authelia helm release

authelia helm

Authelia is an open-source authentication and authorization server and portal fulfilling the identity and access management (IAM) role of information security in providing multi-factor authentication and single sign-on (SSO) for your applications via a web portal. It acts as a companion for common reverse proxies.

Install

Install with:

helm repo add bjw-s oci://ghcr.io/bjw-s/helm/ helm install authelia bjw-s/app-template -f values.yaml

Examples

See examples from other people.

Major version:

Filter repos who also have:

Top Repositories (5 out of 53)

Name	Repo	Stars	Version	Timestamp
authelia	Diaoul/home-ops	60	3.5.1	3 days ago
authelia	mchestr/home-cluster	60	3.5.1	6 days ago
authelia	vaskozl/home-infra	87	3.5.1	7 days ago
authelia	coolguy1771/home-ops	64	3.5.1	12 days ago
authelia	haraldkoch/kochhaus-home	114	3.5.1	12 days ago

Name

Repo

Stars

Version

Timestamp

authelia

Diaoul/home-ops

3.5.1

3 days ago

authelia

mchestr/home-cluster

3.5.1

6 days ago

authelia

vaskozl/home-infra

3.5.1

7 days ago

authelia

coolguy1771/home-ops

3.5.1

12 days ago

authelia

haraldkoch/kochhaus-home

114

3.5.1

12 days ago

Resources

Memory request

10Mi 32Mi 50Mi 128Mi

Memory limit

100Mi 128Mi 200Mi

CPU Request

5m 10m

Values

See the most popular values for this chart:

