Commit new App releases for TrueCharts

Signed-off-by: TrueCharts-Bot <bot@truecharts.org>
2021-08-28 11:45:08 +00:00 · 2021-08-28 11:45:08 +00:00 · f8df2b5f48
parent 22fbb04131
commit f8df2b5f48
104 changed files with 2857 additions and 88 deletions
--- a/incubator/authelia/0.0.1/CONFIG.md
+++ b/incubator/authelia/0.0.1/CONFIG.md
--- a/incubator/authelia/0.0.1/Chart.lock
+++ b/incubator/authelia/0.0.1/Chart.lock
@ -0,0 +1,12 @@
+dependencies:
+- name: common
+  repository: https://truecharts.org/
+  version: 6.10.6
+- name: postgresql
+  repository: https://truecharts.org/
+  version: 1.2.3
+- name: redis
+  repository: https://charts.bitnami.com/bitnami
+  version: 14.8.11
+digest: sha256:0e70ad08e8bd5ef4d2d42581e20e3b18ed42c61f59fb1b27888c5d985a89d0df
+generated: "2021-08-28T11:44:37.508050366Z"
--- a/incubator/authelia/0.0.1/Chart.yaml
+++ b/incubator/authelia/0.0.1/Chart.yaml
@ -0,0 +1,41 @@
+apiVersion: v2
+appVersion: auto
+dependencies:
+- name: common
+  repository: https://truecharts.org/
+  version: 6.10.6
+- condition: postgresql.enabled
+  name: postgresql
+  repository: https://truecharts.org/
+  version: 1.2.3
+- condition: redis.enabled
+  name: redis
+  repository: https://charts.bitnami.com/bitnami
+  version: 14.8.11
+deprecated: false
+description: Authelia is a Single Sign-On Multi-Factor portal for web apps
+home: https://github.com/truecharts/apps/tree/master/charts/stable/authelia
+icon: https://avatars2.githubusercontent.com/u/59122411?s=200&v=4
+keywords:
+- authelia
+- authentication
+- login
+- SSO
+- Authentication
+- Security
+- Two-Factor
+- U2F
+- YubiKey
+- Push Notifications
+- LDAP
+kubeVersion: '>=1.16.0-0'
+maintainers:
+- email: info@truecharts.org
+  name: TrueCharts
+  url: truecharts.org
+name: authelia
+sources:
+- https://github.com/authelia/chartrepo
+- https://github.com/authelia/authelia
+type: application
+version: 0.0.1
--- a/incubator/authelia/0.0.1/README.md
+++ b/incubator/authelia/0.0.1/README.md
--- a/incubator/authelia/0.0.1/app-readme.md
+++ b/incubator/authelia/0.0.1/app-readme.md
@ -0,0 +1 @@
+Authelia is a Single Sign-On Multi-Factor portal for web apps
--- a/incubator/authelia/0.0.1/charts/common-6.10.6.tgz
+++ b/incubator/authelia/0.0.1/charts/common-6.10.6.tgz
--- a/incubator/authelia/0.0.1/charts/postgresql-1.2.3.tgz
+++ b/incubator/authelia/0.0.1/charts/postgresql-1.2.3.tgz
--- a/incubator/authelia/0.0.1/charts/redis-14.8.11.tgz
+++ b/incubator/authelia/0.0.1/charts/redis-14.8.11.tgz
--- a/incubator/authelia/0.0.1/ix_values.yaml
+++ b/incubator/authelia/0.0.1/ix_values.yaml
@ -0,0 +1,231 @@
+##
+# This file contains Values.yaml content that gets added to the output of questions.yaml
+# It's ONLY meant for content that the user is NOT expected to change.
+# Example: Everything under "image" is not included in questions.yaml but is included here.
