Authelia is an open-source authentication and authorization server and portal fulfilling the identity and access management (IAM) role of information security in providing multi-factor authentication and single sign-on (SSO) for your applications via a web portal. It acts as a companion for common reverse proxies.
Install with:
helm repo add bjw-s oci://ghcr.io/bjw-s/helm/
helm install authelia bjw-s/app-template -f values.yaml
See examples from other people.
Name | Repo | Stars | Version | Timestamp |
---|---|---|---|---|
authelia | buroa/k8s-gitops | 134 | 3.1.0 | a day ago |
authelia | haraldkoch/kochhaus-home | 93 | 3.1.0 | a day ago |
authelia | bjw-s/home-ops | 489 | 3.1.0 | 2 days ago |
authelia | vaskozl/home-infra | 76 | 3.1.0 | 2 days ago |
authelia | onedr0p/home-ops | 1763 | 3.1.0 | 2 days ago |
See the most popular values for this chart:
Key | Types |
---|---|
persistence.config.name (47) authelia-configmap | string |
persistence.config.type (47) configMap | string |
persistence.config.globalMounts[].path (34) /config/configuration.yaml | string |
boolean | |
persistence.config.globalMounts[].subPath (31) configuration.yaml | string |
boolean | |
persistence.config.mountPath (12) /config/configuration.yml | string |
boolean | |
persistence.config.subPath (12) configuration.yml | string |
boolean | |
string | |
string | |
boolean | |
string | |
string | |
string | |
string | |
boolean | |
string | |
boolean | |
string | |
string | |
string | |
controllers.authelia.strategy (25) RollingUpdate | string |
controllers.authelia.containers.app.image.repository (24) ghcr.io/authelia/authelia | string |
controllers.authelia.containers.app.image.tag (24) 4.38.8@sha256:19375b10024caeef4e0b119a6247beae84cbaa02c846cfd750e92dea910d4b6a | string |
boolean | |
boolean | |
number | |
string | |
number | |
number | |
number | |
number | |
boolean | |
boolean | |
number | |
string | |
number | |
number | |
number | |
number | |
boolean | |
boolean | |
number | |
string | |
number | |
number | |
string, boolean | |
string | |
string, boolean | |
string | |
string | |
controllers.authelia.containers.app.env.X_AUTHELIA_CONFIG (20) /config/configuration.yaml | string |
string | |
string | |
string | |
string | |
string | |
string | |
string | |
string | |
controllers.authelia.containers.app.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_USER (4) uid=admin,ou=people,dc=home,dc=arpa | string |
controllers.authelia.containers.app.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_USERS_FILTER (4) (&({username_attribute}={input})(objectClass=person)) | string |
string | |
string | |
string | |
string | |
string | |
string | |
string | |
string | |
string | |
string, number | |
string | |
string | |
string | |
string | |
string | |
string | |
string | |
string | |
string | |
string | |
string | |
string | |
string | |
string | |
number | |
number | |
string | |
string | |
string | |
string | |
string | |
string | |
number | |
string | |
string | |
string | |
string | |
string | |
string | |
string | |
string | |
string | |
string | |
string | |
string | |
string | |
boolean | |
string | |
string | |
string | |
string | |
string | |
string | |
string | |
string | |
number | |
string | |
string | |
boolean | |
string | |
boolean | |
string | |
string | |
string | |
string | |
string | |
string | |
string | |
string | |
string | |
string | |
string | |
string | |
string | |
string | |
string | |
string | |
string | |
string | |
string | |
string | |
string | |
boolean | |
boolean | |
boolean | |
number | |
number | |
string | |
string | |
number | |
string | |
controllers.authelia.annotations."secret.reloader.stakater.com/reload" (4) authelia-secret,authelia-db-secret | string |
string | |
controllers.authelia.initContainers.init-db.image.repository (17) ghcr.io/onedr0p/postgres-init | string |
number | |
string | |
string | |
string | |
string | |
string | |
string | |
string | |
string | |
string | |
string | |
string | |
string | |
string | |
number | |
number | |
boolean | |
number | |
string | |
string | |
number | |
controllers.authelia.pod.topologySpreadConstraints[].topologyKey (12) kubernetes.io/hostname | string |
string | |
boolean | |
boolean | |
string | |
controllers.main.containers.main.image.repository (9) ghcr.io/authelia/authelia | string |
controllers.main.containers.main.image.tag (9) v4.38.0-beta3@sha256:b48ae4d0ed9d1eee76efe382df60928bae550ec19e5663858dde6dc5f41cf285 | string |
string | |
string | |
string | |
string | |
boolean | |
boolean | |
number | |
string | |
number | |
number | |
number | |
number | |
boolean | |
boolean | |
number | |
string | |
number | |
number | |
number | |
number | |
boolean | |
controllers.main.containers.main.env.AUTHELIA_SERVER_ADDRESS (7) tcp://0.0.0.0:80 | string |
string | |
string | |
string | |
string | |
controllers.main.containers.main.env.X_AUTHELIA_CONFIG (7) /config/configuration.yaml | string |
string | |
string | |
string | |
number | |
number | |
number | |
string | |
string | |
string | |
string | |
string | |
string | |
string | |
string | |
string | |
string | |
string | |
string | |
string | |
string | |