Key	Types
persistence.config.name (53) `authelia-configmap`	string
persistence.config.type (53) `configMap`	string
persistence.config.globalMounts[].path (45) `/config/configuration.yaml`	string
persistence.config.globalMounts[].readOnly (43) `true`	boolean
persistence.config.globalMounts[].subPath (42) `configuration.yaml`	string
persistence.config.enabled (23) `true`	boolean
persistence.config.mountPath (7) `/config/configuration.yml`	string
persistence.config.readOnly (7) `false`	boolean
persistence.config.subPath (7) `configuration.yml`	string
persistence.secret-files.enabled (5) `true`	boolean
persistence.secret-files.globalMounts[].path (5) `/config/secret`	string
persistence.secret-files.name (5) `authelia-secret-files`	string
persistence.secret-files.type (5) `secret`	string
persistence.data.enabled (2)	boolean
persistence.data.existingClaim (2)	string
persistence.data.type (2)	string
persistence.secret-keys.enabled (2)	boolean
persistence.secret-keys.globalMounts[].path (2)	string
persistence.secret-keys.name (2)	string
persistence.secret-keys.type (2)	string
persistence.tmp.type (2)	string
persistence.oidc-issuer.globalMounts[].path (1)	string
persistence.oidc-issuer.globalMounts[].readOnly (1)	boolean
persistence.oidc-issuer.globalMounts[].subPath (1)	string
persistence.oidc-issuer.name (1)	string
persistence.oidc-issuer.type (1)	string
persistence.oidc-jwks.globalMounts[].path (1)	string
persistence.oidc-jwks.globalMounts[].readOnly (1)	boolean
persistence.oidc-jwks.globalMounts[].subPath (1)	string
persistence.oidc-jwks.name (1)	string
persistence.oidc-jwks.type (1)	string
persistence.trusted-certs.globalMounts[].path (1)	string
persistence.trusted-certs.globalMounts[].readOnly (1)	boolean
persistence.trusted-certs.globalMounts[].subPath (1)	string
persistence.trusted-certs.name (1)	string
persistence.trusted-certs.type (1)	string
persistence.users.enabled (1)	boolean
persistence.users.globalMounts[].path (1)	string
persistence.users.globalMounts[].readOnly (1)	boolean
persistence.users.globalMounts[].subPath (1)	string
persistence.users.name (1)	string
persistence.users.type (1)	string
controllers.authelia.containers.app.image.repository (35) `ghcr.io/authelia/authelia`	string
controllers.authelia.containers.app.image.tag (35) `4.38.16@sha256:172c9b2e4d7c25196404e4620f6018650cbd2124999aceaa812cf0c100ef8b23`	string
controllers.authelia.containers.app.probes.liveness.enabled (35) `true`	boolean
controllers.authelia.containers.app.probes.liveness.custom (34) `true`	boolean
controllers.authelia.containers.app.probes.liveness.spec.failureThreshold (34) `3`	number
controllers.authelia.containers.app.probes.liveness.spec.httpGet.path (34) `/api/health`	string
controllers.authelia.containers.app.probes.liveness.spec.httpGet.port (34) `80`	number
controllers.authelia.containers.app.probes.liveness.spec.periodSeconds (34) `10`	number
controllers.authelia.containers.app.probes.liveness.spec.timeoutSeconds (34) `1`	number
controllers.authelia.containers.app.probes.liveness.spec.initialDelaySeconds (33) `0`	number
controllers.authelia.containers.app.probes.readiness.enabled (35) `true`	boolean
controllers.authelia.containers.app.probes.readiness.custom (34) `true`	boolean
controllers.authelia.containers.app.probes.readiness.spec.failureThreshold (34) `3`	number
controllers.authelia.containers.app.probes.readiness.spec.httpGet.path (34) `/api/health`	string
controllers.authelia.containers.app.probes.readiness.spec.httpGet.port (34) `80`	number
controllers.authelia.containers.app.probes.readiness.spec.periodSeconds (34) `10`	number
controllers.authelia.containers.app.probes.readiness.spec.timeoutSeconds (34) `1`	number
controllers.authelia.containers.app.probes.readiness.spec.initialDelaySeconds (33) `0`	number
controllers.authelia.containers.app.probes.startup.enabled (12) `false`	boolean
controllers.authelia.containers.app.probes.startup.custom (3) `true`	boolean
controllers.authelia.containers.app.probes.startup.spec.failureThreshold (3) `30`	number
controllers.authelia.containers.app.probes.startup.spec.httpGet.path (3) `/api/health`	string
controllers.authelia.containers.app.probes.startup.spec.httpGet.port (3) `80`	number
controllers.authelia.containers.app.probes.startup.spec.periodSeconds (3) `10`	number
controllers.authelia.containers.app.env.AUTHELIA_SERVER_DISABLE_HEALTHCHECK (34) `true`	string, boolean
controllers.authelia.containers.app.env.AUTHELIA_TELEMETRY_METRICS_ADDRESS (34) `tcp://0.0.0.0:8080`	string
controllers.authelia.containers.app.env.AUTHELIA_TELEMETRY_METRICS_ENABLED (34) `true`	string, boolean
controllers.authelia.containers.app.env.AUTHELIA_THEME (34) `dark`	string
controllers.authelia.containers.app.env.AUTHELIA_SERVER_ADDRESS (32) `tcp://0.0.0.0:80`	string
controllers.authelia.containers.app.env.X_AUTHELIA_CONFIG (32) `/config/configuration.yaml`	string
controllers.authelia.containers.app.env.X_AUTHELIA_CONFIG_FILTERS (31) `expand-env`	string
controllers.authelia.containers.app.env.AUTHELIA_TOTP_ISSUER (6) `authelia.com`	string
controllers.authelia.containers.app.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_ADDITIONAL_GROUPS_DN (5) `ou=groups`	string
controllers.authelia.containers.app.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_ADDITIONAL_USERS_DN (5) `ou=people`	string
controllers.authelia.containers.app.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_ADDRESS (5)	string
controllers.authelia.containers.app.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_BASE_DN (5) `dc=home,dc=arpa`	string
controllers.authelia.containers.app.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_GROUPS_FILTER (5) `(member={dn})`	string
controllers.authelia.containers.app.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_IMPLEMENTATION (5) `custom`	string
controllers.authelia.containers.app.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_START_TLS (5) `false`	string
controllers.authelia.containers.app.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_TIMEOUT (5) `5s`	string
controllers.authelia.containers.app.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_USERS_FILTER (5)	string
controllers.authelia.containers.app.env.AUTHELIA_AUTHENTICATION_BACKEND_PASSWORD_RESET_DISABLE (5) `true`	string
controllers.authelia.containers.app.env.AUTHELIA_AUTHENTICATION_BACKEND_REFRESH_INTERVAL (5) `1m`	string
controllers.authelia.containers.app.env.AUTHELIA_NOTIFIER_DISABLE_STARTUP_CHECK (5) `true`	string
controllers.authelia.containers.app.env.AUTHELIA_NOTIFIER_SMTP_SENDER (5)	string
controllers.authelia.containers.app.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_ATTRIBUTES_DISPLAY_NAME (4)	string
controllers.authelia.containers.app.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_ATTRIBUTES_GROUP_NAME (4)	string
controllers.authelia.containers.app.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_ATTRIBUTES_MAIL (4) `mail`	string
controllers.authelia.containers.app.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_ATTRIBUTES_USERNAME (4) `uid`	string
controllers.authelia.containers.app.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_USER (4)	string
controllers.authelia.containers.app.env.AUTHELIA_LOG_LEVEL (4) `debug`	string
controllers.authelia.containers.app.env.AUTHELIA_NOTIFIER_SMTP_DISABLE_REQUIRE_TLS (4) `true`	string
controllers.authelia.containers.app.env.AUTHELIA_DUO_API_DISABLE (3) `true`	string
controllers.authelia.containers.app.env.AUTHELIA_NOTIFIER_SMTP_ADDRESS (3)	string
controllers.authelia.containers.app.env.AUTHELIA_SESSION_REDIS_DATABASE_INDEX (3)	number
controllers.authelia.containers.app.env.AUTHELIA_SESSION_REDIS_HOST (3)	string
controllers.authelia.containers.app.env.AUTHELIA_SESSION_REDIS_PASSWORD.valueFrom.secretKeyRef.key (3)	string
controllers.authelia.containers.app.env.AUTHELIA_SESSION_REDIS_PASSWORD.valueFrom.secretKeyRef.name (3)	string
controllers.authelia.containers.app.env.AUTHELIA_ACCESS_CONTROL_DEFAULT_POLICY (2)	string
controllers.authelia.containers.app.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_ATTRIBUTES_MEMBER_OF (2)	string
controllers.authelia.containers.app.env.AUTHELIA_DEFAULT_REDIRECTION_URL (2)	string
controllers.authelia.containers.app.env.AUTHELIA_NOTIFIER_SMTP_HOST (2)	string
controllers.authelia.containers.app.env.AUTHELIA_NOTIFIER_SMTP_PORT (2)	string
controllers.authelia.containers.app.env.AUTHELIA_SESSION_DOMAIN (2)	string
controllers.authelia.containers.app.env.AUTHELIA_SESSION_NAME (2)	string
controllers.authelia.containers.app.env.AUTHELIA_SESSION_REDIS_PORT (2)	number
controllers.authelia.containers.app.env.AUTHELIA_STORAGE_POSTGRES_ADDRESS.valueFrom.secretKeyRef.key (1)	string
controllers.authelia.containers.app.env.AUTHELIA_STORAGE_POSTGRES_ADDRESS.valueFrom.secretKeyRef.name (1)	string
controllers.authelia.containers.app.env.AUTHELIA_STORAGE_POSTGRES_ADDRESS (2)	string
controllers.authelia.containers.app.env.AUTHELIA_STORAGE_POSTGRES_DATABASE.valueFrom.secretKeyRef.key (1)	string
controllers.authelia.containers.app.env.AUTHELIA_STORAGE_POSTGRES_DATABASE.valueFrom.secretKeyRef.name (1)	string
controllers.authelia.containers.app.env.AUTHELIA_STORAGE_POSTGRES_DATABASE (2)	string
controllers.authelia.containers.app.env.AUTHELIA_TOTP_DISABLE (2)	boolean
controllers.authelia.containers.app.env.AUTHELIA_WEBAUTHN_DISABLE (2)	string
controllers.authelia.containers.app.env.CLUSTER_CIDR (2)	string
controllers.authelia.containers.app.env.HOME_CIDR (2)	string
controllers.authelia.containers.app.env.NODE_CIDR (2)	string
controllers.authelia.containers.app.env.TZ (2)	string
controllers.authelia.containers.app.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_DISPLAY_NAME_ATTRIBUTE (1)	string
controllers.authelia.containers.app.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_GROUP_NAME_ATTRIBUTE (1)	string
controllers.authelia.containers.app.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_MAIL_ATTRIBUTE (1)	string
controllers.authelia.containers.app.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_PASSWORD.valueFrom.secretKeyRef.key (1)	string
controllers.authelia.containers.app.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_PASSWORD.valueFrom.secretKeyRef.name (1)	string
controllers.authelia.containers.app.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_URL (1)	string
controllers.authelia.containers.app.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_USERNAME_ATTRIBUTE (1)	string
controllers.authelia.containers.app.env.AUTHELIA_CERTIFICATES_DIRECTORY (1)	string
controllers.authelia.containers.app.env.AUTHELIA_IDENTITY_PROVIDERS_OIDC_ISSUER_PRIVATE_KEY_FILE (1)	string
controllers.authelia.containers.app.env.AUTHELIA_SERVER_PORT (1)	number
controllers.authelia.containers.app.env.AUTHELIA_STORAGE_POSTGRES_PASSWORD.valueFrom.secretKeyRef.key (1)	string
controllers.authelia.containers.app.env.AUTHELIA_STORAGE_POSTGRES_PASSWORD.valueFrom.secretKeyRef.name (1)	string
controllers.authelia.containers.app.env.AUTHELIA_STORAGE_POSTGRES_USERNAME.valueFrom.secretKeyRef.key (1)	string
controllers.authelia.containers.app.env.AUTHELIA_STORAGE_POSTGRES_USERNAME.valueFrom.secretKeyRef.name (1)	string
controllers.authelia.containers.app.env.DOMAIN_NAME (1)	string
controllers.authelia.containers.app.env.PRIVATE_DOMAIN (1)	string
controllers.authelia.containers.app.env.PUBLIC_DOMAIN (1)	string
controllers.authelia.containers.app.env.SECRET_DOMAIN (1)	string
controllers.authelia.containers.app.env.SECRET_EXTERNAL_DOMAIN (1)	string
controllers.authelia.containers.app.env.SECRET_INTERNAL_DOMAIN (1)	string
controllers.authelia.containers.app.resources.limits.memory (34) `128Mi`	string
controllers.authelia.containers.app.resources.limits.cpu (1)	number
controllers.authelia.containers.app.resources.requests.cpu (34) `10m`	string
controllers.authelia.containers.app.resources.requests.memory (14) `32Mi`	string
controllers.authelia.containers.app.envFrom[].secretRef.name (32) `authelia-secret`	string
controllers.authelia.containers.app.securityContext.allowPrivilegeEscalation (29) `false`	boolean
controllers.authelia.containers.app.securityContext.readOnlyRootFilesystem (29) `true`	boolean
controllers.authelia.containers.app.securityContext.capabilities.drop[] (27) `- ALL`	string
controllers.authelia.containers.app.securityContext.drop[] (2)	string
