHELIA_NOTIFIER_SMTP_PASSWORD.valueFrom.secretKeyRef.key (1)

LLDAP_LDAP_USER_PASS

string

controllers.authelia.containers.main.env.AUTHELIA_NOTIFIER_SMTP_PASSWORD.valueFrom.secretKeyRef.name (1)

lldap-secret

string

controllers.authelia.containers.main.env.AUTHELIA_STORAGE_POSTGRES_ADDRESS (1)

tcp://pgo-cluster-ha.postgres-operator.svc.cluster.local:5432

string

controllers.authelia.containers.main.env.AUTHELIA_STORAGE_POSTGRES_DATABASE.valueFrom.secretKeyRef.key (1)

dbname

string

controllers.authelia.containers.main.env.AUTHELIA_STORAGE_POSTGRES_DATABASE.valueFrom.secretKeyRef.name (1)

pgo-cluster-pguser-authelia

string

controllers.authelia.containers.main.env.AUTHELIA_STORAGE_POSTGRES_PASSWORD.valueFrom.secretKeyRef.key (1)

password

string

controllers.authelia.containers.main.env.AUTHELIA_STORAGE_POSTGRES_PASSWORD.valueFrom.secretKeyRef.name (1)

pgo-cluster-pguser-authelia

string

controllers.authelia.containers.main.env.AUTHELIA_STORAGE_POSTGRES_USERNAME.valueFrom.secretKeyRef.key (1)

user

string

controllers.authelia.containers.main.env.AUTHELIA_STORAGE_POSTGRES_USERNAME.valueFrom.secretKeyRef.name (1)

pgo-cluster-pguser-authelia

string

controllers.authelia.containers.main.env.X_AUTHELIA_CONFIG (1)

/config/configuration.yaml

string

controllers.authelia.containers.main.env.X_AUTHELIA_CONFIG_FILTERS (1)

template

string

controllers.authelia.containers.main.envFrom[].secretRef.name (1)

authelia-secret

string

controllers.authelia.containers.main.image.repository (1)

ghcr.io/authelia/authelia

string

controllers.authelia.containers.main.image.tag (1)

4.38.18

string

controllers.authelia.containers.main.probes.liveness.enabled (1)

true

boolean

controllers.authelia.containers.main.probes.readiness.enabled (1)

true

boolean

controllers.authelia.containers.main.probes.startup.enabled (1)

true

boolean

controllers.authelia.containers.main.probes.startup.spec.failureThreshold (1)

number

controllers.authelia.containers.main.probes.startup.spec.periodSeconds (1)

number

controllers.authelia.containers.main.resources.requests.cpu (1)

1m

string

controllers.authelia.containers.main.resources.requests.memory (1)

50Mi

string

controllers.authelia.replicas (8)

number

controllers.authelia.strategy (8)

RollingUpdate

string

controllers.authelia.initContainers.init-db.image.repository (6)

ghcr.io/onedr0p/postgres-init

string

controllers.authelia.initContainers.init-db.image.tag (6)

17.4

number, string

controllers.authelia.initContainers.init-db.image.pullPolicy (2)

IfNotPresent

string

controllers.authelia.initContainers.init-db.envFrom[].secretRef.name (5)

authelia-secret

string

controllers.authelia.initContainers.init-db.env.INIT_POSTGRES_DBNAME (1)

authelia

string

controllers.authelia.initContainers.init-db.env.INIT_POSTGRES_HOST (1)

postgres16-rw.database.svc.cluster.local

string

controllers.authelia.initContainers.init-db.env.INIT_POSTGRES_PASS.valueFrom.secretKeyRef.key (1)

AUTHELIA_STORAGE_POSTGRES_PASSWORD

string

controllers.authelia.initContainers.init-db.env.INIT_POSTGRES_PASS.valueFrom.secretKeyRef.name (1)

authelia-secret

string

controllers.authelia.initContainers.init-db.env.INIT_POSTGRES_SUPER_PASS.valueFrom.secretKeyRef.key (1)

password

string

controllers.authelia.initContainers.init-db.env.INIT_POSTGRES_SUPER_PASS.valueFrom.secretKeyRef.name (1)

cloudnative-pg-secret

string

controllers.authelia.initContainers.init-db.env.INIT_POSTGRES_USER.valueFrom.secretKeyRef.key (1)

