authelia helm release

authelia helm

Authelia is an open-source authentication and authorization server and portal fulfilling the identity and access management (IAM) role of information security in providing multi-factor authentication and single sign-on (SSO) for your applications via a web portal. It acts as a companion for common reverse proxies.

Install

Install with:

helm repo add bjw-s oci://ghcr.io/bjw-s/helm/
helm install authelia bjw-s/app-template -f values.yaml

Examples

See examples from other people.

Major version:

Filter repos who also have:

Top Repositories (3 out of 20)

Name	Repo	Stars	Version	Timestamp
authelia	Diaoul/home-ops	74	3.7.3	a month ago
authelia	brettinternet/homeops	246	3.5.1	8 months ago
authelia	toboshii/home-ops	352	0.2.2	a year ago

Name

Repo

Stars

Version

Timestamp

authelia

Diaoul/home-ops

3.7.3

a month ago

authelia

brettinternet/homeops

246

3.5.1

8 months ago

authelia

toboshii/home-ops

352

0.2.2

a year ago

Values

See the most popular values for this chart:

Key	Types
persistence.config.name (20) `authelia-configmap`	string
persistence.config.type (20) `configMap`	string
persistence.config.globalMounts[].path (18) `/config/configuration.yaml`	string
persistence.config.globalMounts[].readOnly (18) `true`	boolean
persistence.config.globalMounts[].subPath (17) `configuration.yaml`	string
persistence.config.enabled (10) `true`	boolean
persistence.config.advancedMounts.authelia.app[].path (1) `/config/configuration.yaml`	string
persistence.config.advancedMounts.authelia.app[].readOnly (1) `true`	boolean
persistence.config.advancedMounts.authelia.app[].subPath (1) `configuration.yaml`	string
persistence.config.mountPath (1) `/config/configuration.yml`	string
persistence.config.readOnly (1) `false`	boolean
persistence.config.subPath (1) `configuration.yml`	string
persistence.secret-files.enabled (2) `true`	boolean
persistence.secret-files.name (2) `authelia-files`	string
persistence.secret-files.type (2) `secret`	string
persistence.secret-files.advancedMounts.authelia.app[].path (1) `/app/secrets`	string
persistence.secret-files.globalMounts[].path (1) `/config/secret`	string
persistence.data.existingClaim (1) `${PVC_NAME}`	string
persistence.data.globalMounts[].path (1) `/data`	string
persistence.secrets.globalMounts[].path (1) `/config/secrets`	string
persistence.secrets.globalMounts[].readOnly (1) `true`	boolean
persistence.secrets.name (1) `authelia`	string
persistence.secrets.type (1) `secret`	string
persistence.trusted-certs.advancedMounts.authelia.app[].path (1) `/trusted_certs/letsencrypt-certs.pem`	string
persistence.trusted-certs.advancedMounts.authelia.app[].readOnly (1) `true`	boolean
persistence.trusted-certs.advancedMounts.authelia.app[].subPath (1) `letsencrypt-certs.pem`	string
persistence.trusted-certs.name (1) `letsencrypt-certs`	string
persistence.trusted-certs.type (1) `configMap`	string
persistence.users.globalMounts[].path (1) `/config/users.yaml`	string
persistence.users.globalMounts[].readOnly (1) `true`	boolean
persistence.users.globalMounts[].subPath (1) `users.yaml`	string
persistence.users.name (1) `authelia-users-secret`	string
persistence.users.type (1) `secret`	string
controllers.authelia.annotations."reloader.stakater.com/auto" (15) `true`	string
controllers.authelia.containers.app.image.repository (14) `ghcr.io/authelia/authelia`	string
controllers.authelia.containers.app.image.tag (14) `4.39.4@sha256:64b356c30fd817817a4baafb4dbc0f9f8702e46b49e1edb92ff42e19e487b517`	string
controllers.authelia.containers.app.probes.liveness.custom (14) `true`	boolean
controllers.authelia.containers.app.probes.liveness.enabled (14) `true`	boolean
controllers.authelia.containers.app.probes.liveness.spec.failureThreshold (14) `3`	number
controllers.authelia.containers.app.probes.liveness.spec.httpGet.path (14) `/api/health`	string
controllers.authelia.containers.app.probes.liveness.spec.httpGet.port (14) `80`	number
controllers.authelia.containers.app.probes.liveness.spec.initialDelaySeconds (14) `0`	number
controllers.authelia.containers.app.probes.liveness.spec.periodSeconds (14) `10`	number
controllers.authelia.containers.app.probes.liveness.spec.timeoutSeconds (14) `1`	number
controllers.authelia.containers.app.probes.readiness.custom (14) `true`	boolean
controllers.authelia.containers.app.probes.readiness.enabled (14) `true`	boolean
controllers.authelia.containers.app.probes.readiness.spec.failureThreshold (14) `3`	number
controllers.authelia.containers.app.probes.readiness.spec.httpGet.path (14) `/api/health`	string
controllers.authelia.containers.app.probes.readiness.spec.httpGet.port (14) `80`	number
controllers.authelia.containers.app.probes.readiness.spec.initialDelaySeconds (14) `0`	number
controllers.authelia.containers.app.probes.readiness.spec.periodSeconds (14) `10`	number
controllers.authelia.containers.app.probes.readiness.spec.timeoutSeconds (14) `1`	number
controllers.authelia.containers.app.probes.startup.enabled (6) `false`	boolean
controllers.authelia.containers.app.resources.limits.memory (14) `128Mi`	string
controllers.authelia.containers.app.resources.requests.cpu (14) `10m`	string
controllers.authelia.containers.app.resources.requests.memory (8) `32Mi`	string
controllers.authelia.containers.app.env.AUTHELIA_SERVER_DISABLE_HEALTHCHECK (13) `true`	string
controllers.authelia.containers.app.env.AUTHELIA_TELEMETRY_METRICS_ADDRESS (13) `tcp://0.0.0.0:8080`	string
controllers.authelia.containers.app.env.AUTHELIA_TELEMETRY_METRICS_ENABLED (13) `true`	string
controllers.authelia.containers.app.env.AUTHELIA_THEME (13) `dark`	string
controllers.authelia.containers.app.env.AUTHELIA_SERVER_ADDRESS (11) `tcp://0.0.0.0:80`	string
controllers.authelia.containers.app.env.X_AUTHELIA_CONFIG (11) `/config/configuration.yaml`	string
controllers.authelia.containers.app.env.X_AUTHELIA_CONFIG_FILTERS (11) `template`	string
controllers.authelia.containers.app.env.AUTHELIA_LOG_LEVEL (4) `debug`	string
controllers.authelia.containers.app.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_ADDITIONAL_GROUPS_DN (3) `ou=groups`	string
controllers.authelia.containers.app.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_ADDITIONAL_USERS_DN (3) `ou=people`	string
controllers.authelia.containers.app.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_BASE_DN (3) `dc=home,dc=arpa`	string
controllers.authelia.containers.app.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_GROUPS_FILTER (3) `(member={dn})`	string
controllers.authelia.containers.app.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_IMPLEMENTATION (3) `custom`	string
controllers.authelia.containers.app.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_START_TLS (3) `false`	string
controllers.authelia.containers.app.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_TIMEOUT (3) `5s`	string
controllers.authelia.containers.app.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_USER (3) `uid=admin,ou=people,dc=home,dc=arpa`	string
controllers.authelia.containers.app.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_USERS_FILTER (3) `(&({username_attribute}={input})(objectClass=person))`	string
controllers.authelia.containers.app.env.AUTHELIA_AUTHENTICATION_BACKEND_PASSWORD_RESET_DISABLE (3) `true`	string
controllers.authelia.containers.app.env.AUTHELIA_AUTHENTICATION_BACKEND_REFRESH_INTERVAL (3) `1m`	string
controllers.authelia.containers.app.env.AUTHELIA_NOTIFIER_DISABLE_STARTUP_CHECK (3) `true`	string
controllers.authelia.containers.app.env.AUTHELIA_NOTIFIER_SMTP_SENDER (3) `Authelia <authelia@${SECRET_DOMAIN}>`	string
controllers.authelia.containers.app.env.AUTHELIA_SERVER_PORT (3) `80`	number
controllers.authelia.containers.app.env.AUTHELIA_SESSION_REDIS_DATABASE_INDEX (3) `14`	number
controllers.authelia.containers.app.env.AUTHELIA_SESSION_REDIS_HOST (3) `dragonfly.database.svc.cluster.local`	string
controllers.authelia.containers.app.env.AUTHELIA_TOTP_ISSUER (3) `authelia.com`	string
controllers.authelia.containers.app.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_ADDRESS (2) `ldap://lldap.security.svc.cluster.local:389`	string
controllers.authelia.containers.app.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_ATTRIBUTES_DISPLAY_NAME (2) `displayName`	string
controllers.authelia.containers.app.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_ATTRIBUTES_GROUP_NAME (2) `cn`	string
controllers.authelia.containers.app.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_ATTRIBUTES_MAIL (2) `mail`	string
controllers.authelia.containers.app.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_ATTRIBUTES_USERNAME (2) `uid`	string
controllers.authelia.containers.app.env.AUTHELIA_DUO_API_DISABLE (2) `true`	string
controllers.authelia.containers.app.env.AUTHELIA_NOTIFIER_SMTP_ADDRESS (2) `smtp.${SECRET_DOMAIN}:25`	string
controllers.authelia.containers.app.env.AUTHELIA_NOTIFIER_SMTP_DISABLE_REQUIRE_TLS (2) `true`	string
controllers.authelia.containers.app.env.AUTHELIA_WEBAUTHN_DISABLE (2) `false`	string
controllers.authelia.containers.app.env.TZ (2) `${TIMEZONE}`	string
controllers.authelia.containers.app.env.AUTHELIA_ACCESS_CONTROL_DEFAULT_POLICY (1) `one_factor`	string
