2018-08-27 04:46:15 +07:00
< p align = "center" >
2019-12-06 03:52:04 +07:00
< img src = "./docs/images/authelia-title.png" width = "350" title = "Authelia" >
2018-08-27 04:46:15 +07:00
< / p >
2020-02-28 07:23:53 +07:00
<!-- Current release: 4.5.0 -->
2016-12-18 18:35:56 +07:00
2020-01-18 23:54:40 +07:00
[![Build ](https://img.shields.io/buildkite/d6543d3ece3433f46dbe5fd9fcfaf1f68a6dbc48eb1048bc22/master?style=flat-square&color=brightgreen )](https://buildkite.com/authelia/authelia)
2020-02-10 00:04:28 +07:00
[![Go Report Card ](https://goreportcard.com/badge/github.com/authelia/authelia?style=flat-square )](https://goreportcard.com/report/github.com/authelia/authelia)
2020-02-29 20:12:23 +07:00
[![Docker Tag ](https://img.shields.io/docker/v/authelia/authelia?logo=docker&style=flat-square&color=blue&sort=semver )](https://microbadger.com/images/authelia/authelia)
[![Docker Size ](https://img.shields.io/docker/image-size/authelia/authelia?logo=docker&style=flat-square&color=blue&sort=semver )](https://hub.docker.com/r/authelia/authelia/tags)
2020-01-18 23:54:40 +07:00
[![GitHub Release ](https://img.shields.io/github/release/authelia/authelia.svg?logo=github&style=flat-square&color=blue )](https://github.com/authelia/authelia/releases)
2020-01-24 16:21:17 +07:00
[![AUR source version ](https://img.shields.io/aur/version/authelia?logo=arch-linux&label=authelia&style=flat-square&color=blue )](https://aur.archlinux.org/packages/authelia/)
2020-01-28 04:51:53 +07:00
[![AUR binary version ](https://img.shields.io/aur/version/authelia-bin?logo=arch-linux&label=authelia-bin&style=flat-square&color=blue )](https://aur.archlinux.org/packages/authelia-bin/)
[![AUR development version ](https://img.shields.io/aur/version/authelia-git?logo=arch-linux&label=authelia-git&style=flat-square&color=blue )](https://aur.archlinux.org/packages/authelia-git/)
2020-02-10 00:04:28 +07:00
[![License ](https://img.shields.io/github/license/authelia/authelia?style=flat-square&color=blue )][Apache 2.0]
2020-01-19 17:39:44 +07:00
[![Sponsor ](https://img.shields.io/badge/donate-opencollective-blue.svg?style=flat-square )](https://opencollective.com/authelia-sponsors)
2020-01-24 16:21:17 +07:00
[![Matrix ](https://img.shields.io/matrix/authelia:matrix.org?logo=matrix&style=flat-square&color=blue )](https://riot.im/app/#/room/#authelia:matrix.org)
2016-12-18 02:19:10 +07:00
2019-03-25 00:45:32 +07:00
**Authelia** is an open-source authentication and authorization server
providing 2-factor authentication and single sign-on (SSO) for your
2019-04-18 04:02:10 +07:00
applications via a web portal.
2020-01-18 06:58:08 +07:00
It acts as a companion of reverse proxies like [nginx], [Traefik] or [HAProxy] to let them know whether queries should pass through. Unauthenticated user are
2019-12-10 04:34:33 +07:00
redirected to Authelia Sign-in portal instead.
2019-04-18 04:02:10 +07:00
2020-02-29 19:22:43 +07:00
Documentation is available at https://docs.authelia.com.
2019-12-10 04:34:33 +07:00
The architecture is shown in the diagram below.
