Authelia is a highly regarded open-source authentication and authorization server. It offers an advanced level of security, providing two-factor authentication, which is a method of confirming users' claimed identities by using a combination of two different factors.
This ensures that your data and applications are only accessible to the intended users. Moreover, Authelia simplifies the login process by offering single sign-on capabilities for applications. This means that users can log in once and gain access to all systems without being prompted to log in again at each of them. It's an excellent solution for enhancing and streamlining your system's security measures.
This is a list of the key features of Authelia:
- Several second factor methods:
- Password reset with identity verification using email confirmation.
- Access restriction after too many invalid authentication attempts.
- Fine-grained access control using rules which match criteria like subdomain, user, user group membership, request uri, request method, and network.
- Choice between one-factor and two-factor policies per-rule.
- Support of basic authentication for endpoints protected by the one-factor policy.
- Highly available using a remote database and Redis as a highly available KV store.
- Compatible with Traefik out of the box using the ForwardAuth middleware.
- Curated configuration from LinuxServer via their Swag container as well as a guide.
- Compatible with Caddy using the forward_auth directive.
- Kubernetes Support:
- Beta support for OpenID Connect.
- Apache-2.0 License