d3vyce/blog
1
0
Fork 0
Code Issues 1 Pull Requests 1 Actions Packages Projects Releases Wiki Activity

fix/feat: many things

Browse Source
This commit is contained in:
d3vyce
2024-02-18 16:03:49 +01:00
parent 89e218e67b
commit 16316ffa90
36 changed files with 147 additions and 85 deletions
Download Patch File Download Diff File Expand all files Collapse all files

13
content/posts/authelia-selfhosted-sso/index.md
View File

@ -1,9 +1,8 @@
---
title: "Authelia : a selfhosted SSO"
date: 2022-04-10
draft: false
slug: "authelia-selfhosted-sso"
tags: ["sso", "tools"]
tags: ["authentication", "docker", "sso", "tools"]
type: "security"
---
@ -29,7 +28,7 @@ First of all, let's start by installing and configuring the docker. For that you
In my case I use Unraid and a template is directly available. I just have to set the port to use for the web interface.
<img src="img/image-1.png"/>
<img src="img/image-1.png" alt="Unraid docker setup"/>
Before launching the docker we will have to make several changes to the configuration file.
@ -105,7 +104,7 @@ docker run --rm authelia/authelia:latest authelia hash-password 'yourpassword'
If this does not work you can manually create the hash using this [site](https://argon2.online) and these parameters:
<img src="img/image-2.png"/>
<img src="img/image-2.png" alt="Argon2 hash generator"/>
### Access control
For the access policy we will do something simple with a single role. But nothing prevents you from creating several roles with different rights and access.
@ -285,17 +284,17 @@ real_ip_recursive on;
Then you can add it in the `Advanced` tab of the desired subdomain:
<img src="img/image-3.png"/>
<img src="img/image-3.png" alt="NginxProxyManager new proxy host advanced options"/>
After saving, go to the address of your subdomain to verify that it works. You should arrive on the following page:
<img src="img/image-4.png"/>
<img src="img/image-4.png" alt="Authelia login page"/>
You can connect with one of the credencials you created in the `users_database.yml` file. Once the connection is done, you should be redirected to the application hosted on the subdomain!
To configure/modify the double authentication method, go to the subdomain you have configured for Authelia (`ex. auth.youdomain.com`). Then select `Methods`:
<img src="img/image-5.png"/>
<img src="img/image-5.png" alt="Authelia 2FA modal"/>
## Conclusion