controllers.authelia.containers.app.args[] (5) `- --config - /config/configuration.yaml - --config.experimental.filters - expand-env`	string
controllers.authelia.containers.main.env.AUTHELIA_STORAGE_POSTGRES_ADDRESS (2)	string
controllers.authelia.containers.main.env.AUTHELIA_STORAGE_POSTGRES_DATABASE.valueFrom.secretKeyRef.key (2)	string
controllers.authelia.containers.main.env.AUTHELIA_STORAGE_POSTGRES_DATABASE.valueFrom.secretKeyRef.name (2)	string
controllers.authelia.containers.main.env.AUTHELIA_STORAGE_POSTGRES_PASSWORD.valueFrom.secretKeyRef.key (2)	string
controllers.authelia.containers.main.env.AUTHELIA_STORAGE_POSTGRES_PASSWORD.valueFrom.secretKeyRef.name (2)	string
controllers.authelia.containers.main.env.AUTHELIA_STORAGE_POSTGRES_USERNAME.valueFrom.secretKeyRef.key (2)	string
controllers.authelia.containers.main.env.AUTHELIA_STORAGE_POSTGRES_USERNAME.valueFrom.secretKeyRef.name (2)	string
controllers.authelia.containers.main.env.X_AUTHELIA_CONFIG (2)	string
controllers.authelia.containers.main.env.X_AUTHELIA_CONFIG_FILTERS (2)	string
controllers.authelia.containers.main.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_BASE_DN.valueFrom.secretKeyRef.key (1)	string
controllers.authelia.containers.main.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_BASE_DN.valueFrom.secretKeyRef.name (1)	string
controllers.authelia.containers.main.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_PASSWORD.valueFrom.secretKeyRef.key (1)	string
controllers.authelia.containers.main.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_PASSWORD.valueFrom.secretKeyRef.name (1)	string
controllers.authelia.containers.main.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_USER.valueFrom.secretKeyRef.key (1)	string
controllers.authelia.containers.main.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_USER.valueFrom.secretKeyRef.name (1)	string
controllers.authelia.containers.main.env.AUTHELIA_NOTIFIER_SMTP_PASSWORD.valueFrom.secretKeyRef.key (1)	string
controllers.authelia.containers.main.env.AUTHELIA_NOTIFIER_SMTP_PASSWORD.valueFrom.secretKeyRef.name (1)	string
controllers.authelia.containers.main.envFrom[].secretRef.name (2)	string
controllers.authelia.containers.main.image.repository (2)	string
controllers.authelia.containers.main.image.tag (2)	string
controllers.authelia.containers.main.probes.liveness.enabled (2)	boolean
controllers.authelia.containers.main.probes.readiness.enabled (2)	boolean
controllers.authelia.containers.main.probes.startup.enabled (2)	boolean
controllers.authelia.containers.main.probes.startup.spec.failureThreshold (2)	number
controllers.authelia.containers.main.probes.startup.spec.periodSeconds (2)	number
controllers.authelia.containers.main.resources.requests.cpu (2)	string
controllers.authelia.containers.main.resources.requests.memory (2)	string
controllers.authelia.strategy (35) `RollingUpdate`	string
controllers.authelia.replicas (33) `2`	number
controllers.authelia.annotations."reloader.stakater.com/auto" (29) `true`	string
controllers.authelia.annotations."secret.reloader.stakater.com/reload" (4)	string
controllers.authelia.initContainers.init-db.image.repository (23) `ghcr.io/onedr0p/postgres-init`	string
controllers.authelia.initContainers.init-db.image.tag (23) `16`	number, string
controllers.authelia.initContainers.init-db.image.pullPolicy (3) `IfNotPresent`	string
controllers.authelia.initContainers.init-db.envFrom[].secretRef.name (21) `authelia-secret`	string
controllers.authelia.initContainers.init-db.env.INIT_POSTGRES_DBNAME (2)	string
controllers.authelia.initContainers.init-db.env.INIT_POSTGRES_HOST (2)	string
controllers.authelia.initContainers.init-db.env.INIT_POSTGRES_PASS.valueFrom.secretKeyRef.key (2)	string
controllers.authelia.initContainers.init-db.env.INIT_POSTGRES_PASS.valueFrom.secretKeyRef.name (2)	string
controllers.authelia.initContainers.init-db.env.INIT_POSTGRES_SUPER_PASS.valueFrom.secretKeyRef.key (2)	string
controllers.authelia.initContainers.init-db.env.INIT_POSTGRES_SUPER_PASS.valueFrom.secretKeyRef.name (2)	string
controllers.authelia.initContainers.init-db.env.INIT_POSTGRES_USER.valueFrom.secretKeyRef.key (2)	string
controllers.authelia.initContainers.init-db.env.INIT_POSTGRES_USER.valueFrom.secretKeyRef.name (2)	string
controllers.authelia.initContainers.01-init-db.envFrom[].secretRef.name (2)	string
controllers.authelia.initContainers.01-init-db.image.repository (2)	string
controllers.authelia.initContainers.01-init-db.image.tag (2)	string
controllers.authelia.pod.topologySpreadConstraints[].labelSelector.matchLabels."app.kubernetes.io/name" (17) `authelia`	string
controllers.authelia.pod.topologySpreadConstraints[].maxSkew (17) `1`	number
controllers.authelia.pod.topologySpreadConstraints[].topologyKey (17) `kubernetes.io/hostname`	string
controllers.authelia.pod.topologySpreadConstraints[].whenUnsatisfiable (17) `DoNotSchedule`	string
controllers.authelia.pod.securityContext.runAsGroup (16) `568`	number
controllers.authelia.pod.securityContext.runAsUser (16) `568`	number
controllers.authelia.pod.securityContext.runAsNonRoot (13) `true`	boolean
controllers.authelia.pod.securityContext.fsGroup (3)	number
controllers.authelia.pod.securityContext.fsGroupChangePolicy (3) `OnRootMismatch`	string
controllers.authelia.pod.securityContext.seccompProfile.type (1)	string
controllers.authelia.pod.enableServiceLinks (6) `false`	boolean
controllers.authelia.pod.labels."auth.home.arpa/ldap" (2)	string
controllers.authelia.pod.labels."db.home.arpa/dragonfly" (2)	string
controllers.authelia.pod.labels."db.home.arpa/pg" (2)	string
controllers.authelia.pod.labels."egress.home.arpa/kubedns" (2)	string
controllers.authelia.pod.labels."ingress.home.arpa/nginx-internal" (2)	string
controllers.authelia.pod.labels."mail.home.arpa/smtp-relay" (2)	string
controllers.authelia.pod.labels."monitoring.home.arpa/prometheus" (2)	string
controllers.authelia.pod.annotations."configmap.reloader.stakater.com/reload" (1)	string
controllers.authelia.pod.annotations."secret.reloader.stakater.com/reload" (1)	string
controllers.main.annotations."reloader.stakater.com/auto" (9) `true`	string
controllers.main.containers.main.image.repository (9) `ghcr.io/authelia/authelia`	string
controllers.main.containers.main.image.tag (9) `v4.38.0-beta3@sha256:b48ae4d0ed9d1eee76efe382df60928bae550ec19e5663858dde6dc5f41cf285`	string
controllers.main.containers.main.resources.limits.memory (9) `128Mi`	string
controllers.main.containers.main.resources.requests.cpu (9) `10m`	string
controllers.main.containers.main.resources.requests.memory (6)	string
controllers.main.containers.main.envFrom[].secretRef.name (8) `authelia-secret`	string
controllers.main.containers.main.probes.liveness.custom (8) `true`	boolean
controllers.main.containers.main.probes.liveness.enabled (8) `true`	boolean
controllers.main.containers.main.probes.liveness.spec.failureThreshold (8) `3`	number
controllers.main.containers.main.probes.liveness.spec.httpGet.path (8) `/api/health`	string
controllers.main.containers.main.probes.liveness.spec.httpGet.port (8) `80`	number
controllers.main.containers.main.probes.liveness.spec.initialDelaySeconds (8) `0`	number
controllers.main.containers.main.probes.liveness.spec.periodSeconds (8) `10`	number
controllers.main.containers.main.probes.liveness.spec.timeoutSeconds (8) `1`	number
controllers.main.containers.main.probes.readiness.custom (8) `true`	boolean
controllers.main.containers.main.probes.readiness.enabled (8) `true`	boolean
controllers.main.containers.main.probes.readiness.spec.failureThreshold (8) `3`	number
controllers.main.containers.main.probes.readiness.spec.httpGet.path (8) `/api/health`	string
controllers.main.containers.main.probes.readiness.spec.httpGet.port (8) `80`	number
controllers.main.containers.main.probes.readiness.spec.initialDelaySeconds (8) `0`	number
controllers.main.containers.main.probes.readiness.spec.periodSeconds (8) `10`	number
controllers.main.containers.main.probes.readiness.spec.timeoutSeconds (8) `1`	number
controllers.main.containers.main.probes.startup.enabled (8) `false`	boolean
controllers.main.containers.main.env.AUTHELIA_SERVER_ADDRESS (7) `tcp://0.0.0.0:80`	string
controllers.main.containers.main.env.AUTHELIA_SERVER_DISABLE_HEALTHCHECK (7) `true`	boolean, string
controllers.main.containers.main.env.AUTHELIA_TELEMETRY_METRICS_ADDRESS (7) `tcp://0.0.0.0:8080`	string
controllers.main.containers.main.env.AUTHELIA_TELEMETRY_METRICS_ENABLED (7) `true`	boolean, string
controllers.main.containers.main.env.AUTHELIA_THEME (7) `dark`	string
controllers.main.containers.main.env.X_AUTHELIA_CONFIG (7) `/config/configuration.yaml`	string
controllers.main.containers.main.env.X_AUTHELIA_CONFIG_FILTERS (7) `expand-env`	string
controllers.main.containers.main.env.AUTHELIA_SERVER_BUFFERS_READ (1)	number
controllers.main.containers.main.env.AUTHELIA_SERVER_BUFFERS_WRITE (1)	number
controllers.main.containers.main.env.AUTHELIA_SERVER_PORT (1)	number
controllers.main.containers.main.env.AUTHELIA_SESSION_REDIS_DATABASE_INDEX (1)	string
controllers.main.containers.main.env.AUTHELIA_SESSION_REDIS_HOST (1)	string
controllers.main.containers.main.env.AUTHELIA_SESSION_REDIS_PASSWORD.valueFrom.secretKeyRef.key (1)	string
controllers.main.containers.main.env.AUTHELIA_SESSION_REDIS_PASSWORD.valueFrom.secretKeyRef.name (1)	string
controllers.main.containers.main.env.AUTHELIA_SESSION_REDIS_PORT (1)	string
controllers.main.containers.main.env.AUTHELIA_STORAGE_POSTGRES_DATABASE.valueFrom.secretKeyRef.key (1)	string
controllers.main.containers.main.env.AUTHELIA_STORAGE_POSTGRES_DATABASE.valueFrom.secretKeyRef.name (1)	string
controllers.main.containers.main.env.AUTHELIA_STORAGE_POSTGRES_HOST.valueFrom.secretKeyRef.key (1)	string
controllers.main.containers.main.env.AUTHELIA_STORAGE_POSTGRES_HOST.valueFrom.secretKeyRef.name (1)	string
controllers.main.containers.main.env.AUTHELIA_STORAGE_POSTGRES_PASSWORD.valueFrom.secretKeyRef.key (1)	string
controllers.main.containers.main.env.AUTHELIA_STORAGE_POSTGRES_PASSWORD.valueFrom.secretKeyRef.name (1)	string
controllers.main.containers.main.env.AUTHELIA_STORAGE_POSTGRES_USERNAME.valueFrom.secretKeyRef.key (1)	string
controllers.main.containers.main.env.AUTHELIA_STORAGE_POSTGRES_USERNAME.valueFrom.secretKeyRef.name (1)	string
controllers.main.containers.main.env.TZ (1)	string
controllers.main.containers.main.securityContext.allowPrivilegeEscalation (6) `false`	boolean
controllers.main.containers.main.securityContext.capabilities.drop[] (6) `- ALL`	string
controllers.main.containers.main.securityContext.readOnlyRootFilesystem (6) `true`	boolean
controllers.main.containers.main.args[] (2)	string
controllers.main.containers.main.command[] (1)	string
controllers.main.pod.enableServiceLinks (9) `false`	boolean
controllers.main.pod.topologySpreadConstraints[].labelSelector.matchLabels."app.kubernetes.io/name" (8) `authelia`	string
controllers.main.pod.topologySpreadConstraints[].maxSkew (8) `1`	number
controllers.main.pod.topologySpreadConstraints[].topologyKey (8) `kubernetes.io/hostname`	string
controllers.main.pod.topologySpreadConstraints[].whenUnsatisfiable (8) `DoNotSchedule`	string
controllers.main.pod.securityContext.runAsGroup (7) `568`	number
controllers.main.pod.securityContext.runAsUser (7) `568`	number
controllers.main.pod.securityContext.runAsNonRoot (6) `true`	boolean
controllers.main.replicas (8) `2`	number
controllers.main.initContainers.init-db.envFrom[].secretRef.name (7) `authelia-secret`	string
controllers.main.initContainers.init-db.image.repository (7) `ghcr.io/onedr0p/postgres-init`	string
controllers.main.initContainers.init-db.image.tag (7) `16`	number
controllers.main.initContainers.init-db.image.pullPolicy (1)	string
controllers.main.strategy (7) `RollingUpdate`	string
service.app.controller (35) `authelia`	string
service.app.ports.http.port (35) `80`	number
service.app.ports.http.primary (4) `true`	boolean
service.app.ports.http.enabled (1)	boolean
service.app.ports.metrics.port (34) `8080`	number
service.app.ports.metrics.enabled (3) `true`	boolean
service.app.ipFamilyPolicy (2)	string
service.app.annotations."external-dns.alpha.kubernetes.io/hostname" (1)	string
service.app.annotations."lbipam.cilium.io/ips" (1)	string
service.app.enabled (1)	boolean
