authelia: secure portainer, keycloak, allow local

This commit is contained in:
Lukáš Kucharczyk 2021-06-21 11:32:24 +02:00
parent 45f14658e4
commit 17a5d0550d
No known key found for this signature in database
GPG Key ID: 65524498C0196B64
1 changed files with 8 additions and 0 deletions

View File

@ -26,11 +26,19 @@ authentication_backend:
password: {{ vault_openldap_admin_password }}
access_control:
default_policy: deny
networks:
- name: local
networks:
- 192.168.0.0/24
rules:
- domain: "*.{{ base_domain }}"
networks:
- local
policy: bypass
- domain: portainer.{{ base_domain }}
policy: one_factor
- domain: keycloak.{{ base_domain }}
policy: one_factor
session:
name: authelia_session
secret: somerandomsecret