authelia helm

Authelia is an open-source authentication and authorization server and portal fulfilling the identity and access management (IAM) role of information security in providing multi-factor authentication and single sign-on (SSO) for your applications via a web portal. It acts as a companion for common reverse proxies.

More popular helm chart found

authelia from bjw-s-labs/charts is more popular with 23 repositories.

Install

Install with:

helm repo add authelia oci://ghcr.io/bjw-s-labs/charts/
helm install authelia authelia/authelia -f values.yaml

Examples

See examples from other people.

Top Repositories (4 out of 13)

NameRepoStarsVersionTimestamp
autheliaauricom/home-ops2054.6.2a day ago
autheliaahgraber/homelab-gitops-k3s1225.0.17 days ago
autheliaharaldkoch/kochhaus-home1755.0.121 days ago
autheliabudimanjojo/home-cluster2474.6.22 months ago

Values

See the most popular values for this chart:

KeyTypes
persistence.config.name (13)
authelia-config
string
persistence.config.type (13)
configMap
string
persistence.config.globalMounts[].path (12)
/config/configuration.yaml
string
persistence.config.globalMounts[].subPath (12)
configuration.yaml
string
persistence.config.globalMounts[].readOnly (11)
true
boolean
persistence.config.enabled (3)
true
boolean
persistence.config.advancedMounts.authelia.authelia[].path (1)
string
persistence.config.advancedMounts.authelia.authelia[].readOnly (1)
boolean
persistence.config.advancedMounts.authelia.authelia[].subPath (1)
string
persistence.secret-files.globalMounts[].path (3)
/config/secret
string
persistence.secret-files.name (3)
string
persistence.secret-files.type (3)
secret
string
persistence.secret-files.enabled (2)
boolean
persistence.tmp.type (3)
emptyDir
string
persistence.data.existingClaim (2)
string
persistence.data.globalMounts[].path (2)
string
persistence.db-secret-files.enabled (2)
boolean
persistence.db-secret-files.globalMounts[].path (2)
string
persistence.db-secret-files.name (2)
string
persistence.db-secret-files.type (2)
string
persistence.dragonfly-secret-files.enabled (2)
boolean
persistence.dragonfly-secret-files.globalMounts[].path (2)
string
persistence.dragonfly-secret-files.name (2)
string
persistence.dragonfly-secret-files.type (2)
string
persistence.config-rules.enabled (1)
boolean
persistence.config-rules.globalMounts[].path (1)
string
persistence.config-rules.globalMounts[].readOnly (1)
boolean
persistence.config-rules.globalMounts[].subPath (1)
string
persistence.config-rules.name (1)
string
persistence.config-rules.type (1)
string
persistence.config-rw.globalMounts[].path (1)
string
persistence.config-rw.globalMounts[].subPath (1)
string
persistence.config-rw.type (1)
string
persistence.secrets.globalMounts[].path (1)
string
persistence.secrets.globalMounts[].readOnly (1)
boolean
persistence.secrets.type (1)
string
persistence.secrets.volumeSpec.projected.sources[].secret.name (1)
string
controllers.authelia.annotations."reloader.stakater.com/auto" (12)
true
string
controllers.authelia.annotations."reloader.stakater.com/search" (1)
string
controllers.authelia.replicas (12)
1
number
controllers.authelia.strategy (11)
RollingUpdate
string
controllers.authelia.containers.app.env.X_AUTHELIA_CONFIG (8)
/config/configuration.yaml
string
controllers.authelia.containers.app.env.X_AUTHELIA_CONFIG_FILTERS (8)
template
string
controllers.authelia.containers.app.env.AUTHELIA_SERVER_DISABLE_HEALTHCHECK (7)
true
string
