---
###############################################################
#                   Authelia configuration                    #
###############################################################

server:
  address: 'tcp://:9091'

theme: "dark"

log:
  level: 'debug'

totp:
  issuer: 'authelia.com'

access_control:
  default_policy: 'deny'
  rules:
    # Rules applied to everyone
    # - domain: '*.alice.ufsj.edu.br'
    #   policy: 'one_factor'
    - domain: 'ldap.alice.ufsj.edu.br'
      policy: 'bypass'
    - domain: 'authelia.alice.ufsj.edu.br'
      policy: 'bypass'
    - domain: 'traefik.alice.ufsj.edu.br'
      policy: 'one_factor'
    - domain: 'docker.alice.ufsj.edu.br'
      policy: 'one_factor'
    - domain: 'dash.alice.ufsj.edu.br'
      policy: 'one_factor'
    # - domain: 'secure.example.com'
    #   policy: 'two_factor'

session:
  # This secret can also be set using the env variables AUTHELIA_SESSION_SECRET_FILE
  # secret: 'insecure_session_secret'

  cookies:
    - name: 'authelia_session'
      domain: 'alice.ufsj.edu.br'  # Should match whatever your root protected domain is
      authelia_url: 'https://authelia.alice.ufsj.edu.br'
      expiration: '1 hour'
      inactivity: '5 minutes'

  # redis:
  #   host: 'redis'
  #   port: 6379
    # This secret can also be set using the env variables AUTHELIA_SESSION_REDIS_PASSWORD_FILE
    # password: authelia

regulation:
  max_retries: 3
  find_time: '2 minutes'
  ban_time: '5 minutes'

storage:
#   encryption_key: 'you_must_generate_a_random_string_of_more_than_twenty_chars_and_configure_this'
  local:
    path: '/config/db.sqlite3'
notifier:
  disable_startup_check: true
  template_path: ''
  # filesystem: {}
  # smtp: {}
#   filesystem:
  smtp:
    username: 'test'
    # This secret can also be set using the env variables AUTHELIA_NOTIFIER_SMTP_PASSWORD_FILE
    # password: 'password'
    address: 'smtp://mail.alice.ufsj.edu.br:25'
    sender: 'admin@alice.ufsj.edu.br'