self/infra
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Compare commits

base: self:45201de406d14e149539706e207c4c2f9752359a
Branches Tags
self:master
self:prod
self:dev
self:gitea-migration
..
compare: self:74a45eb95cc8c5564cac4da3532aa3da80c4b05e
Branches Tags
self:prod
self:master
self:dev
self:gitea-migration

No commits in common. "45201de406d14e149539706e207c4c2f9752359a" and "74a45eb95cc8c5564cac4da3532aa3da80c4b05e" have entirely different histories.
45201de406 ... 74a45eb95c

4 changed files with 7 additions and 49 deletions
Show Stats Expand all files Collapse all files

8
.deploy-infra/deploy-prod.yaml
View File

@ -28,7 +28,7 @@ services:
# order: start-first # order: start-first
authelia: authelia:
image: mathwave/sprint-repo:authelia image: authelia/authelia
networks: networks:
- common-infra-nginx - common-infra-nginx
environment: environment:
@ -39,7 +39,13 @@ services:
AUTHELIA_STORAGE_POSTGRES_DATABASE: "authelia" AUTHELIA_STORAGE_POSTGRES_DATABASE: "authelia"
AUTHELIA_STORAGE_POSTGRES_USERNAME: "postgres" AUTHELIA_STORAGE_POSTGRES_USERNAME: "postgres"
AUTHELIA_STORAGE_POSTGRES_PASSWORD: $DB_PASSWORD_PROD AUTHELIA_STORAGE_POSTGRES_PASSWORD: $DB_PASSWORD_PROD
AUTHELIA_AUTHENTICATION_BACKEND_FILE_USERS_0_USERNAME: "emmatveev"
AUTHELIA_AUTHENTICATION_BACKEND_FILE_USERS_0_PASSWORD: "$argon2id$v=19$m=65536,t=1,p=4$CixMXaAilVof3yk1rtghwg$V/kcl1HNDWeybrV3SrVjjdI00D1lFtuvLldkwAklSOE"
AUTHELIA_AUTHENTICATION_BACKEND_FILE_USERS_0_DISPLAYNAME: "Egor Matveev"
AUTHELIA_AUTHENTICATION_BACKEND_FILE_USERS_0_EMAIL: "emmtvv@gmail.com"
AUTHELIA_ACCESS_CONTROL_DEFAULT_POLICY: "one_factor" AUTHELIA_ACCESS_CONTROL_DEFAULT_POLICY: "one_factor"
AUTHELIA_ACCESS_CONTROL_RULES_0_DOMAIN_0: "*.chocomarsh.com"
AUTHELIA_ACCESS_CONTROL_RULES_0_POLICY: "one_factor"
AUTHELIA_NOTIFIER_SMTP_ENABLED: "false" AUTHELIA_NOTIFIER_SMTP_ENABLED: "false"
volumes: volumes:
- /sprint-data/authelia/config:/config - /sprint-data/authelia/config:/config

4
.gitea/workflows/deploy-prod.yaml
View File

@ -21,8 +21,6 @@ jobs:
run: docker build -t mathwave/sprint-repo:sprint-infra-nginx-prod nginx/nginx-prod run: docker build -t mathwave/sprint-repo:sprint-infra-nginx-prod nginx/nginx-prod
- name: build gitea runner - name: build gitea runner
run: docker build -t mathwave/sprint-repo:gitea-runner gitea-runner run: docker build -t mathwave/sprint-repo:gitea-runner gitea-runner
- name: build authelia
run: docker build -t mathwave/sprint-repo:authelia authelia
push: push:
name: Push name: Push
runs-on: [ prod ] runs-on: [ prod ]
@ -32,8 +30,6 @@ jobs:
run: docker push mathwave/sprint-repo:sprint-infra-nginx-prod run: docker push mathwave/sprint-repo:sprint-infra-nginx-prod
- name: push gitea runner - name: push gitea runner
run: docker push mathwave/sprint-repo:gitea-runner run: docker push mathwave/sprint-repo:gitea-runner
- name: push authelia
run: docker push mathwave/sprint-repo:authelia
prepare: prepare:
name: prepare name: prepare
runs-on: [prod] runs-on: [prod]

2
authelia/Dockerfile
View File

@ -1,2 +0,0 @@
FROM authelia/authelia
COPY configuration.yml /config/configuration.yml

42
authelia/configuration.yml
View File

@ -1,42 +0,0 @@
theme: dark
jwt_secret: secret-jwt-will-be-overridden-by-env
default_redirection_url: https://auth.chocomarsh.com
server:
host: 0.0.0.0
port: 9091
log:
level: info
authentication_backend:
file:
users:
emmatveev:
password: "$argon2id$v=19$m=65536,t=1,p=4$CixMXaAilVof3yk1rtghwg$V/kcl1HNDWeybrV3SrVjjdI00D1lFtuvLldkwAklSOE"
displayname: "Egor Matveev"
email: emmtvv@gmail.com
access_control:
default_policy: one_factor
rules:
- domain: "*.chocomarsh.com"
policy: one_factor
session:
name: authelia_session
expiration: 1h
inactivity: 5m
remember_me_duration: 1w
cookies:
- domain: chocomarsh.com
authelia_url: https://auth.chocomarsh.com
storage:
postgres:
address: tcp://pg.chocomarsh.com:5432
database: authelia
schema: public
username: postgres
password: autheliapass # also override with env if preferred