controllers.authelia.containers.app.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_ATTRIBUTES_MEMBER_OF (1) `memberOf`	string
controllers.authelia.containers.app.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_DISPLAY_NAME_ATTRIBUTE (1) `displayName`	string
controllers.authelia.containers.app.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_GROUP_NAME_ATTRIBUTE (1) `cn`	string
controllers.authelia.containers.app.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_MAIL_ATTRIBUTE (1) `mail`	string
controllers.authelia.containers.app.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_PASSWORD_FILE (1) `/app/secrets/AUTHELIA_AUTHENTICATION_BACKEND_LDAP_PASSWORD`	string
controllers.authelia.containers.app.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_URL (1) `ldap://lldap.default.svc.cluster.local:389`	string
controllers.authelia.containers.app.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_USERNAME_ATTRIBUTE (1) `uid`	string
controllers.authelia.containers.app.env.AUTHELIA_CERTIFICATES_DIRECTORY (1) `/trusted_certs`	string
controllers.authelia.containers.app.env.AUTHELIA_DEFAULT_REDIRECTION_URL (1) `https://auth.${SECRET_DOMAIN}`	string
controllers.authelia.containers.app.env.AUTHELIA_DUO_API_INTEGRATION_KEY_FILE (1) `/app/secrets/AUTHELIA_DUO_API_INTEGRATION_KEY`	string
controllers.authelia.containers.app.env.AUTHELIA_DUO_API_SECRET_KEY_FILE (1) `/app/secrets/AUTHELIA_DUO_API_SECRET_KEY`	string
controllers.authelia.containers.app.env.AUTHELIA_IDENTITY_PROVIDERS_OIDC_HMAC_SECRET_FILE (1) `/app/secrets/AUTHELIA_IDENTITY_PROVIDERS_OIDC_HMAC_SECRET`	string
controllers.authelia.containers.app.env.AUTHELIA_NOTIFIER_SMTP_HOST (1) `${SECRET_MAIL_HOST}`	string
controllers.authelia.containers.app.env.AUTHELIA_NOTIFIER_SMTP_PASSWORD_FILE (1) `/app/secrets/AUTHELIA_NOTIFIER_SMTP_PASSWORD`	string
controllers.authelia.containers.app.env.AUTHELIA_NOTIFIER_SMTP_PORT (1) `${SECRET_MAIL_PORT}`	string
controllers.authelia.containers.app.env.AUTHELIA_SERVER_BUFFERS_READ (1) `16384`	number
controllers.authelia.containers.app.env.AUTHELIA_SERVER_BUFFERS_WRITE (1) `16384`	number
controllers.authelia.containers.app.env.AUTHELIA_SESSION_DOMAIN (1) `${SECRET_DOMAIN}`	string
controllers.authelia.containers.app.env.AUTHELIA_SESSION_NAME (1) `authelia-home-cluster`	string
controllers.authelia.containers.app.env.AUTHELIA_SESSION_REDIS_PASSWORD.valueFrom.secretKeyRef.key (1) `password`	string
controllers.authelia.containers.app.env.AUTHELIA_SESSION_REDIS_PASSWORD.valueFrom.secretKeyRef.name (1) `dragonfly-secret`	string
controllers.authelia.containers.app.env.AUTHELIA_SESSION_REDIS_PORT (1) `6379`	number
controllers.authelia.containers.app.env.AUTHELIA_SESSION_SECRET_FILE (1) `/app/secrets/AUTHELIA_SESSION_SECRET`	string
controllers.authelia.containers.app.env.AUTHELIA_STORAGE_ENCRYPTION_KEY_FILE (1) `/app/secrets/AUTHELIA_STORAGE_ENCRYPTION_KEY`	string
controllers.authelia.containers.app.env.AUTHELIA_STORAGE_LOCAL_PATH (1) `/data/db.sqlite3`	string
controllers.authelia.containers.app.env.AUTHELIA_STORAGE_POSTGRES_ADDRESS (1) `postgres16-rw.database.svc.cluster.local`	string
controllers.authelia.containers.app.env.AUTHELIA_STORAGE_POSTGRES_DATABASE (1) `authelia`	string
controllers.authelia.containers.app.env.AUTHELIA_STORAGE_POSTGRES_PASSWORD_FILE (1) `/app/secrets/AUTHELIA_STORAGE_POSTGRES_PASSWORD`	string
controllers.authelia.containers.app.env.AUTHELIA_TOTP_DISABLE (1) `false`	boolean
controllers.authelia.containers.app.env.AUTHELIA_WEBAUTHN_ENABLE_PASSKEY_LOGIN (1) `true`	string
controllers.authelia.containers.app.env.CLUSTER_CIDR (1) `${CLUSTER_CIDR}`	string
controllers.authelia.containers.app.env.HOME_CIDR (1) `${HOME_CIDR}`	string
controllers.authelia.containers.app.env.NODE_CIDR (1) `${NODE_CIDR}`	string
controllers.authelia.containers.app.env.SECRET_DOMAIN (1) `${SECRET_DOMAIN}`	string
controllers.authelia.containers.app.env.SECRET_EXTERNAL_DOMAIN (1) `${SECRET_EXTERNAL_DOMAIN}`	string
controllers.authelia.containers.app.env.SECRET_INTERNAL_DOMAIN (1) `${SECRET_INTERNAL_DOMAIN}`	string
controllers.authelia.containers.app.env.SECRET_PUBLIC_DOMAIN (1) `${SECRET_PUBLIC_DOMAIN}`	string
controllers.authelia.containers.app.envFrom[].secretRef.name (13) `authelia-secret`	string
controllers.authelia.containers.app.securityContext.allowPrivilegeEscalation (9) `false`	boolean
controllers.authelia.containers.app.securityContext.capabilities.drop[] (9) `- ALL`	string
controllers.authelia.containers.app.securityContext.readOnlyRootFilesystem (9) `true`	boolean
controllers.authelia.containers.app.args[] (3) `- --config - /config/configuration.yml - --config.experimental.filters - expand-env`	string
controllers.authelia.containers.app.command[] (1) `- authelia`	string
controllers.authelia.containers.main.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_BASE_DN.valueFrom.secretKeyRef.key (1) `LLDAP_LDAP_BASE_DN`	string
controllers.authelia.containers.main.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_BASE_DN.valueFrom.secretKeyRef.name (1) `lldap-secret`	string
controllers.authelia.containers.main.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_PASSWORD.valueFrom.secretKeyRef.key (1) `LLDAP_LDAP_USER_PASS`	string
controllers.authelia.containers.main.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_PASSWORD.valueFrom.secretKeyRef.name (1) `lldap-secret`	string
controllers.authelia.containers.main.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_USER.valueFrom.secretKeyRef.key (1) `LDAP_BIND_DN`	string
controllers.authelia.containers.main.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_USER.valueFrom.secretKeyRef.name (1) `lldap-secret`	string
controllers.authelia.containers.main.env.AUTHELIA_NOTIFIER_SMTP_PASSWORD.valueFrom.secretKeyRef.key (1) `LLDAP_LDAP_USER_PASS`	string
controllers.authelia.containers.main.env.AUTHELIA_NOTIFIER_SMTP_PASSWORD.valueFrom.secretKeyRef.name (1) `lldap-secret`	string
controllers.authelia.containers.main.env.AUTHELIA_STORAGE_POSTGRES_ADDRESS (1) `tcp://pgo-cluster-ha.postgres-operator.svc.cluster.local:5432`	string
controllers.authelia.containers.main.env.AUTHELIA_STORAGE_POSTGRES_DATABASE.valueFrom.secretKeyRef.key (1) `dbname`	string
controllers.authelia.containers.main.env.AUTHELIA_STORAGE_POSTGRES_DATABASE.valueFrom.secretKeyRef.name (1) `pgo-cluster-pguser-authelia`	string
controllers.authelia.containers.main.env.AUTHELIA_STORAGE_POSTGRES_PASSWORD.valueFrom.secretKeyRef.key (1) `password`	string
controllers.authelia.containers.main.env.AUTHELIA_STORAGE_POSTGRES_PASSWORD.valueFrom.secretKeyRef.name (1) `pgo-cluster-pguser-authelia`	string
controllers.authelia.containers.main.env.AUTHELIA_STORAGE_POSTGRES_USERNAME.valueFrom.secretKeyRef.key (1) `user`	string
controllers.authelia.containers.main.env.AUTHELIA_STORAGE_POSTGRES_USERNAME.valueFrom.secretKeyRef.name (1) `pgo-cluster-pguser-authelia`	string
controllers.authelia.containers.main.env.X_AUTHELIA_CONFIG (1) `/config/configuration.yaml`	string
controllers.authelia.containers.main.env.X_AUTHELIA_CONFIG_FILTERS (1) `template`	string
controllers.authelia.containers.main.envFrom[].secretRef.name (1) `authelia-secret`	string
controllers.authelia.containers.main.image.repository (1) `ghcr.io/authelia/authelia`	string
controllers.authelia.containers.main.image.tag (1) `4.38.18`	string
controllers.authelia.containers.main.probes.liveness.enabled (1) `true`	boolean
controllers.authelia.containers.main.probes.readiness.enabled (1) `true`	boolean
controllers.authelia.containers.main.probes.startup.enabled (1) `true`	boolean
controllers.authelia.containers.main.probes.startup.spec.failureThreshold (1) `30`	number
controllers.authelia.containers.main.probes.startup.spec.periodSeconds (1) `5`	number
controllers.authelia.containers.main.resources.requests.cpu (1) `1m`	string
controllers.authelia.containers.main.resources.requests.memory (1) `50Mi`	string
controllers.authelia.replicas (14) `2`	number
controllers.authelia.strategy (14) `RollingUpdate`	string
controllers.authelia.initContainers.init-db.image.repository (9) `ghcr.io/onedr0p/postgres-init`	string
controllers.authelia.initContainers.init-db.image.tag (9) `16`	number
controllers.authelia.initContainers.init-db.image.pullPolicy (3) `IfNotPresent`	string
controllers.authelia.initContainers.init-db.envFrom[].secretRef.name (8) `authelia-secret`	string
controllers.authelia.initContainers.init-db.env.INIT_POSTGRES_DBNAME (1) `authelia`	string
controllers.authelia.initContainers.init-db.env.INIT_POSTGRES_HOST (1) `postgres16-rw.database.svc.cluster.local`	string
controllers.authelia.initContainers.init-db.env.INIT_POSTGRES_PASS.valueFrom.secretKeyRef.key (1) `AUTHELIA_STORAGE_POSTGRES_PASSWORD`	string
controllers.authelia.initContainers.init-db.env.INIT_POSTGRES_PASS.valueFrom.secretKeyRef.name (1) `authelia-secret`	string
controllers.authelia.initContainers.init-db.env.INIT_POSTGRES_SUPER_PASS.valueFrom.secretKeyRef.key (1) `password`	string
controllers.authelia.initContainers.init-db.env.INIT_POSTGRES_SUPER_PASS.valueFrom.secretKeyRef.name (1) `cloudnative-pg-secret`	string
controllers.authelia.initContainers.init-db.env.INIT_POSTGRES_USER.valueFrom.secretKeyRef.key (1) `AUTHELIA_STORAGE_POSTGRES_USERNAME`	string
