Thanks for the info!

You are welcome. Those mind reading classes are paying off. Hahaha. Enjoy!

Glad it helped!

Thank you. Enjoy that great weather, My videos will be here on the not so great days.

I'll do my best. thank you for watching.

Thanks for the sub!

I've never run across that error, you may want to reach out to the authelia team and see if they can provide some help.

@@AwesomeOpenSource solved , thanks

@@JanDemore i've the same error. How do you solved it?

Sorry but I can’t reminder, I think I I have edited something

Been looking at Authetik, Keycloadk, and a few others for some future content.

Excellent! Hope it’s helpful!

My pleasure, glad you stuck with it.

Thanks for subbing!

My pleasure.

My pleasure!

Glad to help!

Thanks for this, and I have started doing this more.

If you didn't run it with -d to start, then yes.

Not off the top of my head, but jump over to discuss.opensourceisawesome.com and send me a DM (@ mickintx) and I'll do my best to help you out.

@@AwesomeOpenSource I'm having the same issue

Curious about this as well. Following these instructions and other instructions that are older and newer, I'm able to get the Authelia portal page active on my local network. However, credentials do not work. When I input my UN/PW, the logs show successful 1FA attempt, but I don't login, and I don't get any error for UN/PW being wrong.

I'm having the same issue as well. Signing into Authelia works fine, but as mentioned, when trying to access an application through NGINX, the browser continues to load/re-load the app.

@@ceddytr7344 you and some others may be missing a critical few steps here. I just went through this so it might apply. After you've entered a new proxy host and dumped the config file into the advanced tab and saved it, you have to go back and modify the authelia config file to teach it about the sites, then bounce the authelia container so it reads the new config. It's as simple as opening /home/Configs/Authelia and editing the configuration.yaml file. FInd the access control section. Add your new proxy host and what type of auth you want it to use (there should be entries or examples already, super simple). Save the file, restart the authelia container. See what happens.

No, sorry. I haven't dipped into Kubernetes just yet. I need to.

I removed it based on the project setup. I'm simply following what the project uses to try and keep up to date.

I'll try to take a look. I've updated it in the past, but I've moved to Authentik as my SSO as it doesn't require quite so much heavy configuration through yaml files.

If you mean for nginx-proxy-manager, then the application changed, and the maker removed the need for a sql db for that to work.

You know it!

That just sets the various private subnets. So you wouldn't want 0.0.0.0/0 in there. It's better to enter the private ip subnets there.

Not a newbie question at all. Yes, NPM has access lists, and you can and should use those where appropriate. There is no 2 factor with NPM auth however - which from a security standpoint is considered far more secure than single factor authentication 2 times. I also believe that as more applications get Auth capability with LDAP and / or OAuth, you'll see the ability to more tightly integrate something like Authelia with the application, and not just in front of it.

Instead of Authelia, you might need / want to look to something like Authentik. Check out the @cooptonian channel for a ton of Authentik info.

My pleasure.

That's a good question, but I actually don't know. I'd say it's a better question for reddit perhaps.

This is definitely a question more suitable for the Authelia team. You might go to their github page and ask this.

Cloudflare can be a bit tempermental for sure. Make sure you're using the tunnel IPs for redirect, and so on inside the Authelia config and NPM advanced sections.

I hope it was helpful.

You should be able to do that, but I believe all sites you use this with will need to be on that same docker network for the redirect that happens before the authentication.

@@AwesomeOpenSource would you mind or are you able to test it? I tried doing this and I kept getting a 500 internal server error

@@AwesomeOpenSource I managed to get it working using the docker names. I must have missed something the first time around when i tried! Thanks for your hard work on these videos!

Let me run through it and see what I can figure out. Looks like it has a Docker-compose option already.

This video is a bit old now, so things may have changed a bit. Please make sure to check the source for any updated compose files, etc. Sounds like you're doing that already.

just comment the redis part in configuration.yml and remove the redis container in the authelia yml docker compose file

The issue here is that Authelia is a block-point to th ewebsocket that the agent needs in order to connect all the way to remotely. The agent is essentially hitting the Authelia wall and not able to get through to remotely. So, nothing that I'm aware of that can be done here., but you might ask over on the Remotely github.

@@AwesomeOpenSource Thank you

Glad you liked it!

I like FreeOTP if it's just for OTP, but generally I use my BitWarden app for OTP and Username and Password all together for various logins.

jump over to discuss.opensourceisawesome.com and post, and I'll be happy to try and help. You can use Google, Github accounts if you don't want to sign up for the Server.

@@AwesomeOpenSource thank you I will check it out

got it to work and love it

Thank you very much.

Bet I can. Let me work on it.

@@AwesomeOpenSource Awesome, Thank you. I figured out my issue with the advanced config, it was an oversight and neede to read the shownotes.... just having a side-by-side would have been nice to see.

@@AwesomeOpenSource what app are you using to get the otp?

@@carlapr97 on iOS I was using FreeOTP for everything. I really like that one, but have been moving my personal stuff over to BitWarden lately as it’s all there together.

@@AwesomeOpenSource thanks! do you know if the 6 digit code could be replaced with fingerprint/face ID, that would be really cool!

I'll see what I can do in a future video.

Interesting. I haven't seen that yet. Can you tell me what the service is you're setting up?

@Smoo Peezy Excellent info! I hope it will help others, and thank you for sharing.

@Smoo Peezy yes that's it. If you ever come across this issue, you have to look for typos in your configuration, that's usually the cause. You can investigate this by checking the Nginx Proxy Manager docker logs. Everytime you save a config, Nginx parses it and will output an error for that specific host. If you are using subpaths in the locations tab, it can even stop nginx from working for all hosts! So this is quite important to know.

My pleasure.

I’ll take a look at it.

Glad it helped!

My pleasure.

I haven't seen that issue, but my video is a bit older. I tried to update my yaml to some recent changes for the configuration file, but still may need some work. The @IBRACORP channel just did a great update to their Authelia video, and I highly recommend it as well. kzbin.info/www/bejne/f4ixqqOBZ7yreJI

You bet.

Thank you!

You can put this in front of bit warden, just remember it's not an integration, but an extra layer of protection.

@@AwesomeOpenSource so as it's not an integration can I get authelia to do the 2fa instead of bitwarden

Can you tell me what specifically you are having trouble with? I haven't had any issues with it.

True, i did EVERYTHING checking all steps 3 times, doesnt work...this was a pain to setup and now im reading everything in the Authelia docs to figure out how to make this work. I'm getting to the auth page, but the 2FA doesnt work, the mail is delivered, but i cant register my 2FA device, docker logs are not helpful either.

My pleasure.

I don't know ansible, and bash is built into most Linux and Mac distos.

I'm more surprised to see "open nano, select text in the browser, cope, paste into nano" instead of curling or wgeting the scripts.

Sorry you feel that way.