service.app.externalTrafficPolicy (1)	string
service.app.type (1)	string
service.main.ports.http.port (18) `80`	number
service.main.ports.metrics.port (15) `8080`	number
service.main.ports.metrics.enabled (8) `true`	boolean
service.main.controller (4)	string
ingress.app.hosts[].host (32) `auth.${SECRET_DOMAIN}`	string
ingress.app.hosts[].paths[].path (32) `/`	string
ingress.app.hosts[].paths[].service.identifier (32) `app`	string
ingress.app.hosts[].paths[].service.port (32) `http`	string
ingress.app.hosts[].paths[].pathType (2)	string
ingress.app.className (31) `external`	string
ingress.app.annotations."nginx.ingress.kubernetes.io/configuration-snippet" (28) `add_header Cache-Control "no-store"; add_header Pragma "no-cache"; add_header X-Frame-Options "SAMEORIGIN"; add_header X-XSS-Protection "1; mode=block";`	string
ingress.app.annotations."external-dns.alpha.kubernetes.io/target" (26) `external.${SECRET_DOMAIN}`	string
ingress.app.annotations."hajimari.io/icon" (8) `mdi:shield-account`	string
ingress.app.annotations."traefik.ingress.kubernetes.io/router.middlewares" (3)	string
ingress.app.annotations."external-dns.alpha.kubernetes.io/enabled" (2)	string
ingress.app.annotations."gatus.io/path" (2)	string
ingress.app.annotations."gethomepage.dev/enabled" (2)	string
ingress.app.annotations."gethomepage.dev/group" (2)	string
ingress.app.annotations."gethomepage.dev/icon" (2)	string
ingress.app.annotations."gethomepage.dev/name" (2)	string
ingress.app.annotations."hajimari.io/url" (2)	string
ingress.app.annotations."traefik.ingress.kubernetes.io/router.entrypoints" (2)	string
ingress.app.annotations."auth.home.arpa/disabled" (1)	string
ingress.app.annotations."gethomepage.dev/pod-selector" (1)	string
ingress.app.annotations."hajimari.io/appName" (1)	string
ingress.app.annotations."hajimari.io/enable" (1)	string
ingress.app.annotations."hajimari.io/instance" (1)	string
ingress.app.annotations."nginx.ingress.kubernetes.io/cors-allow-origin" (1)	string
ingress.app.annotations."nginx.ingress.kubernetes.io/enable-cors" (1)	string
ingress.app.tls[].hosts[] (13) `- auth.${SECRET_DOMAIN}`	string
ingress.app.tls[].secretName (1)	string
ingress.app.enabled (5) `true`	boolean
ingress.main.enabled (20) `true`	boolean
ingress.main.hosts[].host (20) `auth.${SECRET_DOMAIN}`	string
ingress.main.hosts[].paths[].path (20) `/`	string
ingress.main.hosts[].paths[].service.port (13) `http`	string, number
ingress.main.hosts[].paths[].service.name (7) `main`	string
ingress.main.hosts[].paths[].service.identifier (6) `main`	string
ingress.main.hosts[].paths[].pathType (11) `Prefix`	string
ingress.main.tls[].hosts[] (18) `- auth.${SECRET_DOMAIN}`	string
ingress.main.tls[].secretName (3)	string
ingress.main.annotations."nginx.ingress.kubernetes.io/configuration-snippet" (17) `add_header Cache-Control "no-store"; add_header Pragma "no-cache"; add_header X-Frame-Options "SAMEORIGIN"; add_header X-XSS-Protection "1; mode=block";`	string
ingress.main.annotations."external-dns.alpha.kubernetes.io/target" (12) `external.${SECRET_DOMAIN}`	string
ingress.main.annotations."hajimari.io/icon" (7) `mdi:shield-account`	string
ingress.main.annotations."hajimari.io/group" (4)	string
ingress.main.annotations."external-dns.home.arpa/enabled" (3) `true`	string
ingress.main.annotations."hajimari.io/enable" (3) `true`	string
ingress.main.annotations."hajimari.io/appName" (2)	string
ingress.main.annotations."cert-manager.io/cluster-issuer" (1)	string
ingress.main.annotations."external-dns.alpha.kubernetes.io/cloudflare-proxied" (1)	string
ingress.main.annotations."external.home.arpa/enabled" (1)	string
ingress.main.annotations."gatus.io/enabled" (1)	string
ingress.main.annotations."gatus.io/path" (1)	string
ingress.main.annotations."hajimari.io/url" (1)	string
ingress.main.annotations."policy-control.aumer.io/gatus-dns" (1)	string
ingress.main.annotations."policy-control.aumer.io/gatus-generate" (1)	string
ingress.main.className (13) `nginx`	string
ingress.main.ingressClassName (7)	string
ingress.nginx.annotations."external-dns.alpha.kubernetes.io/target" (1)	string
ingress.nginx.annotations."nginx.ingress.kubernetes.io/configuration-snippet" (1)	string
ingress.nginx.className (1)	string
ingress.nginx.enabled (1)	boolean
ingress.nginx.hosts[].host (1)	string
ingress.nginx.hosts[].paths[].path (1)	string
ingress.nginx.hosts[].paths[].service.identifier (1)	string
ingress.nginx.hosts[].paths[].service.port (1)	string
serviceMonitor.app.endpoints[].port (30) `metrics`	string
serviceMonitor.app.endpoints[].interval (27) `1m`	string
serviceMonitor.app.endpoints[].path (27) `/metrics`	string
serviceMonitor.app.endpoints[].scheme (27) `http`	string
serviceMonitor.app.endpoints[].scrapeTimeout (27) `10s`	string
serviceMonitor.app.serviceName (30) `authelia`	string
serviceMonitor.app.enabled (5) `true`	boolean
serviceMonitor.main.enabled (10) `true`	boolean
serviceMonitor.main.endpoints[].interval (10) `1m`	string
serviceMonitor.main.endpoints[].path (10) `/metrics`	string
serviceMonitor.main.endpoints[].port (10) `metrics`	string
serviceMonitor.main.endpoints[].scheme (10) `http`	string
serviceMonitor.main.endpoints[].scrapeTimeout (10) `10s`	string
serviceMonitor.main.serviceName (2)	string
defaultPodOptions.securityContext.runAsGroup (17) `65534`	number
defaultPodOptions.securityContext.runAsUser (17) `65534`	number
defaultPodOptions.securityContext.runAsNonRoot (16) `true`	boolean
defaultPodOptions.securityContext.seccompProfile.type (14) `RuntimeDefault`	string
defaultPodOptions.securityContext.fsGroup (2)	number
defaultPodOptions.securityContext.fsGroupChangePolicy (1)	string
defaultPodOptions.topologySpreadConstraints[].labelSelector.matchLabels."app.kubernetes.io/name" (15) `authelia`	string
defaultPodOptions.topologySpreadConstraints[].maxSkew (15) `1`	number
defaultPodOptions.topologySpreadConstraints[].topologyKey (15) `kubernetes.io/hostname`	string
defaultPodOptions.topologySpreadConstraints[].whenUnsatisfiable (15) `DoNotSchedule`	string
defaultPodOptions.enableServiceLinks (3) `false`	boolean
defaultPodOptions.automountServiceAccountToken (1)	boolean
controller.replicas (7) `1`	number
controller.strategy (7) `RollingUpdate`	string
controller.annotations."reloader.stakater.com/auto" (4) `true`	string
controller.rollingUpdate.surge (2)	number
controller.rollingUpdate.unavailable (1)	number
enableServiceLinks (7) `false`	boolean
envFrom[].secretRef.name (7) `authelia-secret`	string
image.repository (7) `ghcr.io/authelia/authelia`	string
image.tag (7)	string
resources.limits.memory (7) `200Mi`	string
resources.requests.cpu (7) `5m`	string
resources.requests.memory (7) `10Mi`	string
podSecurityContext.fsGroup (6) `568`	number
podSecurityContext.fsGroupChangePolicy (6) `OnRootMismatch`	string
podSecurityContext.runAsGroup (6) `568`	number
podSecurityContext.runAsUser (6) `568`	number
topologySpreadConstraints[].labelSelector.matchLabels."app.kubernetes.io/name" (6) `authelia`	string
topologySpreadConstraints[].maxSkew (6) `1`	number
topologySpreadConstraints[].topologyKey (6) `kubernetes.io/hostname`	string
topologySpreadConstraints[].whenUnsatisfiable (6) `DoNotSchedule`	string
podAnnotations."configmap.reloader.stakater.com/reload" (4) `authelia`	string
podAnnotations."secret.reloader.stakater.com/reload" (4) `authelia`	string
args[] (3)	string
env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_ADDITIONAL_GROUPS_DN (3) `ou=groups`	string
env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_ADDITIONAL_USERS_DN (3) `ou=people`	string
env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_BASE_DN (3)	string
env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_GROUPS_FILTER (3) `(member={dn})`	string
env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_IMPLEMENTATION (3) `custom`	string
env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_TIMEOUT (3) `5s`	string
env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_USERS_FILTER (3) `(&({username_attribute}={input})(objectClass=person))`	string
env.AUTHELIA_AUTHENTICATION_BACKEND_PASSWORD_RESET_DISABLE (3) `true`	string
env.AUTHELIA_DEFAULT_REDIRECTION_URL (3)	string
env.AUTHELIA_DUO_API_DISABLE (3) `true`	string
env.AUTHELIA_LOG_LEVEL (3)	string
env.AUTHELIA_SERVER_DISABLE_HEALTHCHECK (3) `true`	string
env.AUTHELIA_SESSION_DOMAIN (3)	string
env.AUTHELIA_TELEMETRY_METRICS_ADDRESS (3) `tcp://0.0.0.0:8080`	string
env.AUTHELIA_TELEMETRY_METRICS_ENABLED (3) `true`	string
env.AUTHELIA_THEME (3)	string
env.AUTHELIA_TOTP_ISSUER (3) `authelia.com`	string
env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_DISPLAY_NAME_ATTRIBUTE (2)	string
env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_GROUP_NAME_ATTRIBUTE (2)	string
env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_MAIL_ATTRIBUTE (2)	string
env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_START_TLS (2)	string
env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_URL (2)	string
env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_USERNAME_ATTRIBUTE (2)	string
env.AUTHELIA_AUTHENTICATION_BACKEND_REFRESH_INTERVAL (2)	string
env.AUTHELIA_SERVER_PORT (2)	number
env.AUTHELIA_SESSION_NAME (2)	string
env.AUTHELIA_STORAGE_LOCAL_PATH (2)	string
env.AUTHELIA_WEBAUTHN_DISABLE (2)	string
env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_ADDRESS (1)	string
env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_ATTRIBUTES_DISPLAY_NAME (1)	string
env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_ATTRIBUTES_GROUP_NAME (1)	string
env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_ATTRIBUTES_MAIL (1)	string
env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_ATTRIBUTES_USERNAME (1)	string
env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_PASSWORD.valueFrom.secretKeyRef.key (1)	string
env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_PASSWORD.valueFrom.secretKeyRef.name (1)	string
env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_USER (1)	string
env.AUTHELIA_NOTIFIER_SMTP_ADDRESS (1)	string
env.AUTHELIA_NOTIFIER_SMTP_HOST (1)	string
env.AUTHELIA_NOTIFIER_SMTP_PORT (1)	string
env.AUTHELIA_NOTIFIER_SMTP_SENDER (1)	string
env.AUTHELIA_NOTIFIER_SMTP_USERNAME (1)	string
env.AUTHELIA_SERVER_ADDRESS (1)	string
env.AUTHELIA_SESSION_REDIS_DATABASE_INDEX (1)	number
env.AUTHELIA_SESSION_REDIS_HOST (1)	string
env.AUTHELIA_STORAGE_POSTGRES_DATABASE.valueFrom.secretKeyRef.key (1)	string
env.AUTHELIA_STORAGE_POSTGRES_DATABASE.valueFrom.secretKeyRef.name (1)	string
env.AUTHELIA_STORAGE_POSTGRES_HOST.valueFrom.secretKeyRef.key (1)	string
env.AUTHELIA_STORAGE_POSTGRES_HOST.valueFrom.secretKeyRef.name (1)	string
env.AUTHELIA_STORAGE_POSTGRES_PASSWORD.valueFrom.secretKeyRef.key (1)	string
env.AUTHELIA_STORAGE_POSTGRES_PASSWORD.valueFrom.secretKeyRef.name (1)	string
env.AUTHELIA_STORAGE_POSTGRES_USERNAME.valueFrom.secretKeyRef.key (1)	string
env.AUTHELIA_STORAGE_POSTGRES_USERNAME.valueFrom.secretKeyRef.name (1)	string
env.SECRET_DOMAIN (1)	string
probes.liveness.custom (3) `true`	boolean
probes.liveness.enabled (3) `true`	boolean
probes.liveness.spec.failureThreshold (3) `3`	number
probes.liveness.spec.httpGet.path (3) `/api/health`	string
probes.liveness.spec.httpGet.port (3)	number
probes.liveness.spec.initialDelaySeconds (3) `0`	number
probes.liveness.spec.periodSeconds (3) `10`	number
probes.liveness.spec.timeoutSeconds (3) `1`	number
probes.readiness.custom (3) `true`	boolean
probes.readiness.enabled (3) `true`	boolean
probes.readiness.spec.failureThreshold (3) `3`	number
probes.readiness.spec.httpGet.path (3) `/api/health`	string
probes.readiness.spec.httpGet.port (3)	number
probes.readiness.spec.initialDelaySeconds (3) `0`	number
probes.readiness.spec.periodSeconds (3) `10`	number
probes.readiness.spec.timeoutSeconds (3) `1`	number
probes.startup.enabled (3)	boolean
probes.startup.custom (2)	boolean
probes.startup.spec.failureThreshold (2)	number
probes.startup.spec.httpGet.path (2)	string
probes.startup.spec.httpGet.port (2)	number
probes.startup.spec.periodSeconds (2)	number
probes.startup.spec.successThreshold (2)	number
probes.startup.spec.timeoutSeconds (2)	number
global.nameOverride (1)	string
initContainers.init-db.envFrom[].secretRef.name (1)	string
initContainers.init-db.image (1)	string
initContainers.init-db.imagePullPolicy (1)	string