2019-10-29 05:41:21 +07:00
2019-12-10 04:34:33 +07:00
< p align = "center" style = "margin:50px" >
< img src = "./docs/images/archi.png" / >
2019-04-18 04:02:10 +07:00
< / p >
2018-04-26 14:22:40 +07:00
2019-12-10 04:34:33 +07:00
**BREAKING NEWS: Authelia v4 has been released!
Please read BREAKING.md if you want to migrate from v3 to v4. Otherwise, start fresh in v4 and enjoy!**
2020-01-24 16:21:17 +07:00
**Authelia** can be installed as a standalone service from the [AUR ](https://aur.archlinux.org/packages/authelia/ ), using a [Static binary ](https://github.com/authelia/authelia/releases/latest ), [Docker]
or can also be deployed easily on [Kubernetes] leveraging ingress controllers and ingress configuration.
2019-04-18 04:02:10 +07:00
< p align = "center" >
2019-12-06 03:52:04 +07:00
< img src = "./docs/images/logos/kubernetes.logo.png" height = "100" / >
< img src = "./docs/images/logos/docker.logo.png" width = "100" >
2019-04-18 04:02:10 +07:00
< / p >
Here is what Authelia's portal looks like
2018-04-26 14:22:40 +07:00
2018-08-27 04:46:15 +07:00
< p align = "center" >
2019-12-06 03:52:04 +07:00
< img src = "./docs/images/1FA.png" width = "400" / >
< img src = "./docs/images/2FA-METHODS.png" width = "400" / >
2018-08-27 04:46:15 +07:00
< / p >
2017-01-29 22:29:36 +07:00
2018-08-27 04:46:15 +07:00
## Features summary
2017-07-14 05:52:07 +07:00
2018-08-27 04:46:15 +07:00
Here is the list of the main available features:
2017-07-14 05:52:07 +07:00
2019-03-25 00:45:32 +07:00
* Several kind of second factor:
2020-03-01 06:27:23 +07:00
* **[Security Key (U2F)](https://docs.authelia.com/features/2fa/security-key)** with [Yubikey].
* **[Time-based One-Time password](https://docs.authelia.com/features/2fa/one-time-password)** with [Google Authenticator].
* **[Mobile Push Notifications](https://docs.authelia.com/features/2fa/push-notifications)** with [Duo ](https://duo.com/ ).
2019-04-18 04:02:10 +07:00
* Password reset with identity verification using email confirmation.
2018-08-27 04:46:15 +07:00
* Single-factor only authentication method available.
2017-01-29 22:29:36 +07:00
* Access restriction after too many authentication attempts.
2019-03-28 05:09:01 +07:00
* Fine-grained access control per subdomain, user, resource and network.
2019-04-18 04:02:10 +07:00
* Support of basic authentication for endpoints protected by single factor.
2019-12-07 20:39:21 +07:00
* Highly available using a remote database and Redis as a highly available KV store.
2019-04-18 04:02:10 +07:00
* Compatible with Kubernetes [ingress-nginx ](https://github.com/kubernetes/ingress-nginx ) controller out of the box.
2016-12-18 02:19:10 +07:00
2020-03-01 06:27:23 +07:00
For more details about the features, follow [Features ](https://docs.authelia.com/features/ ).
2017-06-29 16:51:52 +07:00
2019-04-18 04:02:10 +07:00
## Proxy support
2020-01-17 03:57:44 +07:00
Authelia works in combination with [nginx], [Traefik] or [HAProxy]. It can be deployed on bare metal with
2020-01-19 06:31:08 +07:00
Docker or on top of [Kubernetes].
2019-04-18 04:02:10 +07:00
< p align = "center" >
2019-12-06 03:52:04 +07:00
< img src = "./docs/images/logos/nginx.logo.png" height = "50" / >
2020-01-10 12:03:58 +07:00
< img src = "./docs/images/logos/traefik.logo.png" height = "50" / >
< img src = "./docs/images/logos/haproxy.logo.png" height = "50" / >
2019-12-06 03:52:04 +07:00
< img src = "./docs/images/logos/kubernetes.logo.png" height = "50" / >
2019-04-18 04:02:10 +07:00
< / p >
2018-08-27 04:46:15 +07:00
## Getting Started
2017-01-29 22:29:36 +07:00
2019-03-04 05:51:52 +07:00
You can start off with
2019-12-24 09:14:52 +07:00
git clone https://github.com/authelia/authelia.git & & cd authelia
2019-03-04 05:51:52 +07:00
source bootstrap.sh
2020-03-01 06:27:23 +07:00
If you want to go further, please read [Getting Started ](https://docs.authelia.com/getting-started ).