+##
+
+image:
+  repository: ghcr.io/authelia/authelia
+  pullPolicy: IfNotPresent
+  tag: "4.30.4"
+
+# Enabled postgres
+postgresql:
+  enabled: true
+  postgresqlUsername: authelia
+  postgresqlDatabase: authelia
+  existingSecret: "{{ .Release.Name }}-dbcreds"
+  persistence:
+    db:
+      storageClass: "SCALE-ZFS"
+    dbbackups:
+      storageClass: "SCALE-ZFS"
+
+# Enabled redis
+# ... for more options see https://github.com/bitnami/charts/tree/master/bitnami/redis
+redis:
+  volumePermissions:
+    enabled: true
+  architecture: standalone
+  enabled: true
+  auth:
+    existingSecret: rediscreds
+    existingSecretPasswordKey: redis-password
+  master:
+    persistence:
+      enabled: false
+      existingClaim: redismaster
+  replica:
+    replicaCount: 0
+    persistence:
+      enabled: false
+
+envFrom:
+  - configMapRef:
+      name: '{{ include "common.names.fullname" . }}-paths'
+
+probes:
+  liveness:
+    type: HTTP
+    path: /api/health"
+
+  readiness:
+    type: HTTP
+    path: "/api/health"
+
+  startup:
+    type: HTTP
+    path: "/api/health"
+
+##
+## Storage Provider Configuration
+##
+## The available providers are: `local`, `mysql`, `postgres`. You must use one and only one of these providers.
+storage:
+  ##
+  ## PostgreSQL (Storage Provider)
+  ##
+  postgres:
+    port: 5432
+    database: authelia
+    username: authelia
+    sslmode: disable
+    timeout: 5s
+
+##
+## Server Configuration
+##
+server:
+  ##
+  ## Port sets the configured port for the daemon, service, and the probes.
+  ## Default is 9091 and should not need to be changed.
+  ##
+  port: 9091
+
+  ## Buffers usually should be configured to be the same value.
+  ## Explanation at https://www.authelia.com/docs/configuration/server.html
+  ## Read buffer size adjusts the server's max incoming request size in bytes.
+  ## Write buffer size does the same for outgoing responses.
+  read_buffer_size: 4096
+  write_buffer_size: 4096
+  ## Set the single level path Authelia listens on.
+  ## Must be alphanumeric chars and should not contain any slashes.
+  path: ""
+
+##
+## Redis Provider
+##
+## Important: Kubernetes (or HA) users must read https://www.authelia.com/docs/features/statelessness.html
+##
+## The redis connection details
+redisProvider:
+  port: 6379
+
+  ## Optional username to be used with authentication.
+  # username: authelia
+  username: ""
+
+  ## This is the Redis DB Index https://redis.io/commands/select (sometimes referred to as database number, DB, etc).
+  database_index: 0
+
+  ## The maximum number of concurrent active connections to Redis.
+  maximum_active_connections: 8
+
+  ## The target number of idle connections to have open ready for work. Useful when opening connections is slow.
+  minimum_idle_connections: 0
+
+  ## The Redis TLS configuration. If defined will require a TLS connection to the Redis instance(s).
+  tls:
+    enabled: false
+
+    ## Server Name for certificate validation (in case you are using the IP or non-FQDN in the host option).
+    server_name: ""
+
+    ## Skip verifying the server certificate (to allow a self-signed certificate).
+    ## In preference to setting this we strongly recommend you add the public portion of the certificate to the
+    ## certificates directory which is defined by the `certificates_directory` option at the top of the config.
+    skip_verify: false
+
+    ## Minimum TLS version for the connection.
+    minimum_version: TLS1.2
+
+  ## The Redis HA configuration options.
+  ## This provides specific options to Redis Sentinel, sentinel_name must be defined (Master Name).
+  high_availability:
+    enabled: false
+    enabledSecret: false
+    ## Sentinel Name / Master Name
+    sentinel_name: mysentinel
+
+    ## The additional nodes to pre-seed the redis provider with (for sentinel).
+    ## If the host in the above section is defined, it will be combined with this list to connect to sentinel.
+    ## For high availability to be used you must have either defined; the host above or at least one node below.
+    nodes: []
+    # nodes:
+    #   - host: sentinel-0.databases.svc.cluster.local
+    #     port: 26379
+    #   - host: sentinel-1.databases.svc.cluster.local
+    #     port: 26379
+
+    ## Choose the host with the lowest latency.