AUTHELIA_STORAGE_POSTGRES_USERNAME

string

controllers.authelia.initContainers.init-db.env.INIT_POSTGRES_USER.valueFrom.secretKeyRef.name (1)

authelia-secret

string

controllers.authelia.pod.topologySpreadConstraints[].labelSelector.matchLabels."app.kubernetes.io/name" (4)

authelia

string

controllers.authelia.pod.topologySpreadConstraints[].maxSkew (4)

number

controllers.authelia.pod.topologySpreadConstraints[].topologyKey (4)

kubernetes.io/hostname

string

controllers.authelia.pod.topologySpreadConstraints[].whenUnsatisfiable (4)

DoNotSchedule

string

controllers.authelia.pod.securityContext.runAsGroup (3)

number

controllers.authelia.pod.securityContext.runAsUser (3)

number

controllers.authelia.pod.securityContext.runAsNonRoot (2)

true

boolean

controllers.authelia.pod.enableServiceLinks (2)

false

boolean

controllers.main.annotations."reloader.stakater.com/auto" (3)

true

string

controllers.main.containers.main.env.AUTHELIA_SERVER_ADDRESS (3)

tcp://0.0.0.0:80

string

controllers.main.containers.main.env.AUTHELIA_SERVER_DISABLE_HEALTHCHECK (3)

true

boolean, string

controllers.main.containers.main.env.AUTHELIA_TELEMETRY_METRICS_ADDRESS (3)

tcp://0.0.0.0:8080

string

controllers.main.containers.main.env.AUTHELIA_TELEMETRY_METRICS_ENABLED (3)

true

boolean, string

controllers.main.containers.main.env.AUTHELIA_THEME (3)

dark

string

controllers.main.containers.main.env.X_AUTHELIA_CONFIG (3)

/config/configuration.yaml

string

controllers.main.containers.main.env.X_AUTHELIA_CONFIG_FILTERS (3)

expand-env

string

controllers.main.containers.main.env.AUTHELIA_LOG_LEVEL (1)

debug

string

controllers.main.containers.main.env.AUTHELIA_NOTIFIER_DISABLE_STARTUP_CHECK (1)

true

string

controllers.main.containers.main.envFrom[].secretRef.name (3)

authelia-secret

string

controllers.main.containers.main.image.repository (3)

ghcr.io/authelia/authelia

string

controllers.main.containers.main.image.tag (3)

v4.38.0-beta3@sha256:b48ae4d0ed9d1eee76efe382df60928bae550ec19e5663858dde6dc5f41cf285

string

controllers.main.containers.main.probes.liveness.custom (3)

true

boolean

controllers.main.containers.main.probes.liveness.enabled (3)

true

boolean

controllers.main.containers.main.probes.liveness.spec.failureThreshold (3)

number

controllers.main.containers.main.probes.liveness.spec.httpGet.path (3)

/api/health

string

controllers.main.containers.main.probes.liveness.spec.httpGet.port (3)

number

controllers.main.containers.main.probes.liveness.spec.initialDelaySeconds (3)

number

controllers.main.containers.main.probes.liveness.spec.periodSeconds (3)

number

controllers.main.containers.main.probes.liveness.spec.timeoutSeconds (3)

number

controllers.main.containers.main.probes.readiness.custom (3)

true

boolean

controllers.main.containers.main.probes.readiness.enabled (3)

true

boolean

controllers.main.containers.main.probes.readiness.spec.failureThreshold (3)

number

controllers.main.containers.main.probes.readiness.spec.httpGet.path (3)

/api/health

string

controllers.main.containers.main.probes.readiness.spec.httpGet.port (3)

number

controllers.main.containers.main.probes.readiness.spec.initialDelaySeconds (3)

number

controllers.main.containers.main.probes.readiness.spec.periodSeconds (3)

number

controllers.main.containers.main.probes.readiness.spec.timeoutSeconds (3)

number

controllers.main.containers.main.probes.startup.enabled (3)

false

boolean

controllers.main.containers.main.resources.limits.memory (3)

128Mi

string

controllers.main.containers.main.resources.requests.cpu (3)

10m

string

controllers.main.containers.main.resources.requests.memory (2)

10Mi

string

controllers.main.containers.main.securityContext.allowPrivilegeEscalation (2)

false

boolean

controllers.main.containers.main.securityContext.capabilities.drop[] (2)