controllers.authelia.initContainers.init-db.env.INIT_POSTGRES_USER.valueFrom.secretKeyRef.name (1) `authelia-secret`	string
controllers.authelia.initContainers.01-init-db.envFrom[].secretRef.name (1) `authelia-secret`	string
controllers.authelia.initContainers.01-init-db.image.pullPolicy (1) `IfNotPresent`	string
controllers.authelia.initContainers.01-init-db.image.repository (1) `ghcr.io/home-operations/postgres-init`	string
controllers.authelia.initContainers.01-init-db.image.tag (1) `17.5.0@sha256:e0c87ce7df39d06b93f27cf2cc6a056611f13faaa88cc07ab4dc8bf7a85d0b11`	string
controllers.authelia.pod.topologySpreadConstraints[].labelSelector.matchLabels."app.kubernetes.io/name" (8) `authelia`	string
controllers.authelia.pod.topologySpreadConstraints[].maxSkew (8) `1`	number
controllers.authelia.pod.topologySpreadConstraints[].topologyKey (8) `kubernetes.io/hostname`	string
controllers.authelia.pod.topologySpreadConstraints[].whenUnsatisfiable (8) `DoNotSchedule`	string
controllers.authelia.pod.securityContext.runAsGroup (7) `568`	number
controllers.authelia.pod.securityContext.runAsUser (7) `568`	number
controllers.authelia.pod.securityContext.runAsNonRoot (6) `true`	boolean
controllers.authelia.pod.securityContext.seccompProfile.type (1) `RuntimeDefault`	string
controllers.authelia.pod.enableServiceLinks (2) `false`	boolean
controllers.main.annotations."reloader.stakater.com/auto" (4) `true`	string
controllers.main.containers.main.env.AUTHELIA_SERVER_DISABLE_HEALTHCHECK (4) `true`	string, boolean
controllers.main.containers.main.env.AUTHELIA_TELEMETRY_METRICS_ADDRESS (4) `tcp://0.0.0.0:8080`	string
controllers.main.containers.main.env.AUTHELIA_TELEMETRY_METRICS_ENABLED (4) `true`	string, boolean
controllers.main.containers.main.env.AUTHELIA_THEME (4) `dark`	string
controllers.main.containers.main.env.AUTHELIA_SERVER_ADDRESS (3) `tcp://0.0.0.0:80`	string
controllers.main.containers.main.env.X_AUTHELIA_CONFIG (3) `/config/configuration.yaml`	string
controllers.main.containers.main.env.X_AUTHELIA_CONFIG_FILTERS (3) `expand-env`	string
controllers.main.containers.main.env.AUTHELIA_LOG_LEVEL (2) `info`	string
controllers.main.containers.main.env.AUTHELIA_NOTIFIER_DISABLE_STARTUP_CHECK (2) `true`	string
controllers.main.containers.main.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_ADDITIONAL_GROUPS_DN (1) `ou=groups`	string
controllers.main.containers.main.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_ADDITIONAL_USERS_DN (1) `ou=people`	string
controllers.main.containers.main.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_BASE_DN (1) `${SECRET_LDAP_ROOT}`	string
controllers.main.containers.main.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_DISPLAY_NAME_ATTRIBUTE (1) `displayName`	string
controllers.main.containers.main.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_GROUP_NAME_ATTRIBUTE (1) `cn`	string
controllers.main.containers.main.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_GROUPS_FILTER (1) `(member={dn})`	string
controllers.main.containers.main.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_IMPLEMENTATION (1) `custom`	string
controllers.main.containers.main.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_MAIL_ATTRIBUTE (1) `mail`	string
controllers.main.containers.main.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_PASSWORD (1) `${LLDAP_LDAP_USER_PASS}`	string
controllers.main.containers.main.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_START_TLS (1) `false`	string
controllers.main.containers.main.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_TIMEOUT (1) `5s`	string
controllers.main.containers.main.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_URL (1) `ldap://lldap.identity.svc.cluster.local:389`	string
controllers.main.containers.main.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_USER (1) `${LLDAP_USER_DN}`	string
controllers.main.containers.main.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_USERNAME_ATTRIBUTE (1) `uid`	string
controllers.main.containers.main.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_USERS_FILTER (1) `(&(\|({username_attribute}={input})({mail_attribute}={input}))(objectClass=person))`	string
controllers.main.containers.main.env.AUTHELIA_AUTHENTICATION_BACKEND_PASSWORD_RESET_DISABLE (1) `true`	string
controllers.main.containers.main.env.AUTHELIA_AUTHENTICATION_BACKEND_REFRESH_INTERVAL (1) `1m`	string
controllers.main.containers.main.env.AUTHELIA_DEFAULT_REDIRECTION_URL (1) `https://auth.${SECRET_DOMAIN}`	string
controllers.main.containers.main.env.AUTHELIA_DUO_API_DISABLE (1) `true`	string
controllers.main.containers.main.env.AUTHELIA_IDENTITY_PROVIDERS_OIDC_HMAC_SECRET (1) `${AUTHELIA_IDENTITY_PROVIDERS_OIDC_HMAC_SECRET}`	string
controllers.main.containers.main.env.AUTHELIA_JWT_SECRET (1) `${AUTHELIA_JWT_SECRET}`	string
controllers.main.containers.main.env.AUTHELIA_NOTIFIER_SMTP_DISABLE_REQUIRE_TLS (1) `true`	string
controllers.main.containers.main.env.AUTHELIA_NOTIFIER_SMTP_HOST (1) `smtp-relay.networking.svc.cluster.local`	string
controllers.main.containers.main.env.AUTHELIA_NOTIFIER_SMTP_PORT (1) `${SMTP_RELAY_PORT}`	string
controllers.main.containers.main.env.AUTHELIA_NOTIFIER_SMTP_SENDER (1) `Authelia <noreply@${SECRET_DOMAIN}>`	string
controllers.main.containers.main.env.AUTHELIA_SERVER_BUFFERS_READ (1) `2048000`	string
controllers.main.containers.main.env.AUTHELIA_SERVER_PORT (1) `80`	number
controllers.main.containers.main.env.AUTHELIA_SESSION_DOMAIN (1) `${SECRET_DOMAIN}`	string
controllers.main.containers.main.env.AUTHELIA_SESSION_NAME (1) `authelia-homelab`	string
controllers.main.containers.main.env.AUTHELIA_SESSION_SECRET (1) `${AUTHELIA_SESSION_SECRET}`	string
controllers.main.containers.main.env.AUTHELIA_STORAGE_ENCRYPTION_KEY (1) `${AUTHELIA_STORAGE_ENCRYPTION_KEY}`	string
controllers.main.containers.main.env.AUTHELIA_STORAGE_POSTGRES_DATABASE (1) `authelia`	string
controllers.main.containers.main.env.AUTHELIA_STORAGE_POSTGRES_HOST (1) `postgres-lb.storage.svc.cluster.local`	string
controllers.main.containers.main.env.AUTHELIA_STORAGE_POSTGRES_PASSWORD (1) `${AUTHELIA_STORAGE_POSTGRES_PASSWORD}`	string
controllers.main.containers.main.env.AUTHELIA_STORAGE_POSTGRES_USERNAME (1) `${AUTHELIA_STORAGE_POSTGRES_USERNAME}`	string
controllers.main.containers.main.env.AUTHELIA_TOTP_ISSUER (1) `authelia.com`	string
controllers.main.containers.main.env.AUTHELIA_WEBAUTHN_DISABLE (1) `true`	string
controllers.main.containers.main.env.GRAFANA_OAUTH_CLIENT_SECRET (1) `${GRAFANA_OAUTH_CLIENT_SECRET}`	string
controllers.main.containers.main.envFrom[].secretRef.name (4) `authelia-secret`	string
controllers.main.containers.main.image.repository (4) `ghcr.io/authelia/authelia`	string
controllers.main.containers.main.image.tag (4) `v4.38.0-beta3@sha256:b48ae4d0ed9d1eee76efe382df60928bae550ec19e5663858dde6dc5f41cf285`	string
controllers.main.containers.main.probes.liveness.custom (4) `true`	boolean
controllers.main.containers.main.probes.liveness.enabled (4) `true`	boolean
controllers.main.containers.main.probes.liveness.spec.failureThreshold (4) `3`	number
controllers.main.containers.main.probes.liveness.spec.httpGet.path (4) `/api/health`	string
controllers.main.containers.main.probes.liveness.spec.httpGet.port (4) `80`	number
controllers.main.containers.main.probes.liveness.spec.initialDelaySeconds (4) `0`	number
controllers.main.containers.main.probes.liveness.spec.periodSeconds (4) `10`	number
controllers.main.containers.main.probes.liveness.spec.timeoutSeconds (4) `1`	number
controllers.main.containers.main.probes.readiness.custom (4) `true`	boolean
controllers.main.containers.main.probes.readiness.enabled (4) `true`	boolean
controllers.main.containers.main.probes.readiness.spec.failureThreshold (4) `3`	number
controllers.main.containers.main.probes.readiness.spec.httpGet.path (4) `/api/health`	string
controllers.main.containers.main.probes.readiness.spec.httpGet.port (4) `80`	number
controllers.main.containers.main.probes.readiness.spec.initialDelaySeconds (4) `0`	number
controllers.main.containers.main.probes.readiness.spec.periodSeconds (4) `10`	number
controllers.main.containers.main.probes.readiness.spec.timeoutSeconds (4) `1`	number
controllers.main.containers.main.probes.startup.enabled (4) `false`	boolean
controllers.main.containers.main.resources.limits.memory (4) `200Mi`	string
controllers.main.containers.main.resources.requests.cpu (4) `5m`	string
controllers.main.containers.main.resources.requests.memory (3) `10Mi`	string
controllers.main.containers.main.securityContext.allowPrivilegeEscalation (2) `false`	boolean
controllers.main.containers.main.securityContext.capabilities.drop[] (2) `- ALL`	string
controllers.main.containers.main.securityContext.readOnlyRootFilesystem (2) `true`	boolean
controllers.main.containers.main.args[] (1) `- --config - /config/configuration.yaml - --config.experimental.filters - expand-env`	string
controllers.main.pod.enableServiceLinks (4) `false`	boolean
controllers.main.pod.securityContext.runAsGroup (4) `568`	number
controllers.main.pod.securityContext.runAsUser (4) `568`	number
