Authelia •

Authelia is an open-source single-sign on (SSO) and identity management for a small server.

Overview

Screen Shot 2025-03-09 at 19.32.54.png

Authelia is an open-source single-sign on (SSO) and identity management for a small server.

Media

Screenshots

Authelia v4.38.19

Screen Shot 2025-03-09 at 19.32.54.png Screen Shot 2025-03-09 at 19.32.46.png Screen Shot 2025-03-09 at 19.33.04.png
Screen Shot 2025-03-09 at 19.32.09.png

Setup & Configuration

We need to install the service through Portainer and configure any necessary settings.

Setup & Configuration

Preparation

There are some things we need to do in preparation to install this service.

Volumes

Persistent Data

This is where the service will store its own application data and ensures we can quickly update the service image.

Ensure your user has permissions to access the folder.

Media Folders

This service will need access to the folders where you store your media files. 

Ensure your user has permissions to access the folder.

Download Folders

This service will need access to the folder where you torrent or usenet folder store their completed downloads.

Ensure your user has permissions to access the folder.

Environment

TZ

This is the current time zone formatted using the tz database.

For example: America/Vancouver

PUID

This is the numeric ID of the user account on Debian.  If you are unsure, open a terminal and run:

id -u
PGID

This is the numeric ID of the user account's group on Debian.  If you are unsure, open a terminal and run:

id -g

Passwords

Keep these securely stored in a password manager, such as VaultWarden.

DB_ROOT_PASS

This is the password that will be used for root access to the database.

It is important to use secure, randomly generated password.

You can use a random alphanumeric string from a password manager, or open the terminal and run the command:

tr -dc 'A-Za-z0-9!"#$%&'\''()*+,-./:;<=>?@[\]^_`{|}~' </dev/urandom | head -c 32; echo

This pulls a random string from the 'urandom' device, removes unwanted characters and trim it to an appropriate length.

OWNCLOUD_ADMIN_PASSWORD

This is the password for the administrator account that will be used within the web interface.

It is important to use secure passphrase that is easy-to-remember.

Setup & Configuration

Installation

The service can be installed through the Portainer web interface. 

Learn about creating a new stack.

Docker Compose

Use the following code to install the service:

---
services:
  authelia:
    container_name: 'authelia'
    image: 'authelia/authelia'
    restart: 'unless-stopped'
    ports:
      - "9091:9091"
    volumes:
      # Persistent Data
      - '/srv/authelia/data:/config'
      - '/srv/authelia/secrets:/secrets'
    environment:
      - TZ='Americas/Vancouver'
Setup & Configuration

Updating

Re-Deploy the Stack

This service has been optimized for running in Docker.

This allows you to re-deploy the stack through Portainer to download the latest updates. 

User Manual

Development

This software is released under the Apache 2.0 license

You can learn more about how to contribute to Authelia through their GitHub

The development team also accepts sponsorships.

Resources

Official