Key

Types

persistence.config.name (53)

authelia-configmap

string

persistence.config.type (53)

configMap

string

persistence.config.globalMounts[].path (45)

/config/configuration.yaml

string

persistence.config.globalMounts[].readOnly (43)

true

boolean

persistence.config.globalMounts[].subPath (42)

configuration.yaml

string

persistence.config.enabled (23)

true

boolean

persistence.config.mountPath (7)

/config/configuration.yml

string

persistence.config.readOnly (7)

false

boolean

persistence.config.subPath (7)

configuration.yml

string

persistence.secret-files.enabled (5)

true

boolean

persistence.secret-files.globalMounts[].path (5)

/config/secret

string

persistence.secret-files.name (5)

authelia-secret-files

string

persistence.secret-files.type (5)

secret

string

persistence.data.enabled (2)

boolean

persistence.data.existingClaim (2)

string

persistence.data.type (2)

string

persistence.secret-keys.enabled (2)

boolean

persistence.secret-keys.globalMounts[].path (2)

string

persistence.secret-keys.name (2)

string

persistence.secret-keys.type (2)

string

persistence.tmp.type (2)

string

persistence.oidc-issuer.globalMounts[].path (1)

string

persistence.oidc-issuer.globalMounts[].readOnly (1)

boolean

persistence.oidc-issuer.globalMounts[].subPath (1)

string

persistence.oidc-issuer.name (1)

string

persistence.oidc-issuer.type (1)

string

persistence.oidc-jwks.globalMounts[].path (1)

string

persistence.oidc-jwks.globalMounts[].readOnly (1)

boolean

persistence.oidc-jwks.globalMounts[].subPath (1)

string

persistence.oidc-jwks.name (1)

string

persistence.oidc-jwks.type (1)

string

persistence.trusted-certs.globalMounts[].path (1)

string

persistence.trusted-certs.globalMounts[].readOnly (1)

boolean

persistence.trusted-certs.globalMounts[].subPath (1)

string

persistence.trusted-certs.name (1)

string

persistence.trusted-certs.type (1)

string

persistence.users.enabled (1)

boolean

persistence.users.globalMounts[].path (1)

string

persistence.users.globalMounts[].readOnly (1)

boolean

persistence.users.globalMounts[].subPath (1)

string

persistence.users.name (1)

string

persistence.users.type (1)

string

controllers.authelia.containers.app.image.repository (35)

ghcr.io/authelia/authelia

string

controllers.authelia.containers.app.image.tag (35)

4.38.16@sha256:172c9b2e4d7c25196404e4620f6018650cbd2124999aceaa812cf0c100ef8b23

string

controllers.authelia.containers.app.probes.liveness.enabled (35)

true

boolean

controllers.authelia.containers.app.probes.liveness.custom (34)

true

boolean

controllers.authelia.containers.app.probes.liveness.spec.failureThreshold (34)

number

controllers.authelia.containers.app.probes.liveness.spec.httpGet.path (34)

/api/health

string

controllers.authelia.containers.app.probes.liveness.spec.httpGet.port (34)

number

controllers.authelia.containers.app.probes.liveness.spec.periodSeconds (34)

number

controllers.authelia.containers.app.probes.liveness.spec.timeoutSeconds (34)

number

controllers.authelia.containers.app.probes.liveness.spec.initialDelaySeconds (33)

number

controllers.authelia.containers.app.probes.readiness.enabled (35)

true

boolean

controllers.authelia.containers.app.probes.readiness.custom (34)

true

boolean

controllers.authelia.containers.app.probes.readiness.spec.failureThreshold (34)

number

controllers.authelia.containers.app.probes.readiness.spec.httpGet.path (34)

/api/health

string

controllers.authelia.containers.app.probes.readiness.spec.httpGet.port (34)

number

controllers.authelia.containers.app.probes.readiness.spec.periodSeconds (34)

number

controllers.authelia.containers.app.probes.readiness.spec.timeoutSeconds (34)

number

controllers.authelia.containers.app.probes.readiness.spec.initialDelaySeconds (33)

number

controllers.authelia.containers.app.probes.startup.enabled (12)

false

boolean

controllers.authelia.containers.app.probes.startup.custom (3)

true

boolean

controllers.authelia.containers.app.probes.startup.spec.failureThreshold (3)

number

controllers.authelia.containers.app.probes.startup.spec.httpGet.path (3)

/api/health

string

controllers.authelia.containers.app.probes.startup.spec.httpGet.port (3)

number

controllers.authelia.containers.app.probes.startup.spec.periodSeconds (3)

number

controllers.authelia.containers.app.env.AUTHELIA_SERVER_DISABLE_HEALTHCHECK (34)

true

string, boolean

controllers.authelia.containers.app.env.AUTHELIA_TELEMETRY_METRICS_ADDRESS (34)

tcp://0.0.0.0:8080

string

controllers.authelia.containers.app.env.AUTHELIA_TELEMETRY_METRICS_ENABLED (34)

true

string, boolean

controllers.authelia.containers.app.env.AUTHELIA_THEME (34)

dark

string

controllers.authelia.containers.app.env.AUTHELIA_SERVER_ADDRESS (32)

tcp://0.0.0.0:80

string

controllers.authelia.containers.app.env.X_AUTHELIA_CONFIG (32)

/config/configuration.yaml

string

controllers.authelia.containers.app.env.X_AUTHELIA_CONFIG_FILTERS (31)

expand-env

string

controllers.authelia.containers.app.env.AUTHELIA_TOTP_ISSUER (6)

authelia.com

string

controllers.authelia.containers.app.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_ADDITIONAL_GROUPS_DN (5)

ou=groups

string

controllers.authelia.containers.app.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_ADDITIONAL_USERS_DN (5)

ou=people

string

controllers.authelia.containers.app.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_ADDRESS (5)

string

controllers.authelia.containers.app.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_BASE_DN (5)

dc=home,dc=arpa

string

controllers.authelia.containers.app.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_GROUPS_FILTER (5)

(member={dn})

string

controllers.authelia.containers.app.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_IMPLEMENTATION (5)

custom

string

controllers.authelia.containers.app.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_START_TLS (5)

false

string

controllers.authelia.containers.app.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_TIMEOUT (5)

5s

string

controllers.authelia.containers.app.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_USERS_FILTER (5)

string

controllers.authelia.containers.app.env.AUTHELIA_AUTHENTICATION_BACKEND_PASSWORD_RESET_DISABLE (5)

true

string

controllers.authelia.containers.app.env.AUTHELIA_AUTHENTICATION_BACKEND_REFRESH_INTERVAL (5)

1m

string

controllers.authelia.containers.app.env.AUTHELIA_NOTIFIER_DISABLE_STARTUP_CHECK (5)

true

string

controllers.authelia.containers.app.env.AUTHELIA_NOTIFIER_SMTP_SENDER (5)

string

controllers.authelia.containers.app.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_ATTRIBUTES_DISPLAY_NAME (4)

string

controllers.authelia.containers.app.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_ATTRIBUTES_GROUP_NAME (4)

string

controllers.authelia.containers.app.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_ATTRIBUTES_MAIL (4)

mail

string

controllers.authelia.containers.app.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_ATTRIBUTES_USERNAME (4)

uid

string

controllers.authelia.containers.app.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_USER (4)

string

controllers.authelia.containers.app.env.AUTHELIA_LOG_LEVEL (4)

debug

string

controllers.authelia.containers.app.env.AUTHELIA_NOTIFIER_SMTP_DISABLE_REQUIRE_TLS (4)

true

string

controllers.authelia.containers.app.env.AUTHELIA_DUO_API_DISABLE (3)

true

string

controllers.authelia.containers.app.env.AUTHELIA_NOTIFIER_SMTP_ADDRESS (3)

string

controllers.authelia.containers.app.env.AUTHELIA_SESSION_REDIS_DATABASE_INDEX (3)

number

controllers.authelia.containers.app.env.AUTHELIA_SESSION_REDIS_HOST (3)

string

controllers.authelia.containers.app.env.AUTHELIA_SESSION_REDIS_PASSWORD.valueFrom.secretKeyRef.key (3)

string

controllers.authelia.containers.app.env.AUTHELIA_SESSION_REDIS_PASSWORD.valueFrom.secretKeyRef.name (3)

string

controllers.authelia.containers.app.env.AUTHELIA_ACCESS_CONTROL_DEFAULT_POLICY (2)

string

controllers.authelia.containers.app.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_ATTRIBUTES_MEMBER_OF (2)

string

controllers.authelia.containers.app.env.AUTHELIA_DEFAULT_REDIRECTION_URL (2)

string

controllers.authelia.containers.app.env.AUTHELIA_NOTIFIER_SMTP_HOST (2)

string

controllers.authelia.containers.app.env.AUTHELIA_NOTIFIER_SMTP_PORT (2)

string

controllers.authelia.containers.app.env.AUTHELIA_SESSION_DOMAIN (2)

string

controllers.authelia.containers.app.env.AUTHELIA_SESSION_NAME (2)

string

controllers.authelia.containers.app.env.AUTHELIA_SESSION_REDIS_PORT (2)

number

controllers.authelia.containers.app.env.AUTHELIA_STORAGE_POSTGRES_ADDRESS.valueFrom.secretKeyRef.key (1)

string

controllers.authelia.containers.app.env.AUTHELIA_STORAGE_POSTGRES_ADDRESS.valueFrom.secretKeyRef.name (1)