controllers.main.pod.securityContext.runAsNonRoot (2) `true`	boolean
controllers.main.pod.securityContext.fsGroup (1) `568`	number
controllers.main.pod.securityContext.fsGroupChangePolicy (1) `OnRootMismatch`	string
controllers.main.pod.topologySpreadConstraints[].labelSelector.matchLabels."app.kubernetes.io/name" (4) `authelia`	string
controllers.main.pod.topologySpreadConstraints[].maxSkew (4) `1`	number
controllers.main.pod.topologySpreadConstraints[].topologyKey (4) `kubernetes.io/hostname`	string
controllers.main.pod.topologySpreadConstraints[].whenUnsatisfiable (4) `DoNotSchedule`	string
controllers.main.replicas (4) `2`	number
controllers.main.strategy (4) `RollingUpdate`	string
controllers.main.initContainers.init-db.envFrom[].secretRef.name (3) `authelia-secret`	string
controllers.main.initContainers.init-db.image.repository (3) `ghcr.io/onedr0p/postgres-init`	string
controllers.main.initContainers.init-db.image.tag (3) `16`	number
controllers.main.initContainers.init-db.image.pullPolicy (1) `IfNotPresent`	string
controllers.main.initContainers.01-init-db.env.INIT_POSTGRES_DBNAME (1) `authelia`	string
controllers.main.initContainers.01-init-db.env.INIT_POSTGRES_HOST (1) `postgres-lb.storage.svc.cluster.local`	string
controllers.main.initContainers.01-init-db.env.INIT_POSTGRES_PASS (1) `${AUTHELIA_STORAGE_POSTGRES_PASSWORD}`	string
controllers.main.initContainers.01-init-db.env.INIT_POSTGRES_SUPER_PASS (1) `${POSTGRES_SUPER_PASS}`	string
controllers.main.initContainers.01-init-db.env.INIT_POSTGRES_USER (1) `${AUTHELIA_STORAGE_POSTGRES_USERNAME}`	string
controllers.main.initContainers.01-init-db.image.pullPolicy (1) `IfNotPresent`	string
controllers.main.initContainers.01-init-db.image.repository (1) `ghcr.io/home-operations/postgres-init`	string
controllers.main.initContainers.01-init-db.image.tag (1) `17`	number
service.app.controller (14) `authelia`	string
service.app.ports.http.port (14) `80`	number
service.app.ports.http.primary (2) `true`	boolean
service.app.ports.metrics.port (13) `8080`	number
service.app.ports.metrics.enabled (1) `true`	boolean
service.app.ipFamilyPolicy (2) `PreferDualStack`	string
service.main.ports.http.port (6) `80`	number
service.main.ports.metrics.port (5) `8080`	number
service.main.ports.metrics.enabled (2) `true`	boolean
service.main.controller (2) `main`	string
ingress.app.className (13) `external`	string
ingress.app.hosts[].host (13) `auth.${SECRET_DOMAIN}`	string
ingress.app.hosts[].paths[].path (13) `/`	string
ingress.app.hosts[].paths[].service.identifier (13) `app`	string
ingress.app.hosts[].paths[].service.port (13) `http`	string, number
ingress.app.hosts[].paths[].pathType (1) `Prefix`	string
ingress.app.annotations."external-dns.alpha.kubernetes.io/target" (11) `external.${SECRET_DOMAIN}`	string
ingress.app.annotations."nginx.ingress.kubernetes.io/configuration-snippet" (9) `add_header Cache-Control "no-store"; add_header Pragma "no-cache"; add_header X-Frame-Options "SAMEORIGIN"; add_header X-XSS-Protection "1; mode=block";`	string
ingress.app.annotations."hajimari.io/icon" (3) `mdi:shield-account`	string
ingress.app.annotations."nginx.ingress.kubernetes.io/add-header-Cache-Control" (2) `no-store`	string
ingress.app.annotations."nginx.ingress.kubernetes.io/add-header-Pragma" (2) `no-cache`	string
ingress.app.annotations."nginx.ingress.kubernetes.io/add-header-X-Frame-Options" (2) `SAMEORIGIN`	string
ingress.app.annotations."nginx.ingress.kubernetes.io/add-header-X-XSS-Protection" (2) `1; mode=block`	string
ingress.app.annotations."gethomepage.dev/enabled" (1) `true`	string
ingress.app.annotations."gethomepage.dev/group" (1) `Services`	string
ingress.app.annotations."gethomepage.dev/icon" (1) `mdi-two-factor-authentication`	string
ingress.app.annotations."gethomepage.dev/name" (1) `Authelia`	string
ingress.app.annotations."nginx.ingress.kubernetes.io/cors-allow-origin" (1) `*`	string
ingress.app.annotations."nginx.ingress.kubernetes.io/enable-cors" (1) `true`	string
ingress.app.tls[].hosts[] (6) `- auth.${SECRET_DOMAIN}`	string
ingress.app.enabled (2) `true`	boolean
ingress.main.enabled (7) `true`	boolean
ingress.main.hosts[].host (7) `auth.${SECRET_DOMAIN}`	string
ingress.main.hosts[].paths[].path (7) `/`	string
ingress.main.hosts[].paths[].service.port (6) `http`	string
ingress.main.hosts[].paths[].service.identifier (3) `main`	string
ingress.main.hosts[].paths[].service.name (3) `main main`	string
ingress.main.hosts[].paths[].pathType (4) `Prefix`	string
ingress.main.tls[].hosts[] (7) `- auth.${SECRET_DOMAIN}`	string
ingress.main.tls[].secretName (3) `authelia-production-tls`	string
ingress.main.className (6) `external`	string
ingress.main.annotations."nginx.ingress.kubernetes.io/configuration-snippet" (5) `add_header Cache-Control "no-store"; add_header Pragma "no-cache"; add_header X-Frame-Options "SAMEORIGIN"; add_header X-XSS-Protection "1; mode=block";`	string
ingress.main.annotations."external-dns.alpha.kubernetes.io/target" (4) `external.${SECRET_DOMAIN}`	string
ingress.main.annotations."external-dns.home.arpa/enabled" (3) `true`	string
ingress.main.annotations."hajimari.io/icon" (2) `mdi:shield-account`	string
ingress.main.annotations."cert-manager.io/cluster-issuer" (1) `letsencrypt-production`	string
ingress.main.annotations."gatus.io/enabled" (1) `true`	string
ingress.main.annotations."gatus.io/path" (1) `/api/health`	string
ingress.main.annotations."hajimari.io/enable" (1) `true`	string
ingress.main.annotations."hajimari.io/group" (1) `Authentication`	string
ingress.main.annotations."hajimari.io/name" (1) `Authelia`	string
ingress.main.annotations."hajimari.io/url" (1) `https://auth.${SECRET_DOMAIN}`	string
ingress.main.ingressClassName (1) `nginx`	string
ingress.internal.annotations."nginx.ingress.kubernetes.io/configuration-snippet" (1) `add_header Cache-Control "no-store"; add_header Pragma "no-cache"; add_header X-Frame-Options "SAMEORIGIN"; add_header X-XSS-Protection "1; mode=block";`	string
ingress.internal.className (1) `internal`	string
ingress.internal.enabled (1) `true`	boolean
ingress.internal.hosts[].host (1) `auth.${SECRET_DOMAIN}`	string
ingress.internal.hosts[].paths[].path (1) `/`	string
ingress.internal.hosts[].paths[].pathType (1) `Prefix`	string
ingress.internal.hosts[].paths[].service.identifier (1) `app`	string
ingress.internal.hosts[].paths[].service.port (1) `http`	string
ingress.internal.tls[].hosts[] (1) `- auth.${SECRET_DOMAIN}`	string
serviceMonitor.app.endpoints[].port (13) `metrics`	string
serviceMonitor.app.endpoints[].interval (11) `1m`	string
serviceMonitor.app.endpoints[].path (11) `/metrics`	string
serviceMonitor.app.endpoints[].scheme (11) `http`	string
serviceMonitor.app.endpoints[].scrapeTimeout (11) `10s`	string
serviceMonitor.app.serviceName (13) `authelia`	string
serviceMonitor.app.enabled (4) `true`	boolean
serviceMonitor.main.enabled (4) `true`	boolean
serviceMonitor.main.endpoints[].interval (4) `1m`	string
serviceMonitor.main.endpoints[].path (4) `/metrics`	string
serviceMonitor.main.endpoints[].port (4) `metrics`	string
serviceMonitor.main.endpoints[].scheme (4) `http`	string
serviceMonitor.main.endpoints[].scrapeTimeout (4) `10s`	string
serviceMonitor.main.serviceName (1) `authelia`	string
defaultPodOptions.securityContext.runAsGroup (6) `65534`	number
defaultPodOptions.securityContext.runAsUser (6) `65534`	number
defaultPodOptions.securityContext.runAsNonRoot (5) `true`	boolean
defaultPodOptions.securityContext.seccompProfile.type (5) `RuntimeDefault`	string
defaultPodOptions.securityContext.fsGroupChangePolicy (2) `OnRootMismatch`	string
defaultPodOptions.securityContext.fsGroup (1) `568`	number
defaultPodOptions.topologySpreadConstraints[].labelSelector.matchLabels."app.kubernetes.io/name" (4) `authelia`	string
defaultPodOptions.topologySpreadConstraints[].maxSkew (4) `1`	number
defaultPodOptions.topologySpreadConstraints[].topologyKey (4) `kubernetes.io/hostname`	string
defaultPodOptions.topologySpreadConstraints[].whenUnsatisfiable (4) `DoNotSchedule`	string
enableServiceLinks (2) `false`	boolean
controller.replicas (1) `3`	number
controller.rollingUpdate.surge (1) `1`	number
controller.rollingUpdate.unavailable (1) `1`	number
controller.strategy (1) `RollingUpdate`	string
envFrom[].secretRef.name (1) `authelia`	string
global.nameOverride (1) `authelia`	string
image.repository (1) `docker.io/authelia/authelia`	string
image.tag (1) `4.36.2`	string
podAnnotations."configmap.reloader.stakater.com/reload" (1) `authelia`	string
podAnnotations."secret.reloader.stakater.com/reload" (1) `authelia`	string
podSecurityContext.fsGroup (1) `568`	number
podSecurityContext.fsGroupChangePolicy (1) `OnRootMismatch`	string
podSecurityContext.runAsGroup (1) `568`	number
podSecurityContext.runAsUser (1) `568`	number
resources.limits.memory (1) `250Mi`	string
resources.requests.cpu (1) `10m`	string
resources.requests.memory (1) `50Mi`	string
topologySpreadConstraints[].labelSelector.matchLabels."app.kubernetes.io/name" (1) `authelia`	string
topologySpreadConstraints[].maxSkew (1) `1`	number
topologySpreadConstraints[].topologyKey (1) `kubernetes.io/hostname`	string
topologySpreadConstraints[].whenUnsatisfiable (1) `DoNotSchedule`	string

