authelia/internal/suites/ShortTimeouts/configuration.yml

###############################################################
#                Authelia minimal configuration               #
###############################################################

port: 9091

log_level: debug

jwt_secret: unsecure_secret

default_redirection_url: https://home.example.com:8080/

authentication_backend:
  file:
    path: /var/lib/authelia/users.yml

session:
  secret: unsecure_session_secret
  domain: example.com
  inactivity: 5
  expiration: 8

storage:
  local:
    path: /var/lib/authelia/db.sqlite

totp:
  issuer: example.com

access_control:
  default_policy: deny

  rules:
    - domain: singlefactor.example.com
      policy: one_factor

    - domain: "*.example.com"
      subject: "group:admins"
      policy: two_factor

    - domain: dev.example.com
      resources:
        - "^/users/john/.*$"
      subject: "user:john"
      policy: two_factor

    - domain: dev.example.com
      resources:
        - "^/users/harry/.*$"
      subject: "user:harry"
      policy: two_factor

    - domain: "*.mail.example.com"
      subject: "user:bob"
      policy: two_factor

    - domain: dev.example.com
      resources:
        - "^/users/bob/.*$"
      subject: "user:bob"
      policy: two_factor

regulation:
  max_retries: 3
  find_time: 3
  ban_time: 5

notifier:
  smtp:
    host: smtp
    port: 1025
    sender: admin@example.com
    disable_require_tls: true
Create a specific suite for short timeouts to let humans use simple suite. 2019-03-02 21:27:54 +00:00			`###############################################################`
			`# Authelia minimal configuration #`
			`###############################################################`

			`port: 9091`

[FEATURE] [BREAKING] Support writing logs in a file. (#686) * [FEATURE] Support writing logs in a file. * Add documentation about logs file path. * Rename logs_level and logs_file_path into log_level and log_file_path. * Update BREAKING.md Fixes #338 Co-authored-by: Amir Zarrinkafsh <nightah@me.com> 2020-03-09 19:57:53 +00:00			`log_level: debug`
Create a specific suite for short timeouts to let humans use simple suite. 2019-03-02 21:27:54 +00:00
Bootstrap Go implementation of Authelia. This is going to be the v4. Expected improvements: - More reliable due to static typing. - Bump of performance. - Improvement of logging. - Authelia can be shipped as a single binary. - Will likely work on ARM architecture. 2019-04-24 21:52:08 +00:00			`jwt_secret: unsecure_secret`

Create a specific suite for short timeouts to let humans use simple suite. 2019-03-02 21:27:54 +00:00			`default_redirection_url: https://home.example.com:8080/`

			`authentication_backend:`
			`file:`
Rewrite and fix remaining suites in Go. 2019-11-24 20:27:59 +00:00			`path: /var/lib/authelia/users.yml`
Create a specific suite for short timeouts to let humans use simple suite. 2019-03-02 21:27:54 +00:00
			`session:`
			`secret: unsecure_session_secret`
			`domain: example.com`
Bootstrap Go implementation of Authelia. This is going to be the v4. Expected improvements: - More reliable due to static typing. - Bump of performance. - Improvement of logging. - Authelia can be shipped as a single binary. - Will likely work on ARM architecture. 2019-04-24 21:52:08 +00:00			`inactivity: 5`
			`expiration: 8`
Create a specific suite for short timeouts to let humans use simple suite. 2019-03-02 21:27:54 +00:00
			`storage:`
			`local:`
Allow administrator to provide a Google Analytics tracking ID. Providing a GA tracking ID allows administrators to analyze how the portal is used by their users in large environments, i.e., with many users. This will make even more sense when we have users and admins management interfaces. 2019-12-07 16:40:42 +00:00			`path: /var/lib/authelia/db.sqlite`
Create a specific suite for short timeouts to let humans use simple suite. 2019-03-02 21:27:54 +00:00
			`totp:`
			`issuer: example.com`

			`access_control:`
			`default_policy: deny`

			`rules:`
[BREAKING] Create a suite for kubernetes tests. Authelia client uses hash router instead of browser router in order to work with Kubernetes nginx-ingress-controller. This is also better for users having old browsers. This commit is breaking because it requires to change the configuration of the proxy to include the # in the URL of the login portal. 2019-03-03 22:51:52 +00:00			`- domain: singlefactor.example.com`
Create a specific suite for short timeouts to let humans use simple suite. 2019-03-02 21:27:54 +00:00			`policy: one_factor`

Declare suites as Go structs and bootstrap e2e test framework in Go. Some tests are not fully rewritten in Go, a typescript wrapper is called instead until we remove the remaining TS tests and dependencies. Also, dockerize every components (mainly Authelia backend, frontend and kind) so that the project does not interfere with user host anymore (open ports for instance). The only remaining intrusive change is the one done during bootstrap to add entries in /etc/hosts. It will soon be avoided using authelia.com domain that I own. 2019-11-02 14:32:58 +00:00			`- domain: "*.example.com"`
Create a specific suite for short timeouts to let humans use simple suite. 2019-03-02 21:27:54 +00:00			`subject: "group:admins"`
			`policy: two_factor`