2018-11-16 14:39:57 +07:00
## Deployment
2019-03-04 05:51:52 +07:00
Now that you have tested **Authelia** and you want to try it out in your own infrastructure,
2020-03-01 06:27:23 +07:00
you can learn how to deploy and use it with [Deployment ](https://docs.authelia.com/deployment/deployment-ha ).
2019-03-04 05:51:52 +07:00
This guide will show you how to deploy it on bare metal as well as on
[Kubernetes ](https://kubernetes.io/ ).
2017-07-14 05:52:07 +07:00
2017-10-15 22:57:12 +07:00
## Security
2020-03-01 06:27:23 +07:00
Security is taken very seriously here, therefore we follow the rule of responsible
disclosure and we encourage you to do so.
2020-01-19 17:58:23 +07:00
2020-03-01 06:27:23 +07:00
Would you like to report any vulnerability discovered in Authelia, please first contact
**clems4ever** on [Matrix ](https://riot.im/app/#/room/#authelia:matrix.org ) or by
[email ](mailto:clement.michaud34@gmail.com ).
2017-10-15 22:57:12 +07:00
2020-03-01 06:27:23 +07:00
For details about security measures implemented in Authelia, please follow
this [link ](https://docs.authelia.com/security/measures.html ).
2020-01-19 17:58:23 +07:00
2020-01-24 16:21:17 +07:00
## Breaking changes
2017-01-29 22:29:36 +07:00
2020-01-24 16:21:17 +07:00
See [BREAKING ](./BREAKING.md ).
2018-04-26 14:22:40 +07:00
2020-03-01 06:27:23 +07:00
## Contribute
2018-11-16 14:39:57 +07:00
2020-03-01 06:27:23 +07:00
If you want to contribute to Authelia, check the documentation available
[here ](https://docs.authelia.com/contributing/ ).
2016-12-18 02:19:10 +07:00
2020-01-19 17:39:44 +07:00
## Sponsorship
[Become a backer ](https://opencollective.com/authelia-sponsors ) to support Authelia.
2016-12-18 02:19:10 +07:00
## License
2018-08-27 04:46:15 +07:00
2019-04-17 04:40:15 +07:00
**Authelia** is **licensed** under the ** [Apache 2.0]** license. The terms of the license are detailed
2019-12-06 03:52:04 +07:00
in [LICENSE ](./LICENSE ).
2016-12-18 02:19:10 +07:00
2019-04-17 04:40:15 +07:00
[Apache 2.0]: https://www.apache.org/licenses/LICENSE-2.0
2017-01-29 22:29:36 +07:00
[TOTP]: https://en.wikipedia.org/wiki/Time-based_One-time_Password_Algorithm
2019-03-25 00:45:32 +07:00
[Security Key]: https://www.yubico.com/about/background/fido/
2017-01-29 22:29:36 +07:00
[Yubikey]: https://www.yubico.com/products/yubikey-hardware/yubikey4/
2020-01-18 06:58:08 +07:00
[auth_request]: https://nginx.org/en/docs/http/ngx_http_auth_request_module.html
2017-06-29 16:51:52 +07:00
[Google Authenticator]: https://play.google.com/store/apps/details?id=com.google.android.apps.authenticator2& hl=en
2019-12-06 03:52:04 +07:00
[config.template.yml]: ./config.template.yml
2019-04-18 04:02:10 +07:00
[nginx]: https://www.nginx.com/
[Traefik]: https://traefik.io/
2020-01-18 06:58:08 +07:00
[HAProxy]: https://www.haproxy.org/
[Docker]: https://docker.com/
2020-01-18 06:41:29 +07:00
[Kubernetes]: https://kubernetes.io/