boolean | |
string | |
boolean | |
string | |
string | |
boolean | |
string | |
number | |
controllers.main.pod.topologySpreadConstraints[].topologyKey (8) kubernetes.io/hostname | string |
string | |
number | |
number | |
boolean | |
number | |
string | |
controllers.main.initContainers.init-db.image.repository (7) ghcr.io/onedr0p/postgres-init | string |
number | |
string | |
controllers.main.strategy (7) RollingUpdate | string |
boolean | |
ingress.main.hosts[].host (24) auth.${SECRET_DOMAIN} | string |
string | |
string | |
string, number | |
string | |
string | |
ingress.main.tls[].hosts[] (22) - auth.${SECRET_DOMAIN} | string |
string | |
ingress.main.annotations."nginx.ingress.kubernetes.io/configuration-snippet" (21) add_header Cache-Control "no-store";
add_header Pragma "no-cache";
add_header X-Frame-Options "SAMEORIGIN";
add_header X-XSS-Protection "1; mode=block";
| string |
string | |
ingress.main.annotations."hajimari.io/icon" (8) mdi:shield-account | string |
string | |
string | |
string | |
string | |
string | |
string | |
string | |
string | |
string | |
string | |
string | |
string | |
ingress.app.className (22) external | string |
ingress.app.hosts[].host (22) auth.${SECRET_DOMAIN} | string |
string | |
string | |
string | |
string | |
ingress.app.annotations."external-dns.alpha.kubernetes.io/target" (19) external.${SECRET_DOMAIN} | string |
ingress.app.annotations."nginx.ingress.kubernetes.io/configuration-snippet" (19) add_header Cache-Control "no-store";
add_header Pragma "no-cache";
add_header X-Frame-Options "SAMEORIGIN";
add_header X-XSS-Protection "1; mode=block";
| string |
ingress.app.annotations."hajimari.io/icon" (7) mdi:shield-account | string |
string | |
string | |
string | |
string | |
string | |
string | |
string | |
string | |
string | |
string | |
string | |
string | |
string | |
string | |
string | |
string | |
string | |
boolean | |
string | |
string | |
string | |
boolean | |
string | |
string | |
string | |
string | |
string | |
service.app.controller (24) authelia | string |
number | |
boolean | |
boolean | |
number | |
boolean | |
string | |
string | |
boolean | |
string | |
string | |
string | |
number | |
number | |
boolean | |
string | |
string | |
string | |
string | |
string | |
string | |
string | |
boolean | |
boolean | |
string | |
string | |
string | |
string | |
string | |
string | |
number | |
controller.strategy (12) RollingUpdate | string |
string | |
number | |
number | |
string | |
boolean | |
envFrom[].secretRef.name (12) authelia-secret | string |
image.repository (12) ghcr.io/authelia/authelia | string |
string | |
string | |
string | |
string | |
number | |
podSecurityContext.fsGroupChangePolicy (11) OnRootMismatch | string |
number | |
number | |
string | |
number | |
topologySpreadConstraints[].topologyKey (11) kubernetes.io/hostname | string |
topologySpreadConstraints[].whenUnsatisfiable (11) DoNotSchedule | string |
number | |
number | |
boolean | |
string | |
number | |
string | |
number | |
defaultPodOptions.topologySpreadConstraints[].topologyKey (9) kubernetes.io/hostname | string |
string | |
boolean | |
args[] (7) - --config | string |
boolean | |
boolean | |
number | |
probes.liveness.spec.httpGet.path (7) /api/health | string |
number | |
number | |
number | |
number | |
boolean | |
boolean | |
number | |
probes.readiness.spec.httpGet.path (7) /api/health | string |
number | |
number | |
number | |
number | |
boolean | |
boolean | |
number | |
probes.startup.spec.httpGet.path (3) /api/health | string |
number | |
number | |
number | |
number | |
string | |
string | |
string | |
string | |
string | |
env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_USERS_FILTER (6) (&({username_attribute}={input})(objectClass=person)) | string |
string | |
env.AUTHELIA_DEFAULT_REDIRECTION_URL (6) https://auth.${SECRET_DOMAIN} | string |
string | |
string | |
string | |
env.AUTHELIA_SESSION_DOMAIN (6) ${SECRET_DOMAIN} | string |
env.AUTHELIA_TELEMETRY_METRICS_ADDRESS (6) tcp://0.0.0.0:8080 | string |
string | |
string | |
env.AUTHELIA_TOTP_ISSUER (6) authelia.com | string |
env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_BASE_DN (5) dc=home,dc=arpa | string |
string | |
string | |
string | |
string | |
env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_URL (4) ldap://lldap.security.svc.cluster.local:389 | string |
string | |
string | |
string | |
number | |
string | |
env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_USER (3) uid=admin,ou=people,dc=home,dc=arpa | string |
string | |
string, number | |
env.AUTHELIA_SESSION_NAME (3) authelia-home-ops | string |
number | |
string | |
env.AUTHELIA_STORAGE_LOCAL_PATH (3) /data/db.sqlite3 | string |
string | |
string | |
string | |
string | |
string | |
string | |
string | |
string | |
string | |
string | |
string | |
string | |
string | |
string | |
string | |
string | |
string | |
string | |
number | |
number | |
string | |
string | |
string | |
string | |
string | |
string | |
string | |
string | |
string | |
string | |
string | |
string | |
string | |
string | |
string | |
string | |
string | |
string | |
string | |
string | |
string |