			`- domain: dev.example.com`
			`resources:`
Declare suites as Go structs and bootstrap e2e test framework in Go. Some tests are not fully rewritten in Go, a typescript wrapper is called instead until we remove the remaining TS tests and dependencies. Also, dockerize every components (mainly Authelia backend, frontend and kind) so that the project does not interfere with user host anymore (open ports for instance). The only remaining intrusive change is the one done during bootstrap to add entries in /etc/hosts. It will soon be avoided using authelia.com domain that I own. 2019-11-02 14:32:58 +00:00			`- "^/users/john/.*$"`
Create a specific suite for short timeouts to let humans use simple suite. 2019-03-02 21:27:54 +00:00			`subject: "user:john"`
			`policy: two_factor`

			`- domain: dev.example.com`
			`resources:`
Declare suites as Go structs and bootstrap e2e test framework in Go. Some tests are not fully rewritten in Go, a typescript wrapper is called instead until we remove the remaining TS tests and dependencies. Also, dockerize every components (mainly Authelia backend, frontend and kind) so that the project does not interfere with user host anymore (open ports for instance). The only remaining intrusive change is the one done during bootstrap to add entries in /etc/hosts. It will soon be avoided using authelia.com domain that I own. 2019-11-02 14:32:58 +00:00			`- "^/users/harry/.*$"`
Create a specific suite for short timeouts to let humans use simple suite. 2019-03-02 21:27:54 +00:00			`subject: "user:harry"`
			`policy: two_factor`

Declare suites as Go structs and bootstrap e2e test framework in Go. Some tests are not fully rewritten in Go, a typescript wrapper is called instead until we remove the remaining TS tests and dependencies. Also, dockerize every components (mainly Authelia backend, frontend and kind) so that the project does not interfere with user host anymore (open ports for instance). The only remaining intrusive change is the one done during bootstrap to add entries in /etc/hosts. It will soon be avoided using authelia.com domain that I own. 2019-11-02 14:32:58 +00:00			`- domain: "*.mail.example.com"`
Create a specific suite for short timeouts to let humans use simple suite. 2019-03-02 21:27:54 +00:00			`subject: "user:bob"`
			`policy: two_factor`

			`- domain: dev.example.com`
			`resources:`
Declare suites as Go structs and bootstrap e2e test framework in Go. Some tests are not fully rewritten in Go, a typescript wrapper is called instead until we remove the remaining TS tests and dependencies. Also, dockerize every components (mainly Authelia backend, frontend and kind) so that the project does not interfere with user host anymore (open ports for instance). The only remaining intrusive change is the one done during bootstrap to add entries in /etc/hosts. It will soon be avoided using authelia.com domain that I own. 2019-11-02 14:32:58 +00:00			`- "^/users/bob/.*$"`
Create a specific suite for short timeouts to let humans use simple suite. 2019-03-02 21:27:54 +00:00			`subject: "user:bob"`
			`policy: two_factor`

Declare suites as Go structs and bootstrap e2e test framework in Go. Some tests are not fully rewritten in Go, a typescript wrapper is called instead until we remove the remaining TS tests and dependencies. Also, dockerize every components (mainly Authelia backend, frontend and kind) so that the project does not interfere with user host anymore (open ports for instance). The only remaining intrusive change is the one done during bootstrap to add entries in /etc/hosts. It will soon be avoided using authelia.com domain that I own. 2019-11-02 14:32:58 +00:00			`regulation:`
Create a specific suite for short timeouts to let humans use simple suite. 2019-03-02 21:27:54 +00:00			`max_retries: 3`
Bootstrap Go implementation of Authelia. This is going to be the v4. Expected improvements: - More reliable due to static typing. - Bump of performance. - Improvement of logging. - Authelia can be shipped as a single binary. - Will likely work on ARM architecture. 2019-04-24 21:52:08 +00:00			`find_time: 3`
Create a specific suite for short timeouts to let humans use simple suite. 2019-03-02 21:27:54 +00:00			`ban_time: 5`

			`notifier:`
			`smtp:`
Declare suites as Go structs and bootstrap e2e test framework in Go. Some tests are not fully rewritten in Go, a typescript wrapper is called instead until we remove the remaining TS tests and dependencies. Also, dockerize every components (mainly Authelia backend, frontend and kind) so that the project does not interfere with user host anymore (open ports for instance). The only remaining intrusive change is the one done during bootstrap to add entries in /etc/hosts. It will soon be avoided using authelia.com domain that I own. 2019-11-02 14:32:58 +00:00			`host: smtp`
Create a specific suite for short timeouts to let humans use simple suite. 2019-03-02 21:27:54 +00:00			`port: 1025`
			`sender: admin@example.com`
Force TLS and valid x509 certs in SMTP Notifier by default - Adjust AUTH LOGIN functionality to be closer to AUTH PLAIN - Removed: secure (notifier smtp conf) boolean string - Added: disable_verify_cert (notifier smtp conf) boolean - disables X509 validation of certificates - Added: disable_require_tls (notifier smtp conf) boolean - allows emails to be sent over plain text (for non-authenticated only) - Added: trusted_cert (notifier smtp conf) string (path) - allows specifying the path of a PEM format cert to add to trusted cert pool - Make SMTP notifier return errors on connection over plain text - Make SMTP notifier return errors on TLS connection with invalid certs - Implemented various debug logging for the SMTP notifier - Implemented explicit SMTP closes on errors (previously left con open) - Split SMTPNotifier Send func to seperate funcs for: - writing future test suites and startup checks more easily - organization and readability - Add details of changes to docs/security.yml - Adjust config.yml's (template and test) for the changes 2019-12-30 02:03:51 +00:00			`disable_require_tls: true`