string

controllers.authelia.containers.app.env.AUTHELIA_STORAGE_POSTGRES_ADDRESS (2)

string

controllers.authelia.containers.app.env.AUTHELIA_STORAGE_POSTGRES_DATABASE.valueFrom.secretKeyRef.key (1)

string

controllers.authelia.containers.app.env.AUTHELIA_STORAGE_POSTGRES_DATABASE.valueFrom.secretKeyRef.name (1)

string

controllers.authelia.containers.app.env.AUTHELIA_STORAGE_POSTGRES_DATABASE (2)

string

controllers.authelia.containers.app.env.AUTHELIA_TOTP_DISABLE (2)

boolean

controllers.authelia.containers.app.env.AUTHELIA_WEBAUTHN_DISABLE (2)

string

controllers.authelia.containers.app.env.CLUSTER_CIDR (2)

string

controllers.authelia.containers.app.env.HOME_CIDR (2)

string

controllers.authelia.containers.app.env.NODE_CIDR (2)

string

controllers.authelia.containers.app.env.TZ (2)

string

controllers.authelia.containers.app.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_DISPLAY_NAME_ATTRIBUTE (1)

string

controllers.authelia.containers.app.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_GROUP_NAME_ATTRIBUTE (1)

string

controllers.authelia.containers.app.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_MAIL_ATTRIBUTE (1)

string

controllers.authelia.containers.app.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_PASSWORD.valueFrom.secretKeyRef.key (1)

string

controllers.authelia.containers.app.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_PASSWORD.valueFrom.secretKeyRef.name (1)

string

controllers.authelia.containers.app.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_URL (1)

string

controllers.authelia.containers.app.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_USERNAME_ATTRIBUTE (1)

string

controllers.authelia.containers.app.env.AUTHELIA_CERTIFICATES_DIRECTORY (1)

string

controllers.authelia.containers.app.env.AUTHELIA_IDENTITY_PROVIDERS_OIDC_ISSUER_PRIVATE_KEY_FILE (1)

string

controllers.authelia.containers.app.env.AUTHELIA_SERVER_PORT (1)

number

controllers.authelia.containers.app.env.AUTHELIA_STORAGE_POSTGRES_PASSWORD.valueFrom.secretKeyRef.key (1)

string

controllers.authelia.containers.app.env.AUTHELIA_STORAGE_POSTGRES_PASSWORD.valueFrom.secretKeyRef.name (1)

string

controllers.authelia.containers.app.env.AUTHELIA_STORAGE_POSTGRES_USERNAME.valueFrom.secretKeyRef.key (1)

string

controllers.authelia.containers.app.env.AUTHELIA_STORAGE_POSTGRES_USERNAME.valueFrom.secretKeyRef.name (1)

string

controllers.authelia.containers.app.env.DOMAIN_NAME (1)

string

controllers.authelia.containers.app.env.PRIVATE_DOMAIN (1)

string

controllers.authelia.containers.app.env.PUBLIC_DOMAIN (1)

string

controllers.authelia.containers.app.env.SECRET_DOMAIN (1)

string

controllers.authelia.containers.app.env.SECRET_EXTERNAL_DOMAIN (1)

string

controllers.authelia.containers.app.env.SECRET_INTERNAL_DOMAIN (1)

string

controllers.authelia.containers.app.resources.limits.memory (34)

128Mi

string

controllers.authelia.containers.app.resources.limits.cpu (1)

number

controllers.authelia.containers.app.resources.requests.cpu (34)

10m

string

controllers.authelia.containers.app.resources.requests.memory (14)

32Mi

string

controllers.authelia.containers.app.envFrom[].secretRef.name (32)

authelia-secret

string

controllers.authelia.containers.app.securityContext.allowPrivilegeEscalation (29)

false

boolean

controllers.authelia.containers.app.securityContext.readOnlyRootFilesystem (29)

true

boolean

controllers.authelia.containers.app.securityContext.capabilities.drop[] (27)

- ALL

string

controllers.authelia.containers.app.securityContext.drop[] (2)

string

controllers.authelia.containers.app.args[] (5)

- --config
- /config/configuration.yaml
- --config.experimental.filters
- expand-env

string

controllers.authelia.containers.main.env.AUTHELIA_STORAGE_POSTGRES_ADDRESS (2)

string

controllers.authelia.containers.main.env.AUTHELIA_STORAGE_POSTGRES_DATABASE.valueFrom.secretKeyRef.key (2)

string

controllers.authelia.containers.main.env.AUTHELIA_STORAGE_POSTGRES_DATABASE.valueFrom.secretKeyRef.name (2)

string

controllers.authelia.containers.main.env.AUTHELIA_STORAGE_POSTGRES_PASSWORD.valueFrom.secretKeyRef.key (2)

string

controllers.authelia.containers.main.env.AUTHELIA_STORAGE_POSTGRES_PASSWORD.valueFrom.secretKeyRef.name (2)

string

controllers.authelia.containers.main.env.AUTHELIA_STORAGE_POSTGRES_USERNAME.valueFrom.secretKeyRef.key (2)

string

controllers.authelia.containers.main.env.AUTHELIA_STORAGE_POSTGRES_USERNAME.valueFrom.secretKeyRef.name (2)

string

controllers.authelia.containers.main.env.X_AUTHELIA_CONFIG (2)

string

controllers.authelia.containers.main.env.X_AUTHELIA_CONFIG_FILTERS (2)

string

controllers.authelia.containers.main.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_BASE_DN.valueFrom.secretKeyRef.key (1)

string

controllers.authelia.containers.main.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_BASE_DN.valueFrom.secretKeyRef.name (1)

string

controllers.authelia.containers.main.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_PASSWORD.valueFrom.secretKeyRef.key (1)

string

controllers.authelia.containers.main.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_PASSWORD.valueFrom.secretKeyRef.name (1)

string

controllers.authelia.containers.main.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_USER.valueFrom.secretKeyRef.key (1)

string

controllers.authelia.containers.main.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_USER.valueFrom.secretKeyRef.name (1)

string

controllers.authelia.containers.main.env.AUTHELIA_NOTIFIER_SMTP_PASSWORD.valueFrom.secretKeyRef.key (1)

string

controllers.authelia.containers.main.env.AUTHELIA_NOTIFIER_SMTP_PASSWORD.valueFrom.secretKeyRef.name (1)

string

controllers.authelia.containers.main.envFrom[].secretRef.name (2)

string

controllers.authelia.containers.main.image.repository (2)

string

controllers.authelia.containers.main.image.tag (2)

string

controllers.authelia.containers.main.probes.liveness.enabled (2)

boolean

controllers.authelia.containers.main.probes.readiness.enabled (2)

boolean

controllers.authelia.containers.main.probes.startup.enabled (2)

boolean

controllers.authelia.containers.main.probes.startup.spec.failureThreshold (2)

number

controllers.authelia.containers.main.probes.startup.spec.periodSeconds (2)

number

controllers.authelia.containers.main.resources.requests.cpu (2)

string

controllers.authelia.containers.main.resources.requests.memory (2)

string

controllers.authelia.strategy (35)

RollingUpdate

string

controllers.authelia.replicas (33)

number

controllers.authelia.annotations."reloader.stakater.com/auto" (29)

true

string

controllers.authelia.annotations."secret.reloader.stakater.com/reload" (4)

string

controllers.authelia.initContainers.init-db.image.repository (23)

ghcr.io/onedr0p/postgres-init

string

controllers.authelia.initContainers.init-db.image.tag (23)

number, string

controllers.authelia.initContainers.init-db.image.pullPolicy (3)

IfNotPresent

string

controllers.authelia.initContainers.init-db.envFrom[].secretRef.name (21)

authelia-secret

string

controllers.authelia.initContainers.init-db.env.INIT_POSTGRES_DBNAME (2)

string

controllers.authelia.initContainers.init-db.env.INIT_POSTGRES_HOST (2)

string

controllers.authelia.initContainers.init-db.env.INIT_POSTGRES_PASS.valueFrom.secretKeyRef.key (2)

string

controllers.authelia.initContainers.init-db.env.INIT_POSTGRES_PASS.valueFrom.secretKeyRef.name (2)

string

controllers.authelia.initContainers.init-db.env.INIT_POSTGRES_SUPER_PASS.valueFrom.secretKeyRef.key (2)

string

controllers.authelia.initContainers.init-db.env.INIT_POSTGRES_SUPER_PASS.valueFrom.secretKeyRef.name (2)

string

controllers.authelia.initContainers.init-db.env.INIT_POSTGRES_USER.valueFrom.secretKeyRef.key (2)

string

controllers.authelia.initContainers.init-db.env.INIT_POSTGRES_USER.valueFrom.secretKeyRef.name (2)

string

controllers.authelia.initContainers.01-init-db.envFrom[].secretRef.name (2)

string

controllers.authelia.initContainers.01-init-db.image.repository (2)

string

controllers.authelia.initContainers.01-init-db.image.tag (2)

string

controllers.authelia.pod.topologySpreadConstraints[].labelSelector.matchLabels."app.kubernetes.io/name" (17)

authelia

string

controllers.authelia.pod.topologySpreadConstraints[].maxSkew (17)

number

controllers.authelia.pod.topologySpreadConstraints[].topologyKey (17)

kubernetes.io/hostname

string

controllers.authelia.pod.topologySpreadConstraints[].whenUnsatisfiable (17)

DoNotSchedule

string

controllers.authelia.pod.securityContext.runAsGroup (16)

number

controllers.authelia.pod.securityContext.runAsUser (16)

number

controllers.authelia.pod.securityContext.runAsNonRoot (13)

true

boolean

controllers.authelia.pod.securityContext.fsGroup (3)

number

controllers.authelia.pod.securityContext.fsGroupChangePolicy (3)

OnRootMismatch

string

controllers.authelia.pod.securityContext.seccompProfile.type (1)

string

controllers.authelia.pod.enableServiceLinks (6)

false

boolean

controllers.authelia.pod.labels."auth.home.arpa/ldap" (2)

string

controllers.authelia.pod.labels."db.home.arpa/dragonfly" (2)

string

controllers.authelia.pod.labels."db.home.arpa/pg" (2)

string

controllers.authelia.pod.labels."egress.home.arpa/kubedns" (2)

string

controllers.authelia.pod.labels."ingress.home.arpa/nginx-internal" (2)

string

controllers.authelia.pod.labels."mail.home.arpa/smtp-relay" (2)

string

controllers.authelia.pod.labels."monitoring.home.arpa/prometheus" (2)

string

controllers.authelia.pod.annotations."configmap.reloader.stakater.com/reload" (1)

string

controllers.authelia.pod.annotations."secret.reloader.stakater.com/reload" (1)

string

controllers.main.annotations."reloader.stakater.com/auto" (9)

true

string

controllers.main.containers.main.image.repository (9)

ghcr.io/authelia/authelia

string

controllers.main.containers.main.image.tag (9)

v4.38.0-beta3@sha256:b48ae4d0ed9d1eee76efe382df60928bae550ec19e5663858dde6dc5f41cf285

string

controllers.main.containers.main.resources.limits.memory (9)