Key

Types

persistence.config.name (20)

authelia-configmap

string

persistence.config.type (20)

configMap

string

persistence.config.globalMounts[].path (18)

/config/configuration.yaml

string

persistence.config.globalMounts[].readOnly (18)

true

boolean

persistence.config.globalMounts[].subPath (17)

configuration.yaml

string

persistence.config.enabled (10)

true

boolean

persistence.config.advancedMounts.authelia.app[].path (1)

/config/configuration.yaml

string

persistence.config.advancedMounts.authelia.app[].readOnly (1)

true

boolean

persistence.config.advancedMounts.authelia.app[].subPath (1)

configuration.yaml

string

persistence.config.mountPath (1)

/config/configuration.yml

string

persistence.config.readOnly (1)

false

boolean

persistence.config.subPath (1)

configuration.yml

string

persistence.secret-files.enabled (2)

true

boolean

persistence.secret-files.name (2)

authelia-files

string

persistence.secret-files.type (2)

secret

string

persistence.secret-files.advancedMounts.authelia.app[].path (1)

/app/secrets

string

persistence.secret-files.globalMounts[].path (1)

/config/secret

string

persistence.data.existingClaim (1)

${PVC_NAME}

string

persistence.data.globalMounts[].path (1)

/data

string

persistence.secrets.globalMounts[].path (1)

/config/secrets

string

persistence.secrets.globalMounts[].readOnly (1)

true

boolean

persistence.secrets.name (1)

authelia

string

persistence.secrets.type (1)

secret

string

persistence.trusted-certs.advancedMounts.authelia.app[].path (1)

/trusted_certs/letsencrypt-certs.pem

string

persistence.trusted-certs.advancedMounts.authelia.app[].readOnly (1)

true

boolean

persistence.trusted-certs.advancedMounts.authelia.app[].subPath (1)

letsencrypt-certs.pem

string

persistence.trusted-certs.name (1)

letsencrypt-certs

string

persistence.trusted-certs.type (1)

configMap

string

persistence.users.globalMounts[].path (1)

/config/users.yaml

string

persistence.users.globalMounts[].readOnly (1)

true

boolean

persistence.users.globalMounts[].subPath (1)

users.yaml

string

persistence.users.name (1)

authelia-users-secret

string

persistence.users.type (1)

secret

string

controllers.authelia.annotations."reloader.stakater.com/auto" (15)

true

string

controllers.authelia.containers.app.image.repository (14)

ghcr.io/authelia/authelia

string

controllers.authelia.containers.app.image.tag (14)

4.39.4@sha256:64b356c30fd817817a4baafb4dbc0f9f8702e46b49e1edb92ff42e19e487b517

string

controllers.authelia.containers.app.probes.liveness.custom (14)

true

boolean

controllers.authelia.containers.app.probes.liveness.enabled (14)

true

boolean

controllers.authelia.containers.app.probes.liveness.spec.failureThreshold (14)

number

controllers.authelia.containers.app.probes.liveness.spec.httpGet.path (14)

/api/health

string

controllers.authelia.containers.app.probes.liveness.spec.httpGet.port (14)

number

controllers.authelia.containers.app.probes.liveness.spec.initialDelaySeconds (14)

number

controllers.authelia.containers.app.probes.liveness.spec.periodSeconds (14)

number

controllers.authelia.containers.app.probes.liveness.spec.timeoutSeconds (14)

number

controllers.authelia.containers.app.probes.readiness.custom (14)

true

boolean

controllers.authelia.containers.app.probes.readiness.enabled (14)

true

boolean

controllers.authelia.containers.app.probes.readiness.spec.failureThreshold (14)

number

controllers.authelia.containers.app.probes.readiness.spec.httpGet.path (14)

/api/health

string

controllers.authelia.containers.app.probes.readiness.spec.httpGet.port (14)

number

controllers.authelia.containers.app.probes.readiness.spec.initialDelaySeconds (14)

number

controllers.authelia.containers.app.probes.readiness.spec.periodSeconds (14)

number

controllers.authelia.containers.app.probes.readiness.spec.timeoutSeconds (14)

number

controllers.authelia.containers.app.probes.startup.enabled (6)

false

boolean

controllers.authelia.containers.app.resources.limits.memory (14)

128Mi

string

controllers.authelia.containers.app.resources.requests.cpu (14)

10m

string

controllers.authelia.containers.app.resources.requests.memory (8)

32Mi

string

controllers.authelia.containers.app.env.AUTHELIA_SERVER_DISABLE_HEALTHCHECK (13)

true

string

controllers.authelia.containers.app.env.AUTHELIA_TELEMETRY_METRICS_ADDRESS (13)

tcp://0.0.0.0:8080

string

controllers.authelia.containers.app.env.AUTHELIA_TELEMETRY_METRICS_ENABLED (13)

true

string

controllers.authelia.containers.app.env.AUTHELIA_THEME (13)

dark

string

controllers.authelia.containers.app.env.AUTHELIA_SERVER_ADDRESS (11)

tcp://0.0.0.0:80

string

controllers.authelia.containers.app.env.X_AUTHELIA_CONFIG (11)

/config/configuration.yaml

string

controllers.authelia.containers.app.env.X_AUTHELIA_CONFIG_FILTERS (11)

template

string

controllers.authelia.containers.app.env.AUTHELIA_LOG_LEVEL (4)

debug

string

controllers.authelia.containers.app.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_ADDITIONAL_GROUPS_DN (3)

ou=groups

string

controllers.authelia.containers.app.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_ADDITIONAL_USERS_DN (3)

ou=people

string

controllers.authelia.containers.app.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_BASE_DN (3)

dc=home,dc=arpa

string

controllers.authelia.containers.app.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_GROUPS_FILTER (3)

(member={dn})

string

controllers.authelia.containers.app.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_IMPLEMENTATION (3)

custom

string

controllers.authelia.containers.app.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_START_TLS (3)

false

string

controllers.authelia.containers.app.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_TIMEOUT (3)

5s

string

controllers.authelia.containers.app.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_USER (3)

uid=admin,ou=people,dc=home,dc=arpa

string

controllers.authelia.containers.app.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_USERS_FILTER (3)

(&({username_attribute}={input})(objectClass=person))

string

controllers.authelia.containers.app.env.AUTHELIA_AUTHENTICATION_BACKEND_PASSWORD_RESET_DISABLE (3)

true

string

controllers.authelia.containers.app.env.AUTHELIA_AUTHENTICATION_BACKEND_REFRESH_INTERVAL (3)

1m

string

controllers.authelia.containers.app.env.AUTHELIA_NOTIFIER_DISABLE_STARTUP_CHECK (3)

true

string

controllers.authelia.containers.app.env.AUTHELIA_NOTIFIER_SMTP_SENDER (3)

