authelia/internal/suites/Postgres/configuration.yml

###############################################################
#                Authelia minimal configuration               #
###############################################################

port: 9091

logs_level: debug

default_redirection_url: https://home.example.com:8080/

jwt_secret: very_important_secret

authentication_backend:
  file:
    path: /var/lib/authelia/users.yml

session:
  secret: unsecure_session_secret
  domain: example.com
  expiration: 3600 # 1 hour
  inactivity: 300 # 5 minutes

# Configuration of the storage backend used to store data and secrets. i.e. totp data
storage:
  postgres:
    host: postgres
    port: 5432
    database: authelia
    username: admin
    password: password

# TOTP Issuer Name
#
# This will be the issuer name displayed in Google Authenticator
# See: https://github.com/google/google-authenticator/wiki/Key-Uri-Format for more info on issuer names
totp:
  issuer: example.com

access_control:
  default_policy: deny
  rules:
    - domain: "public.example.com"
      policy: bypass
    - domain: "admin.example.com"
      policy: two_factor
    - domain: "secure.example.com"
      policy: two_factor
    - domain: "singlefactor.example.com"
      policy: one_factor

# Configuration of the authentication regulation mechanism.
regulation:
  # Set it to 0 to disable max_retries.
  max_retries: 3

  # The user is banned if the authentication failed `max_retries` times in a `find_time` seconds window.
  find_time: 8

  # The length of time before a banned user can login again.
  ban_time: 10

notifier:
  # Use a SMTP server for sending notifications
  smtp:
    host: smtp
    port: 1025
    sender: admin@example.com
    disable_require_tls: true
Add support for PostgreSQL. 2019-11-16 19:50:58 +00:00			`###############################################################`
			`# Authelia minimal configuration #`
			`###############################################################`

			`port: 9091`

			`logs_level: debug`

			`default_redirection_url: https://home.example.com:8080/`

			`jwt_secret: very_important_secret`

			`authentication_backend:`
			`file:`
Rewrite and fix remaining suites in Go. 2019-11-24 20:27:59 +00:00			`path: /var/lib/authelia/users.yml`
Add support for PostgreSQL. 2019-11-16 19:50:58 +00:00
			`session:`
			`secret: unsecure_session_secret`
			`domain: example.com`
			`expiration: 3600 # 1 hour`
			`inactivity: 300 # 5 minutes`

			`# Configuration of the storage backend used to store data and secrets. i.e. totp data`
			`storage:`
			`postgres:`
			`host: postgres`
			`port: 5432`
			`database: authelia`
			`username: admin`
			`password: password`

			`# TOTP Issuer Name`
			`#`
			`# This will be the issuer name displayed in Google Authenticator`
			`# See: https://github.com/google/google-authenticator/wiki/Key-Uri-Format for more info on issuer names`
			`totp:`
			`issuer: example.com`

			`access_control:`
			`default_policy: deny`
			`rules:`
			`- domain: "public.example.com"`
			`policy: bypass`
			`- domain: "admin.example.com"`
			`policy: two_factor`
			`- domain: "secure.example.com"`
			`policy: two_factor`
			`- domain: "singlefactor.example.com"`
			`policy: one_factor`

			`# Configuration of the authentication regulation mechanism.`
			`regulation:`
			`# Set it to 0 to disable max_retries.`
			`max_retries: 3`

Misc Spelling Corrections - Mostly changes to spelling of comments/docs/displayed text - A few changes to test function names 2020-01-21 00:10:00 +00:00			# The user is banned if the authentication failed `max_retries` times in a `find_time` seconds window.
Add support for PostgreSQL. 2019-11-16 19:50:58 +00:00			`find_time: 8`

			`# The length of time before a banned user can login again.`
			`ban_time: 10`

			`notifier:`
			`# Use a SMTP server for sending notifications`
			`smtp:`
			`host: smtp`
			`port: 1025`
			`sender: admin@example.com`
Force TLS and valid x509 certs in SMTP Notifier by default - Adjust AUTH LOGIN functionality to be closer to AUTH PLAIN - Removed: secure (notifier smtp conf) boolean string - Added: disable_verify_cert (notifier smtp conf) boolean - disables X509 validation of certificates - Added: disable_require_tls (notifier smtp conf) boolean - allows emails to be sent over plain text (for non-authenticated only) - Added: trusted_cert (notifier smtp conf) string (path) - allows specifying the path of a PEM format cert to add to trusted cert pool - Make SMTP notifier return errors on connection over plain text - Make SMTP notifier return errors on TLS connection with invalid certs - Implemented various debug logging for the SMTP notifier - Implemented explicit SMTP closes on errors (previously left con open) - Split SMTPNotifier Send func to seperate funcs for: - writing future test suites and startup checks more easily - organization and readability - Add details of changes to docs/security.yml - Adjust config.yml's (template and test) for the changes 2019-12-30 02:03:51 +00:00			`disable_require_tls: true`