128Mi

string

controllers.main.containers.main.resources.requests.cpu (9)

10m

string

controllers.main.containers.main.resources.requests.memory (6)

string

controllers.main.containers.main.envFrom[].secretRef.name (8)

authelia-secret

string

controllers.main.containers.main.probes.liveness.custom (8)

true

boolean

controllers.main.containers.main.probes.liveness.enabled (8)

true

boolean

controllers.main.containers.main.probes.liveness.spec.failureThreshold (8)

number

controllers.main.containers.main.probes.liveness.spec.httpGet.path (8)

/api/health

string

controllers.main.containers.main.probes.liveness.spec.httpGet.port (8)

number

controllers.main.containers.main.probes.liveness.spec.initialDelaySeconds (8)

number

controllers.main.containers.main.probes.liveness.spec.periodSeconds (8)

number

controllers.main.containers.main.probes.liveness.spec.timeoutSeconds (8)

number

controllers.main.containers.main.probes.readiness.custom (8)

true

boolean

controllers.main.containers.main.probes.readiness.enabled (8)

true

boolean

controllers.main.containers.main.probes.readiness.spec.failureThreshold (8)

number

controllers.main.containers.main.probes.readiness.spec.httpGet.path (8)

/api/health

string

controllers.main.containers.main.probes.readiness.spec.httpGet.port (8)

number

controllers.main.containers.main.probes.readiness.spec.initialDelaySeconds (8)

number

controllers.main.containers.main.probes.readiness.spec.periodSeconds (8)

number

controllers.main.containers.main.probes.readiness.spec.timeoutSeconds (8)

number

controllers.main.containers.main.probes.startup.enabled (8)

false

boolean

controllers.main.containers.main.env.AUTHELIA_SERVER_ADDRESS (7)

tcp://0.0.0.0:80

string

controllers.main.containers.main.env.AUTHELIA_SERVER_DISABLE_HEALTHCHECK (7)

true

boolean, string

controllers.main.containers.main.env.AUTHELIA_TELEMETRY_METRICS_ADDRESS (7)

tcp://0.0.0.0:8080

string

controllers.main.containers.main.env.AUTHELIA_TELEMETRY_METRICS_ENABLED (7)

true

boolean, string

controllers.main.containers.main.env.AUTHELIA_THEME (7)

dark

string

controllers.main.containers.main.env.X_AUTHELIA_CONFIG (7)

/config/configuration.yaml

string

controllers.main.containers.main.env.X_AUTHELIA_CONFIG_FILTERS (7)

expand-env

string

controllers.main.containers.main.env.AUTHELIA_SERVER_BUFFERS_READ (1)

number

controllers.main.containers.main.env.AUTHELIA_SERVER_BUFFERS_WRITE (1)

number

controllers.main.containers.main.env.AUTHELIA_SERVER_PORT (1)

number

controllers.main.containers.main.env.AUTHELIA_SESSION_REDIS_DATABASE_INDEX (1)

string

controllers.main.containers.main.env.AUTHELIA_SESSION_REDIS_HOST (1)

string

controllers.main.containers.main.env.AUTHELIA_SESSION_REDIS_PASSWORD.valueFrom.secretKeyRef.key (1)

string

controllers.main.containers.main.env.AUTHELIA_SESSION_REDIS_PASSWORD.valueFrom.secretKeyRef.name (1)

string

controllers.main.containers.main.env.AUTHELIA_SESSION_REDIS_PORT (1)

string

controllers.main.containers.main.env.AUTHELIA_STORAGE_POSTGRES_DATABASE.valueFrom.secretKeyRef.key (1)

string

controllers.main.containers.main.env.AUTHELIA_STORAGE_POSTGRES_DATABASE.valueFrom.secretKeyRef.name (1)

string

controllers.main.containers.main.env.AUTHELIA_STORAGE_POSTGRES_HOST.valueFrom.secretKeyRef.key (1)

string

controllers.main.containers.main.env.AUTHELIA_STORAGE_POSTGRES_HOST.valueFrom.secretKeyRef.name (1)

string

controllers.main.containers.main.env.AUTHELIA_STORAGE_POSTGRES_PASSWORD.valueFrom.secretKeyRef.key (1)

string

controllers.main.containers.main.env.AUTHELIA_STORAGE_POSTGRES_PASSWORD.valueFrom.secretKeyRef.name (1)

string

controllers.main.containers.main.env.AUTHELIA_STORAGE_POSTGRES_USERNAME.valueFrom.secretKeyRef.key (1)

string

controllers.main.containers.main.env.AUTHELIA_STORAGE_POSTGRES_USERNAME.valueFrom.secretKeyRef.name (1)

string

controllers.main.containers.main.env.TZ (1)

string

controllers.main.containers.main.securityContext.allowPrivilegeEscalation (6)

false

boolean

controllers.main.containers.main.securityContext.capabilities.drop[] (6)

- ALL

string

controllers.main.containers.main.securityContext.readOnlyRootFilesystem (6)

true

boolean

controllers.main.containers.main.args[] (2)

string

controllers.main.containers.main.command[] (1)

string

controllers.main.pod.enableServiceLinks (9)

false

boolean

controllers.main.pod.topologySpreadConstraints[].labelSelector.matchLabels."app.kubernetes.io/name" (8)

authelia

string

controllers.main.pod.topologySpreadConstraints[].maxSkew (8)

number

controllers.main.pod.topologySpreadConstraints[].topologyKey (8)

kubernetes.io/hostname

string

controllers.main.pod.topologySpreadConstraints[].whenUnsatisfiable (8)

DoNotSchedule

string

controllers.main.pod.securityContext.runAsGroup (7)

number

controllers.main.pod.securityContext.runAsUser (7)

number

controllers.main.pod.securityContext.runAsNonRoot (6)

true

boolean

controllers.main.replicas (8)

number

controllers.main.initContainers.init-db.envFrom[].secretRef.name (7)

authelia-secret

string

controllers.main.initContainers.init-db.image.repository (7)

ghcr.io/onedr0p/postgres-init

string

controllers.main.initContainers.init-db.image.tag (7)

number

controllers.main.initContainers.init-db.image.pullPolicy (1)

string

controllers.main.strategy (7)

RollingUpdate

string

service.app.controller (35)

authelia

string

service.app.ports.http.port (35)

number

service.app.ports.http.primary (4)

true

boolean

service.app.ports.http.enabled (1)

boolean

service.app.ports.metrics.port (34)

number

service.app.ports.metrics.enabled (3)

true

boolean

service.app.ipFamilyPolicy (2)

string

service.app.annotations."external-dns.alpha.kubernetes.io/hostname" (1)

string

service.app.annotations."lbipam.cilium.io/ips" (1)

string

service.app.enabled (1)

boolean

service.app.externalTrafficPolicy (1)

string

service.app.type (1)

string

service.main.ports.http.port (18)

number

service.main.ports.metrics.port (15)

number

service.main.ports.metrics.enabled (8)

true

boolean

service.main.controller (4)

string

ingress.app.hosts[].host (32)

auth.${SECRET_DOMAIN}

string

ingress.app.hosts[].paths[].path (32)

string

ingress.app.hosts[].paths[].service.identifier (32)

app

string

ingress.app.hosts[].paths[].service.port (32)

http

string

ingress.app.hosts[].paths[].pathType (2)

string

ingress.app.className (31)

external

string

ingress.app.annotations."nginx.ingress.kubernetes.io/configuration-snippet" (28)

add_header Cache-Control "no-store";
add_header Pragma "no-cache";
add_header X-Frame-Options "SAMEORIGIN";
add_header X-XSS-Protection "1; mode=block";

string

ingress.app.annotations."external-dns.alpha.kubernetes.io/target" (26)

external.${SECRET_DOMAIN}

string

ingress.app.annotations."hajimari.io/icon" (8)

mdi:shield-account

string

ingress.app.annotations."traefik.ingress.kubernetes.io/router.middlewares" (3)

string

ingress.app.annotations."external-dns.alpha.kubernetes.io/enabled" (2)

string

ingress.app.annotations."gatus.io/path" (2)

string

ingress.app.annotations."gethomepage.dev/enabled" (2)

string

ingress.app.annotations."gethomepage.dev/group" (2)

string

ingress.app.annotations."gethomepage.dev/icon" (2)

string

ingress.app.annotations."gethomepage.dev/name" (2)

string

ingress.app.annotations."hajimari.io/url" (2)

string

ingress.app.annotations."traefik.ingress.kubernetes.io/router.entrypoints" (2)

string

ingress.app.annotations."auth.home.arpa/disabled" (1)

string

ingress.app.annotations."gethomepage.dev/pod-selector" (1)

string

ingress.app.annotations."hajimari.io/appName" (1)

string

ingress.app.annotations."hajimari.io/enable" (1)

string

ingress.app.annotations."hajimari.io/instance" (1)

string

ingress.app.annotations."nginx.ingress.kubernetes.io/cors-allow-origin" (1)

string

ingress.app.annotations."nginx.ingress.kubernetes.io/enable-cors" (1)

string

ingress.app.tls[].hosts[] (13)

- auth.${SECRET_DOMAIN}

string

ingress.app.tls[].secretName (1)

string

ingress.app.enabled (5)

true

boolean

ingress.main.enabled (20)

true

boolean

ingress.main.hosts[].host (20)

auth.${SECRET_DOMAIN}

string

ingress.main.hosts[].paths[].path (20)

string

ingress.main.hosts[].paths[].service.port (13)

http

string, number

ingress.main.hosts[].paths[].service.name (7)

main

string

ingress.main.hosts[].paths[].service.identifier (6)

main

string

ingress.main.hosts[].paths[].pathType (11)

Prefix

string

ingress.main.tls[].hosts[] (18)