Authelia <authelia@${SECRET_DOMAIN}>

string

controllers.authelia.containers.app.env.AUTHELIA_SERVER_PORT (3)

number

controllers.authelia.containers.app.env.AUTHELIA_SESSION_REDIS_DATABASE_INDEX (3)

number

controllers.authelia.containers.app.env.AUTHELIA_SESSION_REDIS_HOST (3)

dragonfly.database.svc.cluster.local

string

controllers.authelia.containers.app.env.AUTHELIA_TOTP_ISSUER (3)

authelia.com

string

controllers.authelia.containers.app.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_ADDRESS (2)

ldap://lldap.security.svc.cluster.local:389

string

controllers.authelia.containers.app.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_ATTRIBUTES_DISPLAY_NAME (2)

displayName

string

controllers.authelia.containers.app.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_ATTRIBUTES_GROUP_NAME (2)

cn

string

controllers.authelia.containers.app.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_ATTRIBUTES_MAIL (2)

mail

string

controllers.authelia.containers.app.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_ATTRIBUTES_USERNAME (2)

uid

string

controllers.authelia.containers.app.env.AUTHELIA_DUO_API_DISABLE (2)

true

string

controllers.authelia.containers.app.env.AUTHELIA_NOTIFIER_SMTP_ADDRESS (2)

smtp.${SECRET_DOMAIN}:25

string

controllers.authelia.containers.app.env.AUTHELIA_NOTIFIER_SMTP_DISABLE_REQUIRE_TLS (2)

true

string

controllers.authelia.containers.app.env.AUTHELIA_WEBAUTHN_DISABLE (2)

false

string

controllers.authelia.containers.app.env.TZ (2)

${TIMEZONE}

string

controllers.authelia.containers.app.env.AUTHELIA_ACCESS_CONTROL_DEFAULT_POLICY (1)

one_factor

string

controllers.authelia.containers.app.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_ATTRIBUTES_MEMBER_OF (1)

memberOf

string

controllers.authelia.containers.app.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_DISPLAY_NAME_ATTRIBUTE (1)

displayName

string

controllers.authelia.containers.app.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_GROUP_NAME_ATTRIBUTE (1)

cn

string

controllers.authelia.containers.app.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_MAIL_ATTRIBUTE (1)

mail

string

controllers.authelia.containers.app.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_PASSWORD_FILE (1)

/app/secrets/AUTHELIA_AUTHENTICATION_BACKEND_LDAP_PASSWORD

string

controllers.authelia.containers.app.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_URL (1)

ldap://lldap.default.svc.cluster.local:389

string

controllers.authelia.containers.app.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_USERNAME_ATTRIBUTE (1)

uid

string

controllers.authelia.containers.app.env.AUTHELIA_CERTIFICATES_DIRECTORY (1)

/trusted_certs

string

controllers.authelia.containers.app.env.AUTHELIA_DEFAULT_REDIRECTION_URL (1)

https://auth.${SECRET_DOMAIN}

string

controllers.authelia.containers.app.env.AUTHELIA_DUO_API_INTEGRATION_KEY_FILE (1)

/app/secrets/AUTHELIA_DUO_API_INTEGRATION_KEY

string

controllers.authelia.containers.app.env.AUTHELIA_DUO_API_SECRET_KEY_FILE (1)

/app/secrets/AUTHELIA_DUO_API_SECRET_KEY

string

controllers.authelia.containers.app.env.AUTHELIA_IDENTITY_PROVIDERS_OIDC_HMAC_SECRET_FILE (1)

/app/secrets/AUTHELIA_IDENTITY_PROVIDERS_OIDC_HMAC_SECRET

string

controllers.authelia.containers.app.env.AUTHELIA_NOTIFIER_SMTP_HOST (1)

${SECRET_MAIL_HOST}

string

controllers.authelia.containers.app.env.AUTHELIA_NOTIFIER_SMTP_PASSWORD_FILE (1)

/app/secrets/AUTHELIA_NOTIFIER_SMTP_PASSWORD

string

controllers.authelia.containers.app.env.AUTHELIA_NOTIFIER_SMTP_PORT (1)

${SECRET_MAIL_PORT}

string

controllers.authelia.containers.app.env.AUTHELIA_SERVER_BUFFERS_READ (1)

number

controllers.authelia.containers.app.env.AUTHELIA_SERVER_BUFFERS_WRITE (1)

number

controllers.authelia.containers.app.env.AUTHELIA_SESSION_DOMAIN (1)

${SECRET_DOMAIN}

string

controllers.authelia.containers.app.env.AUTHELIA_SESSION_NAME (1)

authelia-home-cluster

string

controllers.authelia.containers.app.env.AUTHELIA_SESSION_REDIS_PASSWORD.valueFrom.secretKeyRef.key (1)

password

string

controllers.authelia.containers.app.env.AUTHELIA_SESSION_REDIS_PASSWORD.valueFrom.secretKeyRef.name (1)

dragonfly-secret

string

controllers.authelia.containers.app.env.AUTHELIA_SESSION_REDIS_PORT (1)

number

controllers.authelia.containers.app.env.AUTHELIA_SESSION_SECRET_FILE (1)

/app/secrets/AUTHELIA_SESSION_SECRET

string

controllers.authelia.containers.app.env.AUTHELIA_STORAGE_ENCRYPTION_KEY_FILE (1)

/app/secrets/AUTHELIA_STORAGE_ENCRYPTION_KEY

string

controllers.authelia.containers.app.env.AUTHELIA_STORAGE_LOCAL_PATH (1)

/data/db.sqlite3

string

controllers.authelia.containers.app.env.AUTHELIA_STORAGE_POSTGRES_ADDRESS (1)

postgres16-rw.database.svc.cluster.local

string

controllers.authelia.containers.app.env.AUTHELIA_STORAGE_POSTGRES_DATABASE (1)

authelia

string

controllers.authelia.containers.app.env.AUTHELIA_STORAGE_POSTGRES_PASSWORD_FILE (1)

/app/secrets/AUTHELIA_STORAGE_POSTGRES_PASSWORD

string

controllers.authelia.containers.app.env.AUTHELIA_TOTP_DISABLE (1)

false

boolean

controllers.authelia.containers.app.env.AUTHELIA_WEBAUTHN_ENABLE_PASSKEY_LOGIN (1)

true

string

controllers.authelia.containers.app.env.CLUSTER_CIDR (1)

${CLUSTER_CIDR}

string

controllers.authelia.containers.app.env.HOME_CIDR (1)

${HOME_CIDR}

string

controllers.authelia.containers.app.env.NODE_CIDR (1)

${NODE_CIDR}

string

controllers.authelia.containers.app.env.SECRET_DOMAIN (1)

${SECRET_DOMAIN}

string

controllers.authelia.containers.app.env.SECRET_EXTERNAL_DOMAIN (1)

${SECRET_EXTERNAL_DOMAIN}

string

controllers.authelia.containers.app.env.SECRET_INTERNAL_DOMAIN (1)

${SECRET_INTERNAL_DOMAIN}

string

controllers.authelia.containers.app.env.SECRET_PUBLIC_DOMAIN (1)

${SECRET_PUBLIC_DOMAIN}

string

controllers.authelia.containers.app.envFrom[].secretRef.name (13)

authelia-secret

string

controllers.authelia.containers.app.securityContext.allowPrivilegeEscalation (9)

false

boolean

controllers.authelia.containers.app.securityContext.capabilities.drop[] (9)

- ALL

string

controllers.authelia.containers.app.securityContext.readOnlyRootFilesystem (9)

true

boolean

controllers.authelia.containers.app.args[] (3)

- --config
- /config/configuration.yml
- --config.experimental.filters
- expand-env

string

controllers.authelia.containers.app.command[] (1)

- authelia

string

controllers.authelia.containers.main.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_BASE_DN.valueFrom.secretKeyRef.key (1)

LLDAP_LDAP_BASE_DN

string

controllers.authelia.containers.main.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_BASE_DN.valueFrom.secretKeyRef.name (1)

lldap-secret

string

controllers.authelia.containers.main.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_PASSWORD.valueFrom.secretKeyRef.key (1)

LLDAP_LDAP_USER_PASS

string

controllers.authelia.containers.main.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_PASSWORD.valueFrom.secretKeyRef.name (1)

lldap-secret

string

controllers.authelia.containers.main.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_USER.valueFrom.secretKeyRef.key (1)

LDAP_BIND_DN

string

controllers.authelia.containers.main.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_USER.valueFrom.secretKeyRef.name (1)

lldap-secret

string

controllers.authelia.containers.main.env.AUTHELIA_NOTIFIER_SMTP_PASSWORD.valueFrom.secretKeyRef.key (1)

LLDAP_LDAP_USER_PASS

string

controllers.authelia.containers.main.env.AUTHELIA_NOTIFIER_SMTP_PASSWORD.valueFrom.secretKeyRef.name (1)

lldap-secret

string

controllers.authelia.containers.main.env.AUTHELIA_STORAGE_POSTGRES_ADDRESS (1)

tcp://pgo-cluster-ha.postgres-operator.svc.cluster.local:5432

string

controllers.authelia.containers.main.env.AUTHELIA_STORAGE_POSTGRES_DATABASE.valueFrom.secretKeyRef.key (1)

dbname

string

controllers.authelia.containers.main.env.AUTHELIA_STORAGE_POSTGRES_DATABASE.valueFrom.secretKeyRef.name (1)

pgo-cluster-pguser-authelia

string

controllers.authelia.containers.main.env.AUTHELIA_STORAGE_POSTGRES_PASSWORD.valueFrom.secretKeyRef.key (1)

password

string

controllers.authelia.containers.main.env.AUTHELIA_STORAGE_POSTGRES_PASSWORD.valueFrom.secretKeyRef.name (1)

pgo-cluster-pguser-authelia

string

controllers.authelia.containers.main.env.AUTHELIA_STORAGE_POSTGRES_USERNAME.valueFrom.secretKeyRef.key (1)

user

string

controllers.authelia.containers.main.env.AUTHELIA_STORAGE_POSTGRES_USERNAME.valueFrom.secretKeyRef.name (1)

pgo-cluster-pguser-authelia

string

controllers.authelia.containers.main.env.X_AUTHELIA_CONFIG (1)

