server:
  host: 0.0.0.0
  port: 9091
server:
  read_buffer_size: 4096
  write_buffer_size: 4096
  path: "authelia"
log:
  level: warn 
theme: dark
default_redirection_url: https://example.de
totp:
  issuer: authelia.com

duo_api:
  hostname: example
  integration_key: example

authentication_backend:
  disable_reset_password: true
  file:
    path: /config/users_database.yml
    password:
      algorithm: argon2id
      iterations: 1
      salt_length: 16
      parallelism: 8
      memory: 64
      
access_control:
  default_policy: deny
  rules:
    - domain: ["example1.example.de"]
      resources:
        - "^/ping.*$"
      policy: bypass
    - domain: ["example1.example.de", "example2.example.de"] 
      policy: two_factor
    - domain: ["example3.example.de"]
      resources:
        - "^/admin(.*)?$"
      policy: two_factor

session:
  name: authelia_session
  expiration: 3600  # 1 hour
  inactivity: 300  # 5 minutes
  domain: example.de

regulation:
  max_retries: 3
  find_time: 120
  ban_time: 300

storage:
  local:
    path: /config/db.sqlite3

ntp:
  address: "ntp1.hetzner.com:123"
  version: 3
  max_desync: 3s
  disable_startup_check: false
  disable_failure: false

notifier:
  smtp:
    username: example@gmail.com
    host: smtp.gmail.com
    port: 465
    sender: example@gmail.com