controllers.authelia.containers.app.env.AUTHELIA_SERVER_ADDRESS (6)
tcp://0.0.0.0:80
string
controllers.authelia.containers.app.env.AUTHELIA_TELEMETRY_METRICS_ADDRESS (6)
tcp://0.0.0.0:8080
string
controllers.authelia.containers.app.env.AUTHELIA_TELEMETRY_METRICS_ENABLED (6)
true
string
controllers.authelia.containers.app.env.AUTHELIA_THEME (6)
dark
string
controllers.authelia.containers.app.env.TZ (4)
string
controllers.authelia.containers.app.env.AUTHELIA_NOTIFIER_SMTP_SENDER (2)
string
controllers.authelia.containers.app.env.AUTHELIA_TOTP_ISSUER (2)
string
controllers.authelia.containers.app.env.AUTHELIA_AUTHENTICATION_BACKEND_LDAP_ADDRESS (1)
string
controllers.authelia.containers.app.env.AUTHELIA_DUO_API_DISABLE (1)
string
controllers.authelia.containers.app.env.AUTHELIA_LOG_LEVEL (1)
string
controllers.authelia.containers.app.env.AUTHELIA_STORAGE_POSTGRES_ADDRESS.valueFrom.secretKeyRef.key (1)
string
controllers.authelia.containers.app.env.AUTHELIA_STORAGE_POSTGRES_ADDRESS.valueFrom.secretKeyRef.name (1)
string
controllers.authelia.containers.app.env.AUTHELIA_STORAGE_POSTGRES_DATABASE.valueFrom.secretKeyRef.key (1)
string
controllers.authelia.containers.app.env.AUTHELIA_STORAGE_POSTGRES_DATABASE.valueFrom.secretKeyRef.name (1)
string
controllers.authelia.containers.app.env.AUTHELIA_STORAGE_POSTGRES_PASSWORD.valueFrom.secretKeyRef.key (1)
string
controllers.authelia.containers.app.env.AUTHELIA_STORAGE_POSTGRES_PASSWORD.valueFrom.secretKeyRef.name (1)
string
controllers.authelia.containers.app.env.AUTHELIA_STORAGE_POSTGRES_USERNAME.valueFrom.secretKeyRef.key (1)
string
controllers.authelia.containers.app.env.AUTHELIA_STORAGE_POSTGRES_USERNAME.valueFrom.secretKeyRef.name (1)
string
controllers.authelia.containers.app.env.AUTHELIA_WEBAUTHN_DISABLE (1)
string
controllers.authelia.containers.app.image.repository (8)
ghcr.io/authelia/authelia
string
controllers.authelia.containers.app.image.tag (8)
4.39.20@sha256:1b363e9279e742397966333f364e0876ae02bf5c876de73e83af6d48c57ff51b
string
controllers.authelia.containers.app.probes.liveness.enabled (8)
true
boolean
controllers.authelia.containers.app.probes.liveness.spec.failureThreshold (7)
3
number
controllers.authelia.containers.app.probes.liveness.spec.periodSeconds (7)
10
number
controllers.authelia.containers.app.probes.liveness.spec.timeoutSeconds (7)
1
number
controllers.authelia.containers.app.probes.liveness.spec.httpGet.path (6)
/api/health
string
controllers.authelia.containers.app.probes.liveness.spec.httpGet.port (6)
80
number
controllers.authelia.containers.app.probes.liveness.spec.initialDelaySeconds (5)
0
number
controllers.authelia.containers.app.probes.liveness.custom (6)
true
boolean
controllers.authelia.containers.app.probes.readiness.enabled (8)
true
boolean
controllers.authelia.containers.app.probes.readiness.custom (7)
true
boolean
controllers.authelia.containers.app.probes.readiness.spec.failureThreshold (7)
3
number
controllers.authelia.containers.app.probes.readiness.spec.httpGet.path (7)
/api/health
string
controllers.authelia.containers.app.probes.readiness.spec.httpGet.port (7)
80
number
controllers.authelia.containers.app.probes.readiness.spec.periodSeconds (7)
10
number
controllers.authelia.containers.app.probes.readiness.spec.timeoutSeconds (7)
1
number
controllers.authelia.containers.app.probes.readiness.spec.initialDelaySeconds (5)
0
number
controllers.authelia.containers.app.probes.startup.enabled (6)
true
boolean
