awesome-repositories.comBlog
© 2026 Bringes Technology SRL·VAT RO45896025·hello@bringes.io
MCPBlogSitemapPrivacyTerms
Authelia | Awesome Repository
← All repositories

authelia/authelia

0
View on GitHub↗
26,785 stars·1,340 forks·Go·apache-2.0·0 viewswww.authelia.com↗

Authelia

AI search

Explore more awesome repositories

Describe what you need in plain English — the AI ranks thousands of curated open-source projects by relevance.

Let's find more awesome repositories

Features

  • Identity and Access Management Servers - A centralized authentication and authorization service that secures web applications by managing user identities and enforcing access control policies.
  • Identity Management Systems - Providing a unified authentication and authorization layer to secure multiple internal applications through a single point of entry.
  • Identity Providers - Identity Providers → OpenID Connect 1.0 Clients → OpenID Connect 1.0 Provider →
  • OpenID Connect Providers - Acts as a central identity authority that issues tokens to client applications to enable standardized single sign-on across diverse platforms.
  • Primary Authentication Methods - File → First Factor → LDAP →
  • Authentication Middleware - A security component that integrates with web gateways to validate user sessions and authorize requests before they reach protected backend services.
  • Multi-Factor Authentication - Duo / Mobile Push → Second Factor → Time-Based One-Time Password → WebAuthn →
  • Multi-Factor Authentication Orchestration - Coordinates various verification methods including hardware keys and mobile push notifications to enforce secondary security layers during login.
  • Multi-Factor Authentication Strategies - Adding robust security layers like hardware keys and mobile push notifications to protect user accounts from unauthorized access.
  • Container Images - The Docker container is deployed with the following image names: - authelia/authelia - docker.io/authelia/authelia - ghcr.io/authelia/authelia ## Get started It’s strongly recommended that users setting up *Autheli
  • Access Control Policies - Important Note This section does not apply to OpenID Connect 1.0. See the Frequently Asked Questions for more information. ## Variables Some of the values within this page can automatically be replaced with documentation
  • Identity Provider Backends - Abstracts user authentication by supporting multiple external directory services like LDAP or internal databases through a unified interface.
  • Single Sign-On Providers - Frequently Asked Questions → Jira → Organizr → Paperless → Seafile → Seerr → Trusted Header SSO →
  • Single Sign-On Solutions - Enabling users to access various web services and platforms using one set of credentials without needing to log in repeatedly.
  • Configuration Management - 1. The configuration can be defined statically by YAML. 2. Most areas of the configuration can be defined by environment variables. ## Get started It’s strongly recommended that users setting up Authelia for the
  • Multi-Factor Authentication Providers - A security layer that verifies user identity through multiple verification methods including time-based codes, hardware security keys, and push notifications.
  • Reverse Proxy Authentication - Intercepts incoming HTTP requests at the gateway level to validate user identity before granting access to protected backend services.
  • Database Migrations - Migrations → MySQL → PostgreSQL → SQLite3 → Storage →
  • Stateless Session Management - Maintains user authentication state across distributed services using encrypted cookies to ensure consistent access control without requiring sticky sessions.
  • Command Line Interfaces - Authelia → Authelia Access-Control → Authelia Access-Control Check-Policy → Authelia Build-Info → Authelia Config → Authelia Config Template → Authelia Config Validate → Authelia Crypto → Authelia Crypto Certificate → Au
  • Kubernetes Integrations - Chart → Envoy → Envoy Gateway → Istio → Kubernetes → NGINX Ingress → Secrets → Traefik Ingress →
  • Directory Services - Active Directory → FreeIPA → GLAuth → LDAP → LLDAP → RFC2307bis →
  • Security Configurations - Access Control → Password Policy → Regulation → Security →
  • Configuration Schemas - Uses structured text files to define complex security policies and identity provider integrations through a declarative and version-controlled format.
  • Notification Systems - File System → Notifications → SMTP →

    • Authelia is a centralized identity and access management server designed to secure web applications through unified authentication and authorization. It functions as an identity authority that enables single sign-on across diverse platforms, allowing users to access multiple services with a single set of credentials. By acting as a standards-compliant provider, it facilitates secure identity propagation and token issuance for client applications.

    The platform distinguishes itself through its ability to integrate directly with web gateways as a reverse proxy authentication middleware, intercepting requests to validate user identity before granting access to protected resources. It enforces granular access control policies and provides robust multi-factor authentication, supporting various verification methods such as hardware security keys, mobile push notifications, and time-based one-time passwords. To maintain consistency across distributed environments, it utilizes stateless session management via encrypted cookies.

    Authelia offers a flexible integration surface, featuring a pluggable backend that supports multiple external directory services like LDAP alongside internal database options. Its configuration is managed through a declarative, version-controlled YAML schema, which can be further automated using environment variables. The project provides comprehensive command-line tooling for policy validation and configuration management, with native support for deployment in containerized and orchestrated environments.