The Single Sign-On Multi-Factor portal for web apps, Authelia authentication and authorization server
Authelia is an open-source authentication and authorization server providing 2-factor authentication and single sign-on (SSO) for your applications via a web portal. It acts as a companion of reverse proxies like nginx, Traefik or HAProxy to let them know whether queries should pass through. Unauthenticated user are redirected to Authelia Sign-in portal instead.
Documentation is available at https://docs.authelia.com.
The architecture is shown in the diagram below.
Auhtelia service start automatically if your /opt/Authelia/config.yml is well setup
Here is the list of the main available features:
Several kind of second factor:
Security Key (U2F) with Yubikey.
Time-based One-Time password with Google Authenticator.
Mobile Push Notifications with Duo.
Password reset with identity verification using email confirmation.
Single-factor only authentication method available.
Access restriction after too many authentication attempts.
Fine-grained access control per subdomain, user, resource and network.
Support of basic authentication for endpoints protected by single factor.
Highly available using a remote database and Redis as a highly available KV store.
Compatible with Kubernetes ingress-nginx controller out of the box.
For more details about the features, follow Features.
If you want to know more about the roadmap, follow Roadmap.
Authelia works in combination with nginx, Traefik or HAProxy. It can be deployed on bare metal with Docker or on top of Kubernetes.
TIP ME !!
Your gratitude and finance will help me to continue integration of this QPKG and maintain up to date versions.