Compose-Examples/examples/authelia/README.md

# References

- https://github.com/authelia/authelia
- https://www.youtube.com/watch?v=u6H-Qwf4nZA&t=1314s
- https://docs.technotim.live/posts/authelia-traefik/

# Notes

You have to put the configuration files from the directory `config` here to your Docker volume bind mount.

The do the following:

1. Adjust the configuration.yml to your needs. Especially replace exmaple.com with your own domain name. Add all your to be protected subdomains to the access_control area. Replace all secrets with your secure strings (may use `openssl rand -base64 35` to generate a secure, random string).
2. Adjust users_database.yml and add your user accounts. You can create new password hashes via `docker run --rm authelia/authelia:latest authelia crypto hash generate argon2 --password 'ExamplePassword'`
3. Finally, add authelia as middleware for each container to protect. I recommend using labels. Note that authelia should always be listed first.

````
    labels:
      - traefik.enable=true
      - traefik.http.routers.protected-service.middlewares=authelia@docker,local-ipwhitelist@file
````

**Note**: You can also add Authelia as file provider middleware. See [here](../traefik/fileConfig.yml) for an example Traefik dynamic configuration file. Afterwards, you can use the file provider `authelia@file` instead or besides of `authelia@docker`.
add authelia 2023-03-01 23:37:37 +00:00			`# References`

			`- https://github.com/authelia/authelia`
			`- https://www.youtube.com/watch?v=u6H-Qwf4nZA&t=1314s`
			`- https://docs.technotim.live/posts/authelia-traefik/`

			`# Notes`

Update README.md 2023-03-02 01:20:52 +00:00			You have to put the configuration files from the directory `config` here to your Docker volume bind mount.
Update README.md add some more notes regarding authelia setup 2023-03-02 01:16:28 +00:00
			`The do the following:`

Update README.md 2023-03-02 01:22:22 +00:00			1. Adjust the configuration.yml to your needs. Especially replace exmaple.com with your own domain name. Add all your to be protected subdomains to the access_control area. Replace all secrets with your secure strings (may use `openssl rand -base64 35` to generate a secure, random string).
Update README.md add some more notes regarding authelia setup 2023-03-02 01:16:28 +00:00			2. Adjust users_database.yml and add your user accounts. You can create new password hashes via `docker run --rm authelia/authelia:latest authelia crypto hash generate argon2 --password 'ExamplePassword'`
Update README.md improve authelia middleware notes 2023-09-14 14:24:36 +00:00			`3. Finally, add authelia as middleware for each container to protect. I recommend using labels. Note that authelia should always be listed first.`
Update README.md add some more notes regarding authelia setup 2023-03-02 01:16:28 +00:00
			````
			`labels:`
			`- traefik.enable=true`
Update README.md improve authelia middleware notes 2023-09-14 14:24:36 +00:00			`- traefik.http.routers.protected-service.middlewares=authelia@docker,local-ipwhitelist@file`
Update README.md add some more notes regarding authelia setup 2023-03-02 01:16:28 +00:00			````
Update README.md 2023-03-02 01:44:36 +00:00
Update README.md improve authelia middleware notes 2023-09-14 14:24:36 +00:00			Note: You can also add Authelia as file provider middleware. See [here](../traefik/fileConfig.yml) for an example Traefik dynamic configuration file. Afterwards, you can use the file provider `authelia@file` instead or besides of `authelia@docker`.