+    route_by_latency: false
+
+    ## Choose the host randomly.
+    route_randomly: false
+
+identity_providers:
+    oidc:
+    ## Enables this in the config map. Currently in beta stage.
+    ## See https://www.authelia.com/docs/configuration/identity-providers/oidc.html#roadmap
+    enabled: false
+
+    access_token_lifespan: 1h
+    authorize_code_lifespan: 1m
+    id_token_lifespan: 1h
+    refresh_token_lifespan: 90m
+
+    enable_client_debug_messages: false
+
+    ## SECURITY NOTICE: It's not recommended changing this option, and highly discouraged to have it below 8 for
+    ## security reasons.
+    minimum_parameter_entropy: 8
+
+    clients: []
+    # clients:
+      # -
+        ## The ID is the OpenID Connect ClientID which is used to link an application to a configuration.
+        # id: myapp
+
+        ## The description to show to users when they end up on the consent screen. Defaults to the ID above.
+        # description: My Application
+
+        ## The client secret is a shared secret between Authelia and the consumer of this client.
+        # secret: apple123
+
+        ## Sets the client to public. This should typically not be set, please see the documentation for usage.
+        # public: false
+
+        ## The policy to require for this client; one_factor or two_factor.
+        # authorization_policy: two_factor
+
+        ## Audience this client is allowed to request.
+        # audience: []
+
+        ## Scopes this client is allowed to request.
+        # scopes:
+        #   - openid
+        #   - profile
+        #   - email
+        #   - groups
+
+        ## Redirect URI's specifies a list of valid case-sensitive callbacks for this client.
+        # redirect_uris:
+        #   - https://oidc.example.com/oauth2/callback
+
+        ## Grant Types configures which grants this client can obtain.
+        ## It's not recommended to configure this unless you know what you're doing.
+        # grant_types:
+        #   - refresh_token
+        #   - authorization_code
+
+        ## Response Types configures which responses this client can be sent.
+        ## It's not recommended to configure this unless you know what you're doing.
+        # response_types:
+        #   - code
+
+        ## Response Modes configures which response modes this client supports.
+        ## It's not recommended to configure this unless you know what you're doing.
+        # response_modes:
+        #   - form_post
+        #   - query
+        #   - fragment
+
+        ## The algorithm used to sign userinfo endpoint responses for this client, either none or RS256.
+        # userinfo_signing_algorithm: none
+
+
+
+##
+# Most other defaults are set in questions.yaml
+# For other options please refer to the wiki, default_values.yaml or the common library chart
+##
--- a/incubator/authelia/0.0.1/questions.yaml
+++ b/incubator/authelia/0.0.1/questions.yaml
--- a/incubator/authelia/0.0.1/templates/_configmap.tpl
+++ b/incubator/authelia/0.0.1/templates/_configmap.tpl
@ -0,0 +1,245 @@
+{{/* Define the configmap */}}
+{{- define "authelia.configmap" -}}
+---
+apiVersion: v1
+kind: ConfigMap
+metadata:
+  name: {{ include "common.names.fullname" . }}-paths
+data:
+  AUTHELIA_SERVER_DISABLE_HEALTHCHECK: "true"
+  AUTHELIA_JWT_SECRET_FILE: "/secrets/JWT_TOKEN"
+  AUTHELIA_SESSION_SECRET_FILE: "/secrets/SESSION_ENCRYPTION_KEY"
+  AUTHELIA_STORAGE_POSTGRES_PASSWORD_FILE: "/secrets/STORAGE_PASSWORD"
+  {{- if .Values.authentication_backend.ldap.enabled }}