controllers.authelia.containers.app.probes.startup.spec.failureThreshold (3)
30
number
controllers.authelia.containers.app.probes.startup.spec.periodSeconds (3)
number
controllers.authelia.containers.app.resources.limits.memory (8)
128Mi
string
controllers.authelia.containers.app.resources.limits.cpu (1)
number
controllers.authelia.containers.app.resources.requests.cpu (8)
10m
string
controllers.authelia.containers.app.resources.requests.memory (4)
string
controllers.authelia.containers.app.envFrom[].secretRef.name (6)
authelia-secret
string
controllers.authelia.containers.app.securityContext.allowPrivilegeEscalation (6)
false
boolean
controllers.authelia.containers.app.securityContext.capabilities.drop[] (6)
- ALL
string
controllers.authelia.containers.app.securityContext.readOnlyRootFilesystem (6)
true
boolean
controllers.authelia.containers.app.securityContext.runAsGroup (1)
number
controllers.authelia.containers.app.securityContext.runAsNonRoot (1)
boolean
controllers.authelia.containers.app.securityContext.runAsUser (1)
number
controllers.authelia.containers.authelia.env.AUTHELIA_SERVER_ADDRESS (3)
string
controllers.authelia.containers.authelia.env.AUTHELIA_SERVER_DISABLE_HEALTHCHECK (3)
true
string
controllers.authelia.containers.authelia.env.AUTHELIA_TELEMETRY_METRICS_ADDRESS (3)
tcp://0.0.0.0:8080
string
controllers.authelia.containers.authelia.env.AUTHELIA_TELEMETRY_METRICS_ENABLED (3)
true
string
controllers.authelia.containers.authelia.env.AUTHELIA_THEME (3)
dark
string
controllers.authelia.containers.authelia.env.X_AUTHELIA_CONFIG (3)
string
controllers.authelia.containers.authelia.env.X_AUTHELIA_CONFIG_FILTERS (3)
string
controllers.authelia.containers.authelia.env.AUTHELIA_LOG_LEVEL (2)
string
controllers.authelia.containers.authelia.env.AUTHELIA_TOTP_ISSUER (2)
string
controllers.authelia.containers.authelia.env.AUTHELIA_WEBAUTHN_DISABLE (2)
string
controllers.authelia.containers.authelia.envFrom[].secretRef.name (3)
string
controllers.authelia.containers.authelia.image.repository (3)
ghcr.io/authelia/authelia
string
controllers.authelia.containers.authelia.image.tag (3)
4.39.20@sha256:1b363e9279e742397966333f364e0876ae02bf5c876de73e83af6d48c57ff51b
string
controllers.authelia.containers.authelia.probes.liveness.custom (3)
true
boolean
controllers.authelia.containers.authelia.probes.liveness.enabled (3)
true
boolean
controllers.authelia.containers.authelia.probes.liveness.spec.failureThreshold (3)
3
number
controllers.authelia.containers.authelia.probes.liveness.spec.httpGet.path (3)
/api/health
string
controllers.authelia.containers.authelia.probes.liveness.spec.httpGet.port (3)
80
number
controllers.authelia.containers.authelia.probes.liveness.spec.initialDelaySeconds (3)
0
number
controllers.authelia.containers.authelia.probes.liveness.spec.periodSeconds (3)
10
number
controllers.authelia.containers.authelia.probes.liveness.spec.timeoutSeconds (3)
1
number
controllers.authelia.containers.authelia.probes.readiness.custom (3)
true
boolean
controllers.authelia.containers.authelia.probes.readiness.enabled (3)
true
boolean
controllers.authelia.containers.authelia.probes.readiness.spec.failureThreshold (3)
3
number
controllers.authelia.containers.authelia.probes.readiness.spec.httpGet.path (3)
/api/health
string
controllers.authelia.containers.authelia.probes.readiness.spec.httpGet.port (3)
80
number
controllers.authelia.containers.authelia.probes.readiness.spec.initialDelaySeconds (3)
0
number
