--- # yaml-language-server: $schema=https://kubernetes-schemas.devbu.io/helmrelease_v2beta1.json apiVersion: helm.toolkit.fluxcd.io/v2beta1 kind: HelmRelease metadata: name: authelia namespace: default spec: values: env: AUTHELIA_AUTHENTICATION_BACKEND_LDAP_ADDITIONAL_USERS_DN: ou=users AUTHELIA_AUTHENTICATION_BACKEND_LDAP_BASE_DN: dc=home,dc=arpa AUTHELIA_AUTHENTICATION_BACKEND_LDAP_DISPLAY_NAME_ATTRIBUTE: givenName AUTHELIA_AUTHENTICATION_BACKEND_LDAP_GROUPS_FILTER: "(&(memberUid={username})(objectClass=posixGroup))" AUTHELIA_AUTHENTICATION_BACKEND_LDAP_GROUP_NAME_ATTRIBUTE: cn AUTHELIA_AUTHENTICATION_BACKEND_LDAP_MAIL_ATTRIBUTE: mail AUTHELIA_AUTHENTICATION_BACKEND_LDAP_URL: "ldap://glauth.default.svc.cluster.local.:8389" AUTHELIA_AUTHENTICATION_BACKEND_LDAP_USER: cn=search,ou=svcaccts,dc=home,dc=arpa AUTHELIA_AUTHENTICATION_BACKEND_LDAP_USERNAME_ATTRIBUTE: uid AUTHELIA_AUTHENTICATION_BACKEND_LDAP_USERS_FILTER: "(&({username_attribute}={input})(objectClass=posixAccount))" AUTHELIA_AUTHENTICATION_BACKEND_PASSWORD_RESET_DISABLE: "true" AUTHELIA_DEFAULT_REDIRECTION_URL: "https://auth.${SECRET_CLUSTER_DOMAIN}" AUTHELIA_DUO_API_DISABLE: "true" AUTHELIA_LOG_LEVEL: trace AUTHELIA_NOTIFIER_SMTP_DISABLE_REQUIRE_TLS: "true" AUTHELIA_NOTIFIER_SMTP_HOST: smtp-relay.default.svc.cluster.local. AUTHELIA_NOTIFIER_SMTP_PORT: "2525" AUTHELIA_NOTIFIER_SMTP_SENDER: "Authelia " AUTHELIA_SERVER_DISABLE_HEALTHCHECK: "true" AUTHELIA_SERVER_PORT: 8888 AUTHELIA_SESSION_DOMAIN: "${SECRET_CLUSTER_DOMAIN}" AUTHELIA_SESSION_REDIS_DATABASE_INDEX: 14 AUTHELIA_SESSION_REDIS_HOST: redis.default.svc.cluster.local. AUTHELIA_STORAGE_POSTGRES_DATABASE: authelia AUTHELIA_STORAGE_POSTGRES_HOST: ${POSTGRES_HOST} AUTHELIA_TELEMETRY_METRICS_ADDRESS: "tcp://0.0.0.0:8080" AUTHELIA_TELEMETRY_METRICS_ENABLED: "true" AUTHELIA_THEME: grey AUTHELIA_TOTP_ISSUER: authelia.com AUTHELIA_WEBAUTHN_DISABLE: "true"