- ALL

string

controllers.main.containers.main.securityContext.readOnlyRootFilesystem (2)

true

boolean

controllers.main.initContainers.init-db.envFrom[].secretRef.name (3)

authelia-secret

string

controllers.main.initContainers.init-db.image.repository (3)

ghcr.io/onedr0p/postgres-init

string

controllers.main.initContainers.init-db.image.tag (3)

number

controllers.main.initContainers.init-db.image.pullPolicy (1)

IfNotPresent

string

controllers.main.pod.enableServiceLinks (3)

false

boolean

controllers.main.pod.securityContext.runAsGroup (3)

number

controllers.main.pod.securityContext.runAsUser (3)

number

controllers.main.pod.securityContext.runAsNonRoot (2)

true

boolean

controllers.main.pod.topologySpreadConstraints[].labelSelector.matchLabels."app.kubernetes.io/name" (3)

authelia

string

controllers.main.pod.topologySpreadConstraints[].maxSkew (3)

number

controllers.main.pod.topologySpreadConstraints[].topologyKey (3)

kubernetes.io/hostname

string

controllers.main.pod.topologySpreadConstraints[].whenUnsatisfiable (3)

DoNotSchedule

string

controllers.main.replicas (3)

number

controllers.main.strategy (3)

RollingUpdate

string

service.app.controller (8)

authelia

string

service.app.ports.http.port (8)

number

service.app.ports.metrics.port (7)

number

service.app.annotations."lbipam.cilium.io/ips" (1)

${AUTH_LB_IP}

string

service.app.type (1)

LoadBalancer

string

service.main.ports.http.port (6)

number

service.main.ports.metrics.port (5)

number

service.main.ports.metrics.enabled (2)

true

boolean

service.main.controller (1)

authelia

string

ingress.app.annotations."external-dns.alpha.kubernetes.io/target" (7)

external.${SECRET_DOMAIN}

string

ingress.app.annotations."nginx.ingress.kubernetes.io/configuration-snippet" (6)

add_header Cache-Control "no-store";
add_header Pragma "no-cache";
add_header X-Frame-Options "SAMEORIGIN";
add_header X-XSS-Protection "1; mode=block";

string

ingress.app.annotations."gethomepage.dev/enabled" (2)

true

string

ingress.app.annotations."gethomepage.dev/group" (2)

Services

string

ingress.app.annotations."gethomepage.dev/icon" (2)

mdi-two-factor-authentication

string

ingress.app.annotations."gethomepage.dev/name" (2)

Authelia

string

ingress.app.annotations."hajimari.io/icon" (2)

mdi:shield-account

string

ingress.app.annotations."external-dns.alpha.kubernetes.io/enabled" (1)

true

string

ingress.app.annotations."gethomepage.dev/pod-selector" (1)

app in (
  authelia
)

string

ingress.app.annotations."nginx.ingress.kubernetes.io/add-header-Cache-Control" (1)

no-store

string

ingress.app.annotations."nginx.ingress.kubernetes.io/add-header-Pragma" (1)

no-cache

string

ingress.app.annotations."nginx.ingress.kubernetes.io/add-header-X-Frame-Options" (1)

SAMEORIGIN

string

ingress.app.annotations."nginx.ingress.kubernetes.io/add-header-X-XSS-Protection" (1)

1; mode=block

string

ingress.app.className (7)

external

string

ingress.app.hosts[].host (7)

auth.${SECRET_DOMAIN}

string

ingress.app.hosts[].paths[].path (7)

string

ingress.app.hosts[].paths[].service.identifier (7)

app

string

ingress.app.hosts[].paths[].service.port (7)

http

string, number

ingress.app.tls[].hosts[] (3)

- auth.${SECRET_DOMAIN}

string

ingress.app.enabled (2)

true

boolean

ingress.main.enabled (7)

true

boolean

ingress.main.hosts[].host (7)

{{ .Release.Name }}.${SECRET_DOMAIN}
auth.${SECRET_DOMAIN}

string

ingress.main.hosts[].paths[].path (7)

string

ingress.main.hosts[].paths[].service.port (5)

http

string

ingress.main.hosts[].paths[].service.name (3)

main
main

string

ingress.main.hosts[].paths[].service.identifier (2)

main

string

ingress.main.hosts[].paths[].pathType (4)

Prefix

string

ingress.main.tls[].hosts[] (7)