/config/configuration.yaml

string

controllers.authelia.containers.main.env.X_AUTHELIA_CONFIG_FILTERS (1)

template

string

controllers.authelia.containers.main.envFrom[].secretRef.name (1)

authelia-secret

string

controllers.authelia.containers.main.image.repository (1)

ghcr.io/authelia/authelia

string

controllers.authelia.containers.main.image.tag (1)

4.38.18

string

controllers.authelia.containers.main.probes.liveness.enabled (1)

true

boolean

controllers.authelia.containers.main.probes.readiness.enabled (1)

true

boolean

controllers.authelia.containers.main.probes.startup.enabled (1)

true

boolean

controllers.authelia.containers.main.probes.startup.spec.failureThreshold (1)

number

controllers.authelia.containers.main.probes.startup.spec.periodSeconds (1)

number

controllers.authelia.containers.main.resources.requests.cpu (1)

1m

string

controllers.authelia.containers.main.resources.requests.memory (1)

50Mi

string

controllers.authelia.replicas (14)

number

controllers.authelia.strategy (14)

RollingUpdate

string

controllers.authelia.initContainers.init-db.image.repository (9)

ghcr.io/onedr0p/postgres-init

string

controllers.authelia.initContainers.init-db.image.tag (9)

number

controllers.authelia.initContainers.init-db.image.pullPolicy (3)

IfNotPresent

string

controllers.authelia.initContainers.init-db.envFrom[].secretRef.name (8)

authelia-secret

string

controllers.authelia.initContainers.init-db.env.INIT_POSTGRES_DBNAME (1)

authelia

string

controllers.authelia.initContainers.init-db.env.INIT_POSTGRES_HOST (1)

postgres16-rw.database.svc.cluster.local

string

controllers.authelia.initContainers.init-db.env.INIT_POSTGRES_PASS.valueFrom.secretKeyRef.key (1)

AUTHELIA_STORAGE_POSTGRES_PASSWORD

string

controllers.authelia.initContainers.init-db.env.INIT_POSTGRES_PASS.valueFrom.secretKeyRef.name (1)

authelia-secret

string

controllers.authelia.initContainers.init-db.env.INIT_POSTGRES_SUPER_PASS.valueFrom.secretKeyRef.key (1)

password

string

controllers.authelia.initContainers.init-db.env.INIT_POSTGRES_SUPER_PASS.valueFrom.secretKeyRef.name (1)

cloudnative-pg-secret

string

controllers.authelia.initContainers.init-db.env.INIT_POSTGRES_USER.valueFrom.secretKeyRef.key (1)

AUTHELIA_STORAGE_POSTGRES_USERNAME

string

controllers.authelia.initContainers.init-db.env.INIT_POSTGRES_USER.valueFrom.secretKeyRef.name (1)

authelia-secret

string

controllers.authelia.initContainers.01-init-db.envFrom[].secretRef.name (1)

authelia-secret

string

controllers.authelia.initContainers.01-init-db.image.pullPolicy (1)

IfNotPresent

string

controllers.authelia.initContainers.01-init-db.image.repository (1)

ghcr.io/home-operations/postgres-init

string

controllers.authelia.initContainers.01-init-db.image.tag (1)

17.5.0@sha256:e0c87ce7df39d06b93f27cf2cc6a056611f13faaa88cc07ab4dc8bf7a85d0b11

string

controllers.authelia.pod.topologySpreadConstraints[].labelSelector.matchLabels."app.kubernetes.io/name" (8)

authelia

string

controllers.authelia.pod.topologySpreadConstraints[].maxSkew (8)

number

controllers.authelia.pod.topologySpreadConstraints[].topologyKey (8)

kubernetes.io/hostname

string

controllers.authelia.pod.topologySpreadConstraints[].whenUnsatisfiable (8)

DoNotSchedule

string

controllers.authelia.pod.securityContext.runAsGroup (7)

number

controllers.authelia.pod.securityContext.runAsUser (7)

number

controllers.authelia.pod.securityContext.runAsNonRoot (6)

true

boolean

controllers.authelia.pod.securityContext.seccompProfile.type (1)

RuntimeDefault

string

controllers.authelia.pod.enableServiceLinks (2)

false

boolean

controllers.main.annotations."reloader.stakater.com/auto" (4)

true

string

controllers.main.containers.main.env.AUTHELIA_SERVER_DISABLE_HEALTHCHECK (4)

true

string, boolean

controllers.main.containers.main.env.AUTHELIA_TELEMETRY_METRICS_ADDRESS (4)

tcp://0.0.0.0:8080

string

controllers.main.containers.main.env.AUTHELIA_TELEMETRY_METRICS_ENABLED (4)

true

string, boolean

controllers.main.containers.main.env.AUTHELIA_THEME (4)

dark

string

controllers.main.containers.main.env.AUTHELIA_SERVER_ADDRESS (3)

tcp://0.0.0.0:80

string

controllers.main.containers.main.env.X_AUTHELIA_CONFIG (3)

/config/configuration.yaml

string

controllers.main.containers.main.env.X_AUTHELIA_CONFIG_FILTERS (3)

expand-env

string

controllers.main.containers.main.env.AUTHELIA_LOG_LEVEL (2)

info

string

controllers.main.containers.main.env.AUTHELIA_NOTIFIER_DISABLE_STARTUP_CHECK (2)

true

string

controllers.main.containers.main.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_ADDITIONAL_GROUPS_DN (1)

ou=groups

string

controllers.main.containers.main.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_ADDITIONAL_USERS_DN (1)

ou=people

string

controllers.main.containers.main.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_BASE_DN (1)

${SECRET_LDAP_ROOT}

string

controllers.main.containers.main.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_DISPLAY_NAME_ATTRIBUTE (1)

displayName

string

controllers.main.containers.main.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_GROUP_NAME_ATTRIBUTE (1)

cn

string

controllers.main.containers.main.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_GROUPS_FILTER (1)

(member={dn})

string

controllers.main.containers.main.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_IMPLEMENTATION (1)

custom

string

controllers.main.containers.main.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_MAIL_ATTRIBUTE (1)

mail

string

controllers.main.containers.main.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_PASSWORD (1)

${LLDAP_LDAP_USER_PASS}

string

controllers.main.containers.main.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_START_TLS (1)

false

string

controllers.main.containers.main.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_TIMEOUT (1)

5s

string

controllers.main.containers.main.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_URL (1)

ldap://lldap.identity.svc.cluster.local:389

string

controllers.main.containers.main.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_USER (1)

${LLDAP_USER_DN}

string

controllers.main.containers.main.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_USERNAME_ATTRIBUTE (1)

uid

string

controllers.main.containers.main.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_USERS_FILTER (1)

(&(|({username_attribute}={input})({mail_attribute}={input}))(objectClass=person))

string

controllers.main.containers.main.env.AUTHELIA_AUTHENTICATION_BACKEND_PASSWORD_RESET_DISABLE (1)

true

string

controllers.main.containers.main.env.AUTHELIA_AUTHENTICATION_BACKEND_REFRESH_INTERVAL (1)

1m

string

controllers.main.containers.main.env.AUTHELIA_DEFAULT_REDIRECTION_URL (1)

https://auth.${SECRET_DOMAIN}

string

controllers.main.containers.main.env.AUTHELIA_DUO_API_DISABLE (1)

true

string

controllers.main.containers.main.env.AUTHELIA_IDENTITY_PROVIDERS_OIDC_HMAC_SECRET (1)

${AUTHELIA_IDENTITY_PROVIDERS_OIDC_HMAC_SECRET}

string

controllers.main.containers.main.env.AUTHELIA_JWT_SECRET (1)

${AUTHELIA_JWT_SECRET}

string

controllers.main.containers.main.env.AUTHELIA_NOTIFIER_SMTP_DISABLE_REQUIRE_TLS (1)

true

string

controllers.main.containers.main.env.AUTHELIA_NOTIFIER_SMTP_HOST (1)

smtp-relay.networking.svc.cluster.local

string

controllers.main.containers.main.env.AUTHELIA_NOTIFIER_SMTP_PORT (1)

${SMTP_RELAY_PORT}

string

controllers.main.containers.main.env.AUTHELIA_NOTIFIER_SMTP_SENDER (1)

Authelia <noreply@${SECRET_DOMAIN}>

string

controllers.main.containers.main.env.AUTHELIA_SERVER_BUFFERS_READ (1)

string

controllers.main.containers.main.env.AUTHELIA_SERVER_PORT (1)

number

controllers.main.containers.main.env.AUTHELIA_SESSION_DOMAIN (1)

${SECRET_DOMAIN}

string

controllers.main.containers.main.env.AUTHELIA_SESSION_NAME (1)

authelia-homelab

string

controllers.main.containers.main.env.AUTHELIA_SESSION_SECRET (1)

${AUTHELIA_SESSION_SECRET}

string

controllers.main.containers.main.env.AUTHELIA_STORAGE_ENCRYPTION_KEY (1)

${AUTHELIA_STORAGE_ENCRYPTION_KEY}

string

controllers.main.containers.main.env.AUTHELIA_STORAGE_POSTGRES_DATABASE (1)

authelia

string

controllers.main.containers.main.env.AUTHELIA_STORAGE_POSTGRES_HOST (1)

postgres-lb.storage.svc.cluster.local

string

controllers.main.containers.main.env.AUTHELIA_STORAGE_POSTGRES_PASSWORD (1)

${AUTHELIA_STORAGE_POSTGRES_PASSWORD}

string

controllers.main.containers.main.env.AUTHELIA_STORAGE_POSTGRES_USERNAME (1)