controllers.authelia.containers.authelia.probes.readiness.spec.periodSeconds (3)
10
number
controllers.authelia.containers.authelia.probes.readiness.spec.timeoutSeconds (3)
1
number
controllers.authelia.containers.authelia.resources.limits.memory (3)
128Mi
string
controllers.authelia.containers.authelia.resources.requests.cpu (3)
10m
string
controllers.authelia.containers.authelia.resources.requests.memory (3)
32Mi
string
controllers.authelia.containers.authelia.securityContext.allowPrivilegeEscalation (1)
boolean
controllers.authelia.containers.authelia.securityContext.capabilities.drop[] (1)
string
controllers.authelia.containers.authelia.securityContext.readOnlyRootFilesystem (1)
boolean
controllers.authelia.containers.main.image.repository (2)
string
controllers.authelia.containers.main.image.tag (2)
string
controllers.authelia.containers.main.probes.liveness.enabled (2)
boolean
controllers.authelia.containers.main.probes.readiness.enabled (2)
boolean
controllers.authelia.containers.main.probes.startup.enabled (2)
boolean
controllers.authelia.containers.main.probes.startup.spec.failureThreshold (2)
number
controllers.authelia.containers.main.probes.startup.spec.periodSeconds (2)
number
controllers.authelia.containers.main.resources.requests.cpu (2)
string
controllers.authelia.containers.main.resources.requests.memory (2)
string
controllers.authelia.containers.main.env[].name (1)
string
controllers.authelia.containers.main.env[].value (1)
string
controllers.authelia.initContainers.init-db.image.repository (5)
ghcr.io/home-operations/postgres-init
string
controllers.authelia.initContainers.init-db.image.tag (5)
string, number
controllers.authelia.initContainers.init-db.envFrom[].secretRef.name (4)
authelia-secret
string
controllers.authelia.pod.enableServiceLinks (3)
false
boolean
controllers.authelia.pod.topologySpreadConstraints[].labelSelector.matchLabels."app.kubernetes.io/name" (3)
string
controllers.authelia.pod.topologySpreadConstraints[].maxSkew (3)
1
number
controllers.authelia.pod.topologySpreadConstraints[].topologyKey (3)
kubernetes.io/hostname
string
controllers.authelia.pod.topologySpreadConstraints[].whenUnsatisfiable (3)
DoNotSchedule
string
controllers.authelia.pod.annotations."k8s.ksgate.org/postgres" (2)
string
controllers.authelia.pod.schedulingGates[].name (2)
string
controllers.authelia.defaultContainerOptions.securityContext.allowPrivilegeEscalation (2)
boolean
controllers.authelia.defaultContainerOptions.securityContext.capabilities.drop[] (2)
string
controllers.authelia.defaultContainerOptions.securityContext.readOnlyRootFilesystem (2)
boolean
controllers.authelia.defaultContainerOptions.envFrom[].secretRef.name (1)
string
controllers.authelia.defaultContainerOptionsStrategy (1)
string
defaultPodOptions.securityContext.runAsGroup (9)
65534
number
defaultPodOptions.securityContext.runAsUser (9)
65534
number
defaultPodOptions.securityContext.runAsNonRoot (8)
true
boolean
defaultPodOptions.securityContext.fsGroupChangePolicy (6)
OnRootMismatch
string
defaultPodOptions.securityContext.seccompProfile.type (6)
RuntimeDefault
string
defaultPodOptions.securityContext.fsGroup (5)
number
defaultPodOptions.topologySpreadConstraints[].labelSelector.matchLabels."app.kubernetes.io/name" (5)
authelia
string
defaultPodOptions.topologySpreadConstraints[].maxSkew (5)
1
number
defaultPodOptions.topologySpreadConstraints[].topologyKey (5)
kubernetes.io/hostname
string
defaultPodOptions.topologySpreadConstraints[].whenUnsatisfiable (5)