- {{ .Release.Name }}.${SECRET_DOMAIN}
- auth.${SECRET_DOMAIN}

string

ingress.main.tls[].secretName (2)

authelia-tls

string

ingress.main.annotations."external-dns.alpha.kubernetes.io/target" (5)

external.${SECRET_DOMAIN}

string

ingress.main.annotations."nginx.ingress.kubernetes.io/configuration-snippet" (5)

add_header Cache-Control "no-store";
add_header Pragma "no-cache";
add_header X-Frame-Options "SAMEORIGIN";
add_header X-XSS-Protection "1; mode=block";

string

ingress.main.annotations."external-dns.home.arpa/enabled" (2)

true

string

ingress.main.annotations."hajimari.io/icon" (2)

mdi:shield-account

string

ingress.main.annotations."cert-manager.io/cluster-issuer" (1)

letsencrypt-production

string

ingress.main.annotations."gatus.io/enabled" (1)

true

string

ingress.main.annotations."gatus.io/path" (1)

/api/health

string

ingress.main.annotations."hajimari.io/url" (1)

https://auth.${SECRET_DOMAIN}

string

ingress.main.className (5)

external

string

ingress.main.ingressClassName (2)

external

string

serviceMonitor.app.endpoints[].interval (7)

1m

string

serviceMonitor.app.endpoints[].path (7)

/metrics

string

serviceMonitor.app.endpoints[].port (7)

metrics

string

serviceMonitor.app.endpoints[].scheme (7)

http

string

serviceMonitor.app.endpoints[].scrapeTimeout (7)

10s

string

serviceMonitor.app.serviceName (7)

authelia

string

serviceMonitor.app.enabled (2)

true

boolean

serviceMonitor.main.enabled (3)

true

boolean

serviceMonitor.main.endpoints[].interval (3)

1m

string

serviceMonitor.main.endpoints[].path (3)

/metrics

string

serviceMonitor.main.endpoints[].port (3)

metrics

string

serviceMonitor.main.endpoints[].scheme (3)

http

string

serviceMonitor.main.endpoints[].scrapeTimeout (3)

10s

string

defaultPodOptions.securityContext.runAsGroup (4)

number

defaultPodOptions.securityContext.runAsNonRoot (4)

true

boolean

defaultPodOptions.securityContext.runAsUser (4)

number

defaultPodOptions.securityContext.seccompProfile.type (4)

RuntimeDefault

string

defaultPodOptions.securityContext.fsGroupChangePolicy (1)

OnRootMismatch

string

defaultPodOptions.topologySpreadConstraints[].labelSelector.matchLabels."app.kubernetes.io/name" (3)

authelia

string

defaultPodOptions.topologySpreadConstraints[].maxSkew (3)

number

defaultPodOptions.topologySpreadConstraints[].topologyKey (3)

kubernetes.io/hostname

string

defaultPodOptions.topologySpreadConstraints[].whenUnsatisfiable (3)

DoNotSchedule

string

controller.replicas (2)

number

controller.strategy (2)

RollingUpdate

string

controller.annotations."reloader.stakater.com/auto" (1)

true

string

controller.rollingUpdate.surge (1)

number

controller.rollingUpdate.unavailable (1)

number

enableServiceLinks (2)

false

boolean

envFrom[].secretRef.name (2)

authelia-secret

string

image.repository (2)

ghcr.io/authelia/authelia

string

image.tag (2)

master@sha256:c1a838724e95a3ebc9ca210f0d81fc25a77e47e0b583f146c5781e1701a4199f

string

podSecurityContext.fsGroup (2)

number

podSecurityContext.fsGroupChangePolicy (2)

OnRootMismatch

string

podSecurityContext.runAsGroup (2)

number

podSecurityContext.runAsUser (2)

number

resources.limits.memory (2)

100Mi

string

resources.requests.cpu (2)

5m

string

resources.requests.memory (2)

10Mi

string

topologySpreadConstraints[].labelSelector.matchLabels."app.kubernetes.io/name" (2)

authelia

string

topologySpreadConstraints[].maxSkew (2)

number

topologySpreadConstraints[].topologyKey (2)

kubernetes.io/hostname

string

topologySpreadConstraints[].whenUnsatisfiable (2)

DoNotSchedule

string

args[] (1)

- --config
- /config/configuration.yaml
- --config.experimental.filters
- expand-env

string

env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_ADDITIONAL_GROUPS_DN (1)

ou=groups

string

env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_ADDITIONAL_USERS_DN (1)

ou=people

string

env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_ADDRESS (1)

ldap://lldap.auth.svc.cluster.local:389

string

env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_ATTRIBUTES_DISPLAY_NAME (1)

displayName

string

env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_ATTRIBUTES_GROUP_NAME (1)

cn

string

env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_ATTRIBUTES_MAIL (1)

mail

string

env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_ATTRIBUTES_USERNAME (1)

uid

string

env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_BASE_DN (1)

dc=home,dc=arpa

string

env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_GROUPS_FILTER (1)