${AUTHELIA_STORAGE_POSTGRES_USERNAME}

string

controllers.main.containers.main.env.AUTHELIA_TOTP_ISSUER (1)

authelia.com

string

controllers.main.containers.main.env.AUTHELIA_WEBAUTHN_DISABLE (1)

true

string

controllers.main.containers.main.env.GRAFANA_OAUTH_CLIENT_SECRET (1)

${GRAFANA_OAUTH_CLIENT_SECRET}

string

controllers.main.containers.main.envFrom[].secretRef.name (4)

authelia-secret

string

controllers.main.containers.main.image.repository (4)

ghcr.io/authelia/authelia

string

controllers.main.containers.main.image.tag (4)

v4.38.0-beta3@sha256:b48ae4d0ed9d1eee76efe382df60928bae550ec19e5663858dde6dc5f41cf285

string

controllers.main.containers.main.probes.liveness.custom (4)

true

boolean

controllers.main.containers.main.probes.liveness.enabled (4)

true

boolean

controllers.main.containers.main.probes.liveness.spec.failureThreshold (4)

number

controllers.main.containers.main.probes.liveness.spec.httpGet.path (4)

/api/health

string

controllers.main.containers.main.probes.liveness.spec.httpGet.port (4)

number

controllers.main.containers.main.probes.liveness.spec.initialDelaySeconds (4)

number

controllers.main.containers.main.probes.liveness.spec.periodSeconds (4)

number

controllers.main.containers.main.probes.liveness.spec.timeoutSeconds (4)

number

controllers.main.containers.main.probes.readiness.custom (4)

true

boolean

controllers.main.containers.main.probes.readiness.enabled (4)

true

boolean

controllers.main.containers.main.probes.readiness.spec.failureThreshold (4)

number

controllers.main.containers.main.probes.readiness.spec.httpGet.path (4)

/api/health

string

controllers.main.containers.main.probes.readiness.spec.httpGet.port (4)

number

controllers.main.containers.main.probes.readiness.spec.initialDelaySeconds (4)

number

controllers.main.containers.main.probes.readiness.spec.periodSeconds (4)

number

controllers.main.containers.main.probes.readiness.spec.timeoutSeconds (4)

number

controllers.main.containers.main.probes.startup.enabled (4)

false

boolean

controllers.main.containers.main.resources.limits.memory (4)

200Mi

string

controllers.main.containers.main.resources.requests.cpu (4)

5m

string

controllers.main.containers.main.resources.requests.memory (3)

10Mi

string

controllers.main.containers.main.securityContext.allowPrivilegeEscalation (2)

false

boolean

controllers.main.containers.main.securityContext.capabilities.drop[] (2)

- ALL

string

controllers.main.containers.main.securityContext.readOnlyRootFilesystem (2)

true

boolean

controllers.main.containers.main.args[] (1)

- --config
- /config/configuration.yaml
- --config.experimental.filters
- expand-env

string

controllers.main.pod.enableServiceLinks (4)

false

boolean

controllers.main.pod.securityContext.runAsGroup (4)

number

controllers.main.pod.securityContext.runAsUser (4)

number

controllers.main.pod.securityContext.runAsNonRoot (2)

true

boolean

controllers.main.pod.securityContext.fsGroup (1)

number

controllers.main.pod.securityContext.fsGroupChangePolicy (1)

OnRootMismatch

string

controllers.main.pod.topologySpreadConstraints[].labelSelector.matchLabels."app.kubernetes.io/name" (4)

authelia

string

controllers.main.pod.topologySpreadConstraints[].maxSkew (4)

number

controllers.main.pod.topologySpreadConstraints[].topologyKey (4)

kubernetes.io/hostname

string

controllers.main.pod.topologySpreadConstraints[].whenUnsatisfiable (4)

DoNotSchedule

string

controllers.main.replicas (4)

number

controllers.main.strategy (4)

RollingUpdate

string

controllers.main.initContainers.init-db.envFrom[].secretRef.name (3)

authelia-secret

string

controllers.main.initContainers.init-db.image.repository (3)

ghcr.io/onedr0p/postgres-init

string

controllers.main.initContainers.init-db.image.tag (3)

number

controllers.main.initContainers.init-db.image.pullPolicy (1)

IfNotPresent

string

controllers.main.initContainers.01-init-db.env.INIT_POSTGRES_DBNAME (1)

authelia

string

controllers.main.initContainers.01-init-db.env.INIT_POSTGRES_HOST (1)

postgres-lb.storage.svc.cluster.local

string

controllers.main.initContainers.01-init-db.env.INIT_POSTGRES_PASS (1)

${AUTHELIA_STORAGE_POSTGRES_PASSWORD}

string

controllers.main.initContainers.01-init-db.env.INIT_POSTGRES_SUPER_PASS (1)

${POSTGRES_SUPER_PASS}

string

controllers.main.initContainers.01-init-db.env.INIT_POSTGRES_USER (1)

${AUTHELIA_STORAGE_POSTGRES_USERNAME}

string

controllers.main.initContainers.01-init-db.image.pullPolicy (1)

IfNotPresent

string

controllers.main.initContainers.01-init-db.image.repository (1)

ghcr.io/home-operations/postgres-init

string

controllers.main.initContainers.01-init-db.image.tag (1)

number

service.app.controller (14)

authelia

string

service.app.ports.http.port (14)

number

service.app.ports.http.primary (2)

true

boolean

service.app.ports.metrics.port (13)

number

service.app.ports.metrics.enabled (1)

true

boolean

service.app.ipFamilyPolicy (2)

PreferDualStack

string

service.main.ports.http.port (6)

number

service.main.ports.metrics.port (5)

number

service.main.ports.metrics.enabled (2)

true

boolean

service.main.controller (2)

main

string

ingress.app.className (13)

external

string

ingress.app.hosts[].host (13)

auth.${SECRET_DOMAIN}

string

ingress.app.hosts[].paths[].path (13)

string

ingress.app.hosts[].paths[].service.identifier (13)

app

string

ingress.app.hosts[].paths[].service.port (13)

http

string, number

ingress.app.hosts[].paths[].pathType (1)

Prefix

string

ingress.app.annotations."external-dns.alpha.kubernetes.io/target" (11)

external.${SECRET_DOMAIN}

string

ingress.app.annotations."nginx.ingress.kubernetes.io/configuration-snippet" (9)

add_header Cache-Control "no-store";
add_header Pragma "no-cache";
add_header X-Frame-Options "SAMEORIGIN";
add_header X-XSS-Protection "1; mode=block";

string

ingress.app.annotations."hajimari.io/icon" (3)

mdi:shield-account

string

ingress.app.annotations."nginx.ingress.kubernetes.io/add-header-Cache-Control" (2)

no-store

string

ingress.app.annotations."nginx.ingress.kubernetes.io/add-header-Pragma" (2)

no-cache

string

ingress.app.annotations."nginx.ingress.kubernetes.io/add-header-X-Frame-Options" (2)

SAMEORIGIN

string

ingress.app.annotations."nginx.ingress.kubernetes.io/add-header-X-XSS-Protection" (2)

1; mode=block

string

ingress.app.annotations."gethomepage.dev/enabled" (1)

true

string

ingress.app.annotations."gethomepage.dev/group" (1)

Services

string

ingress.app.annotations."gethomepage.dev/icon" (1)

mdi-two-factor-authentication

string

ingress.app.annotations."gethomepage.dev/name" (1)

Authelia

string

ingress.app.annotations."nginx.ingress.kubernetes.io/cors-allow-origin" (1)

string

ingress.app.annotations."nginx.ingress.kubernetes.io/enable-cors" (1)

true

string

ingress.app.tls[].hosts[] (6)

- auth.${SECRET_DOMAIN}

string

ingress.app.enabled (2)

true

boolean

ingress.main.enabled (7)

true

boolean

ingress.main.hosts[].host (7)

auth.${SECRET_DOMAIN}

string

ingress.main.hosts[].paths[].path (7)

string

ingress.main.hosts[].paths[].service.port (6)

http

string

ingress.main.hosts[].paths[].service.identifier (3)

main

string

ingress.main.hosts[].paths[].service.name (3)

main
main

string

ingress.main.hosts[].paths[].pathType (4)

Prefix

string

ingress.main.tls[].hosts[] (7)

- auth.${SECRET_DOMAIN}

string

ingress.main.tls[].secretName (3)

authelia-production-tls

string

ingress.main.className (6)

external

string

ingress.main.annotations."nginx.ingress.kubernetes.io/configuration-snippet" (5)

add_header Cache-Control "no-store";
add_header Pragma "no-cache";
add_header X-Frame-Options "SAMEORIGIN";
add_header X-XSS-Protection "1; mode=block";

string

ingress.main.annotations."external-dns.alpha.kubernetes.io/target" (4)

external.${SECRET_DOMAIN}

string

ingress.main.annotations."external-dns.home.arpa/enabled" (3)

true

string

ingress.main.annotations."hajimari.io/icon" (2)

mdi:shield-account

string

ingress.main.annotations."cert-manager.io/cluster-issuer" (1)

letsencrypt-production

string

ingress.main.annotations."gatus.io/enabled" (1)

true

string

ingress.main.annotations."gatus.io/path" (1)

/api/health

string

ingress.main.annotations."hajimari.io/enable" (1)

true

string

ingress.main.annotations."hajimari.io/group" (1)

Authentication

string

ingress.main.annotations."hajimari.io/name" (1)

Authelia

string

ingress.main.annotations."hajimari.io/url" (1)

https://auth.${SECRET_DOMAIN}

string

ingress.main.ingressClassName (1)

nginx

string

ingress.internal.annotations."nginx.ingress.kubernetes.io/configuration-snippet" (1)

add_header Cache-Control "no-store";
add_header Pragma "no-cache";
add_header X-Frame-Options "SAMEORIGIN";
add_header X-XSS-Protection "1; mode=block";

string

ingress.internal.className (1)