- auth.${SECRET_DOMAIN}

string

ingress.main.tls[].secretName (3)

string

ingress.main.annotations."nginx.ingress.kubernetes.io/configuration-snippet" (17)

add_header Cache-Control "no-store";
add_header Pragma "no-cache";
add_header X-Frame-Options "SAMEORIGIN";
add_header X-XSS-Protection "1; mode=block";

string

ingress.main.annotations."external-dns.alpha.kubernetes.io/target" (12)

external.${SECRET_DOMAIN}

string

ingress.main.annotations."hajimari.io/icon" (7)

mdi:shield-account

string

ingress.main.annotations."hajimari.io/group" (4)

string

ingress.main.annotations."external-dns.home.arpa/enabled" (3)

true

string

ingress.main.annotations."hajimari.io/enable" (3)

true

string

ingress.main.annotations."hajimari.io/appName" (2)

string

ingress.main.annotations."cert-manager.io/cluster-issuer" (1)

string

ingress.main.annotations."external-dns.alpha.kubernetes.io/cloudflare-proxied" (1)

string

ingress.main.annotations."external.home.arpa/enabled" (1)

string

ingress.main.annotations."gatus.io/enabled" (1)

string

ingress.main.annotations."gatus.io/path" (1)

string

ingress.main.annotations."hajimari.io/url" (1)

string

ingress.main.annotations."policy-control.aumer.io/gatus-dns" (1)

string

ingress.main.annotations."policy-control.aumer.io/gatus-generate" (1)

string

ingress.main.className (13)

nginx

string

ingress.main.ingressClassName (7)

string

ingress.nginx.annotations."external-dns.alpha.kubernetes.io/target" (1)

string

ingress.nginx.annotations."nginx.ingress.kubernetes.io/configuration-snippet" (1)

string

ingress.nginx.className (1)

string

ingress.nginx.enabled (1)

boolean

ingress.nginx.hosts[].host (1)

string

ingress.nginx.hosts[].paths[].path (1)

string

ingress.nginx.hosts[].paths[].service.identifier (1)

string

ingress.nginx.hosts[].paths[].service.port (1)

string

serviceMonitor.app.endpoints[].port (30)

metrics

string

serviceMonitor.app.endpoints[].interval (27)

1m

string

serviceMonitor.app.endpoints[].path (27)

/metrics

string

serviceMonitor.app.endpoints[].scheme (27)

http

string

serviceMonitor.app.endpoints[].scrapeTimeout (27)

10s

string

serviceMonitor.app.serviceName (30)

authelia

string

serviceMonitor.app.enabled (5)

true

boolean

serviceMonitor.main.enabled (10)

true

boolean

serviceMonitor.main.endpoints[].interval (10)

1m

string

serviceMonitor.main.endpoints[].path (10)

/metrics

string

serviceMonitor.main.endpoints[].port (10)

metrics

string

serviceMonitor.main.endpoints[].scheme (10)

http

string

serviceMonitor.main.endpoints[].scrapeTimeout (10)

10s

string

serviceMonitor.main.serviceName (2)

string

defaultPodOptions.securityContext.runAsGroup (17)

number

defaultPodOptions.securityContext.runAsUser (17)

number

defaultPodOptions.securityContext.runAsNonRoot (16)

true

boolean

defaultPodOptions.securityContext.seccompProfile.type (14)

RuntimeDefault

string

defaultPodOptions.securityContext.fsGroup (2)

number

defaultPodOptions.securityContext.fsGroupChangePolicy (1)

string

defaultPodOptions.topologySpreadConstraints[].labelSelector.matchLabels."app.kubernetes.io/name" (15)

authelia

string

defaultPodOptions.topologySpreadConstraints[].maxSkew (15)

number

defaultPodOptions.topologySpreadConstraints[].topologyKey (15)

kubernetes.io/hostname

string

defaultPodOptions.topologySpreadConstraints[].whenUnsatisfiable (15)

DoNotSchedule

string

defaultPodOptions.enableServiceLinks (3)

false

boolean

defaultPodOptions.automountServiceAccountToken (1)

boolean

controller.replicas (7)

number

controller.strategy (7)

RollingUpdate

string

controller.annotations."reloader.stakater.com/auto" (4)

true

string

controller.rollingUpdate.surge (2)

number

controller.rollingUpdate.unavailable (1)

number

enableServiceLinks (7)

false

boolean

envFrom[].secretRef.name (7)

authelia-secret

string

image.repository (7)

ghcr.io/authelia/authelia

string

image.tag (7)

string

resources.limits.memory (7)

200Mi

string

resources.requests.cpu (7)

5m

string

resources.requests.memory (7)

10Mi

string

podSecurityContext.fsGroup (6)

number

podSecurityContext.fsGroupChangePolicy (6)

OnRootMismatch

string

podSecurityContext.runAsGroup (6)

number

podSecurityContext.runAsUser (6)

number

topologySpreadConstraints[].labelSelector.matchLabels."app.kubernetes.io/name" (6)

authelia

string

topologySpreadConstraints[].maxSkew (6)

number

topologySpreadConstraints[].topologyKey (6)

kubernetes.io/hostname

string

topologySpreadConstraints[].whenUnsatisfiable (6)

DoNotSchedule

string

podAnnotations."configmap.reloader.stakater.com/reload" (4)

authelia

string

podAnnotations."secret.reloader.stakater.com/reload" (4)

authelia

string

args[] (3)

string

env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_ADDITIONAL_GROUPS_DN (3)

ou=groups

string

env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_ADDITIONAL_USERS_DN (3)

ou=people

string

env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_BASE_DN (3)

string

env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_GROUPS_FILTER (3)

(member={dn})

string

env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_IMPLEMENTATION (3)

custom

string

env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_TIMEOUT (3)

5s

string

env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_USERS_FILTER (3)

(&({username_attribute}={input})(objectClass=person))

string

env.AUTHELIA_AUTHENTICATION_BACKEND_PASSWORD_RESET_DISABLE (3)

true

string

env.AUTHELIA_DEFAULT_REDIRECTION_URL (3)

string

env.AUTHELIA_DUO_API_DISABLE (3)

true

string

env.AUTHELIA_LOG_LEVEL (3)

string

env.AUTHELIA_SERVER_DISABLE_HEALTHCHECK (3)

true

string

env.AUTHELIA_SESSION_DOMAIN (3)

string

env.AUTHELIA_TELEMETRY_METRICS_ADDRESS (3)

tcp://0.0.0.0:8080

string

env.AUTHELIA_TELEMETRY_METRICS_ENABLED (3)

true

string

env.AUTHELIA_THEME (3)

string

env.AUTHELIA_TOTP_ISSUER (3)

authelia.com

string

env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_DISPLAY_NAME_ATTRIBUTE (2)

string

env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_GROUP_NAME_ATTRIBUTE (2)

string

env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_MAIL_ATTRIBUTE (2)

string

env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_START_TLS (2)

string

env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_URL (2)

string

env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_USERNAME_ATTRIBUTE (2)

string

env.AUTHELIA_AUTHENTICATION_BACKEND_REFRESH_INTERVAL (2)

string

env.AUTHELIA_SERVER_PORT (2)

number

env.AUTHELIA_SESSION_NAME (2)

string

env.AUTHELIA_STORAGE_LOCAL_PATH (2)

string

env.AUTHELIA_WEBAUTHN_DISABLE (2)

string

env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_ADDRESS (1)

string

env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_ATTRIBUTES_DISPLAY_NAME (1)

string

env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_ATTRIBUTES_GROUP_NAME (1)

string

env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_ATTRIBUTES_MAIL (1)

string

env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_ATTRIBUTES_USERNAME (1)

string

env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_PASSWORD.valueFrom.secretKeyRef.key (1)

string

env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_PASSWORD.valueFrom.secretKeyRef.name (1)

string

env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_USER (1)

string

env.AUTHELIA_NOTIFIER_SMTP_ADDRESS (1)

string

env.AUTHELIA_NOTIFIER_SMTP_HOST (1)

string

env.AUTHELIA_NOTIFIER_SMTP_PORT (1)

string

env.AUTHELIA_NOTIFIER_SMTP_SENDER (1)

string

env.AUTHELIA_NOTIFIER_SMTP_USERNAME (1)

string

env.AUTHELIA_SERVER_ADDRESS (1)

string

env.AUTHELIA_SESSION_REDIS_DATABASE_INDEX (1)

number

env.AUTHELIA_SESSION_REDIS_HOST (1)

string

env.AUTHELIA_STORAGE_POSTGRES_DATABASE.valueFrom.secretKeyRef.key (1)

string

env.AUTHELIA_STORAGE_POSTGRES_DATABASE.valueFrom.secretKeyRef.name (1)

string

env.AUTHELIA_STORAGE_POSTGRES_HOST.valueFrom.secretKeyRef.key (1)

string

env.AUTHELIA_STORAGE_POSTGRES_HOST.valueFrom.secretKeyRef.name (1)

string

env.AUTHELIA_STORAGE_POSTGRES_PASSWORD.valueFrom.secretKeyRef.key (1)

string

env.AUTHELIA_STORAGE_POSTGRES_PASSWORD.valueFrom.secretKeyRef.name (1)

string

env.AUTHELIA_STORAGE_POSTGRES_USERNAME.valueFrom.secretKeyRef.key (1)

string

env.AUTHELIA_STORAGE_POSTGRES_USERNAME.valueFrom.secretKeyRef.name (1)

string

env.SECRET_DOMAIN (1)

string

probes.liveness.custom (3)

true

boolean

probes.liveness.enabled (3)

true

boolean

probes.liveness.spec.failureThreshold (3)

number

probes.liveness.spec.httpGet.path (3)

/api/health

string

probes.liveness.spec.httpGet.port (3)

number

probes.liveness.spec.initialDelaySeconds (3)

number

probes.liveness.spec.periodSeconds (3)

number

probes.liveness.spec.timeoutSeconds (3)

number

probes.readiness.custom (3)

true

boolean

probes.readiness.enabled (3)

true

boolean

probes.readiness.spec.failureThreshold (3)

number

probes.readiness.spec.httpGet.path (3)

/api/health

string

probes.readiness.spec.httpGet.port (3)

number

probes.readiness.spec.initialDelaySeconds (3)

number

probes.readiness.spec.periodSeconds (3)

number

probes.readiness.spec.timeoutSeconds (3)

number

probes.startup.enabled (3)

boolean

probes.startup.custom (2)

boolean

probes.startup.spec.failureThreshold (2)

number

probes.startup.spec.httpGet.path (2)

string

probes.startup.spec.httpGet.port (2)

number

probes.startup.spec.periodSeconds (2)

number

probes.startup.spec.successThreshold (2)

number

probes.startup.spec.timeoutSeconds (2)

number

global.nameOverride (1)

string

initContainers.init-db.envFrom[].secretRef.name (1)

string

initContainers.init-db.image (1)

string

initContainers.init-db.imagePullPolicy (1)

string