(member={dn})

string

env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_IMPLEMENTATION (1)

custom

string

env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_START_TLS (1)

false

string

env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_TIMEOUT (1)

5s

string

env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_USER (1)

uid=admin,ou=people,dc=home,dc=arpa

string

env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_USERS_FILTER (1)

(&({username_attribute}={input})(objectClass=person))

string

env.AUTHELIA_AUTHENTICATION_BACKEND_PASSWORD_RESET_DISABLE (1)

true

string

env.AUTHELIA_DEFAULT_REDIRECTION_URL (1)

https://auth.${ORG_DOMAIN}

string

env.AUTHELIA_DUO_API_DISABLE (1)

true

string

env.AUTHELIA_LOG_LEVEL (1)

info

string

env.AUTHELIA_NOTIFIER_DISABLE_STARTUP_CHECK (1)

true

string

env.AUTHELIA_NOTIFIER_SMTP_SENDER (1)

Authelia <noreply@${NET_DOMAIN}>

string

env.AUTHELIA_SERVER_ADDRESS (1)

tcp://:80

string

env.AUTHELIA_SERVER_DISABLE_HEALTHCHECK (1)

true

string

env.AUTHELIA_SESSION_DOMAIN (1)

${ORG_DOMAIN}

string

env.AUTHELIA_SESSION_REDIS_DATABASE_INDEX (1)

number

env.AUTHELIA_SESSION_REDIS_HOST (1)

redis.default.svc.cluster.local

string

env.AUTHELIA_STORAGE_POSTGRES_ADDRESS (1)

postgres.database.svc.cluster.local:5432

string

env.AUTHELIA_STORAGE_POSTGRES_DATABASE.valueFrom.secretKeyRef.key (1)

DATABASE_NAME

string

env.AUTHELIA_STORAGE_POSTGRES_DATABASE.valueFrom.secretKeyRef.name (1)

database-authelia-user

string

env.AUTHELIA_STORAGE_POSTGRES_PASSWORD.valueFrom.secretKeyRef.key (1)

PASSWORD

string

env.AUTHELIA_STORAGE_POSTGRES_PASSWORD.valueFrom.secretKeyRef.name (1)

database-authelia-user

string

env.AUTHELIA_STORAGE_POSTGRES_USERNAME.valueFrom.secretKeyRef.key (1)

LOGIN

string

env.AUTHELIA_STORAGE_POSTGRES_USERNAME.valueFrom.secretKeyRef.name (1)

database-authelia-user

string

env.AUTHELIA_TELEMETRY_METRICS_ADDRESS (1)

tcp://0.0.0.0:8080

string

env.AUTHELIA_TELEMETRY_METRICS_ENABLED (1)

true

string

env.AUTHELIA_THEME (1)

grey

string

env.AUTHELIA_TOTP_ISSUER (1)

authelia.com

string

env.AUTHELIA_WEBAUTHN_DISABLE (1)

true

string

global.nameOverride (1)

authelia

string

podAnnotations."configmap.reloader.stakater.com/reload" (1)

authelia

string

podAnnotations."secret.reloader.stakater.com/reload" (1)

authelia

string

probes.liveness.custom (1)

true

boolean

probes.liveness.enabled (1)

true

boolean

probes.liveness.spec.failureThreshold (1)

number

probes.liveness.spec.httpGet.path (1)

/api/health

string

probes.liveness.spec.httpGet.port (1)

number

probes.liveness.spec.initialDelaySeconds (1)

number

probes.liveness.spec.periodSeconds (1)

number

probes.liveness.spec.timeoutSeconds (1)

number

probes.readiness.custom (1)

true

boolean

probes.readiness.enabled (1)

true

boolean

probes.readiness.spec.failureThreshold (1)

number

probes.readiness.spec.httpGet.path (1)

/api/health

string

probes.readiness.spec.httpGet.port (1)

number

probes.readiness.spec.initialDelaySeconds (1)

number

probes.readiness.spec.periodSeconds (1)

number

probes.readiness.spec.timeoutSeconds (1)

number

probes.startup.enabled (1)

false

boolean