changes for Authelia setup

homelab/applications/authelia/compose.yaml

@@ -1,3 +1,7 @@
+secrets:
+  STORAGE_ENCRYPTION_KEY:
+    file: './secrets/authelia_db_encryption_key'
+
 services:
   authelia:
     image: authelia/authelia:latest
@@ -11,8 +15,10 @@ services:
       - ./db:/config/db
     ports:
       - '9091:9091'
+    secrets: ['STORAGE_ENCRYPTION_KEY']
     environment:
-      - TZ=Etc/UTC
+      TZ: 'Etc/UTC'
+      AUTHELIA_STORAGE_ENCRYPTION_KEY_FILE: '/run/secrets/STORAGE_ENCRYPTION_KEY'
         
     restart: always
     healthcheck:

homelab/applications/authelia/config/configuration.yml

@@ -1,6 +1,5 @@
 server:
-  host: 0.0.0.0
-  port: 9091
+  address: 0.0.0.0:9091
   endpoints:
     authz:
       forward-auth:
@@ -11,7 +10,7 @@ log:
 
 # --- Storage ---
 storage:
-  sqlite:
+  local:
     path: /config/db/authelia.sqlite.db
 
 # --- Authentication ---
@@ -35,7 +34,7 @@ session:
   cookies:
     - domain: 'saljic.me'
       authelia_url: 'https://auth.saljic.me'
-      default_redirection_url: 'https://auth.saljic.me'
+      default_redirection_url: 'https://saljic.me'
   # name: authelia_session
   # expiration: 1h
   # inactivity: 5m

homelab/applications/caddy/Caddyfile

@@ -20,4 +20,15 @@ ha.saljic.me {
 # --- Immich ---
 tagebuch.saljic.me {
   reverse_proxy 10.10.10.6:2283
+}
+
+# --- default --- 
+saljic.me {
+  header Content-Type text/html
+	respond <<HTML
+		<html>
+			<head><title>saljic.me</title></head>
+			<body>Hello there</body>
+		</html>
+		HTML 200
 }