DoNotSchedule
string
defaultPodOptions.enableServiceLinks (4)
false
boolean
defaultPodOptions.automountServiceAccountToken (2)
boolean
service.app.ports.http.port (9)
80
number
service.app.ports.http.primary (3)
true
boolean
service.app.ports.metrics.port (8)
8080
number
service.app.ports.metrics.enabled (1)
boolean
service.app.controller (4)
authelia
string
service.app.ipFamilyPolicy (1)
string
service.authelia.controller (2)
string
service.authelia.ports.http.port (2)
number
service.authelia.ports.http.primary (2)
boolean
service.authelia.ports.metrics.port (2)
number
service.main.controller (2)
string
service.main.ports.http.port (2)
number
serviceMonitor.app.endpoints[].port (8)
metrics
string
serviceMonitor.app.endpoints[].interval (7)
1m
string
serviceMonitor.app.endpoints[].path (7)
/metrics
string
serviceMonitor.app.endpoints[].scheme (7)
http
string
serviceMonitor.app.endpoints[].scrapeTimeout (7)
10s
string
serviceMonitor.app.serviceName (5)
authelia
string
serviceMonitor.app.enabled (3)
true
boolean
serviceMonitor.authelia.endpoints[].port (2)
string
serviceMonitor.authelia.serviceName (2)
string
route.app.hostnames[] (7)
string
route.app.parentRefs[].name (7)
envoy-external
string
route.app.parentRefs[].namespace (7)
network
string
route.app.parentRefs[].sectionName (2)
string
route.app.rules[].backendRefs[].port (6)
80
number, string
route.app.rules[].backendRefs[].identifier (3)
app
string
route.app.rules[].backendRefs[].name (2)
string
route.app.rules[].filters[].type (3)
string
route.app.rules[].filters[].requestHeaderModifier.add[].name (2)
string
route.app.rules[].filters[].requestHeaderModifier.add[].value (2)
string
route.app.rules[].filters[].responseHeaderModifier.add[].name (1)
string
route.app.rules[].filters[].responseHeaderModifier.add[].value (1)
string
route.app.rules[].matches[].path.type (1)
string
route.app.rules[].matches[].path.value (1)
string
route.app.annotations."gatus.home-operations.com/endpoint" (2)
string
route.app.annotations."gatus.home-operations.com/enabled" (1)
string
route.main.hostnames[] (3)
string
route.main.parentRefs[].name (3)
string
route.main.parentRefs[].namespace (3)
network
string
route.main.parentRefs[].sectionName (2)
string
route.main.rules[].backendRefs[].name (3)
authelia
string
route.main.rules[].backendRefs[].port (3)
number
route.main.annotations."gatus.home-operations.com/endpoint" (1)
string
route.authelia.hostnames[] (2)
string
route.authelia.parentRefs[].name (2)
string
route.authelia.parentRefs[].namespace (2)
string
route.authelia.parentRefs[].sectionName (2)
string
route.external.hostnames[] (1)
string
route.external.parentRefs[].name (1)
string
route.external.parentRefs[].namespace (1)
string
route.external.parentRefs[].sectionName (1)
string
route.external.rules[].backendRefs[].identifier (1)
string
route.external.rules[].backendRefs[].port (1)
number
route.external.rules[].matches[].path.type (1)
string
route.external.rules[].matches[].path.value (1)
string
route.internal.annotations."external-dns.alpha.kubernetes.io/controller" (1)
string
route.internal.hostnames[] (1)
string
route.internal.parentRefs[].name (1)
string
route.internal.parentRefs[].namespace (1)
string
route.internal.parentRefs[].sectionName (1)
string
route.internal.rules[].backendRefs[].identifier (1)
string
route.internal.rules[].backendRefs[].port (1)
number
route.internal.rules[].matches[].path.type (1)
string
route.internal.rules[].matches[].path.value (1)
string