host: 0.0.0.0
port: 9091
logs_level: trace
jwt_secret: {{ env.Getenv "PRIVATE_DOMAIN" }}-jwt-secret
authentication_backend:
  file:
    path: /opt/authelia/users_database.yml

    # {{ env.Getenv "ROOT_DOMAIN" }}
session:
  name: authelia_session
  secret: {{ env.Getenv "PRIVATE_DOMAIN" }}-token-secret
  domain: {{ env.Getenv "PRIVATE_DOMAIN" }}
  expiration: 604800
  inactivity: 300

storage:
  local:
    path: /opt/authelia/db.sqlite3

totp:
  issuer: {{ env.Getenv "PRIVATE_DOMAIN" }}

access_control:
  default_policy: two_factor

  rules:
    - domain: "*"
      networks:
        - 192.168.1.0/23
      policy: bypass


regulation:
  max_retries: 5
  find_time: 120
  ban_time: 180

notifier:
  filesystem:
    filename: /opt/authelia/notification.txt