+  AUTHELIA_AUTHENTICATION_BACKEND_LDAP_PASSWORD_FILE: "/secrets/LDAP_PASSWORD"
+  {{- end }}
+  {{- if .Values.notifier.smtp.enabled }}
+  AUTHELIA_NOTIFIER_SMTP_PASSWORD_FILE: "/secrets/SMTP_PASSWORD"
+  {{- end }}
+  AUTHELIA_SESSION_REDIS_PASSWORD_FILE: "/secrets/REDIS_PASSWORD"
+  {{- if and .Values.redisProvider.high_availability.enabled}}
+  AUTHELIA_SESSION_REDIS_HIGH_AVAILABILITY_SENTINEL_PASSWORD_FILE: "/secrets/REDIS_SENTINEL_PASSWORD"
+  {{- end }}
+  {{- if .Values.duo_api.enabled }}
+  AUTHELIA_DUO_API_SECRET_KEY_FILE: "/secrets/DUO_API_KEY"
+  {{- end }}
+  {{- if .Values.identity_providers.oidc.enabled }}
+  AUTHELIA_IDENTITY_PROVIDERS_OIDC_HMAC_SECRET_FILE: "/secrets/OIDC_HMAC_SECRET"
+  AUTHELIA_IDENTITY_PROVIDERS_OIDC_ISSUER_PRIVATE_KEY_FILE: "/secrets/OIDC_PRIVATE_KEY"
+  {{- end }}
+
+---
+
+apiVersion: v1
+kind: ConfigMap
+metadata:
+  name: {{ include "common.names.fullname" . }}-configfile
+data:
+  configuration.yaml: |
+    ---
+    theme: {{ default "light" .Values.theme }}
+    default_redirection_url: {{ default (printf "https://www.%s" .Values.domain) .Values.default_redirection_url }}
+    server:
+      host: 0.0.0.0
+      port: {{ default 9091 .Values.server.port }}
+      {{- if not (eq "" (default "" .Values.server.path)) }}
+      path: {{ .Values.server.path }}
+      {{- end }}
+      read_buffer_size: {{ default 4096 .Values.server.read_buffer_size }}
+      write_buffer_size: {{ default 4096 .Values.server.write_buffer_size }}
+      enable_pprof: {{ default false .Values.server.enable_pprof }}
+      enable_expvars: {{ default false .Values.server.enable_expvars }}
+    log:
+      level: {{ default "info" .Values.log.level }}
+      format: {{ default "text" .Values.log.format }}
+      {{- if not (eq "" (default "" .Values.log.file_path)) }}
+      file_path: {{ .Values.log.file_path }}
+      keep_stdout: true
+      {{- end }}
+    totp:
+      issuer: {{ default .Values.domain .Values.totp.issuer }}
+      period: {{ default 30 .Values.totp.period }}
+      skew: {{ default 1 .Values.totp.skew }}
+    {{- if .Values.duo_api.enabled }}
+    duo_api:
+      hostname: {{ .Values.duo_api.hostname }}
+      integration_key: {{ .Values.duo_api.integration_key }}
+    {{- end }}
+    {{- with $auth := .Values.authentication_backend }}
+    authentication_backend:
+      disable_reset_password: {{ $auth.disable_reset_password }}
+    {{- if $auth.file.enabled }}
+      file:
+        path: {{ $auth.file.path }}
+        password: {{ toYaml $auth.file.password | nindent 10 }}
+    {{- end }}
+    {{- if $auth.ldap.enabled }}
+      ldap:
+        implementation: {{ default "custom" $auth.ldap.implementation }}
+        url: {{ $auth.ldap.url }}
+        timeout: {{ default "5s" $auth.ldap.timeout }}
+        start_tls: {{ $auth.ldap.start_tls }}
+        tls:
+          {{- if hasKey $auth.ldap.tls "server_name" }}
+          server_name: {{ default $auth.ldap.host $auth.ldap.tls.server_name }}
+          {{- end }}
+          minimum_version: {{ default "TLS1.2" $auth.ldap.tls.minimum_version }}
+          skip_verify: {{ default false $auth.ldap.tls.skip_verify }}
+    {{- if $auth.ldap.base_dn }}
+        base_dn: {{ $auth.ldap.base_dn }}
+    {{- end }}
+    {{- if $auth.ldap.username_attribute }}
+        username_attribute: {{ $auth.ldap.username_attribute }}
+    {{- end }}
+    {{- if $auth.ldap.additional_users_dn }}
+        additional_users_dn: {{ $auth.ldap.additional_users_dn }}
+    {{- end }}
+    {{- if $auth.ldap.users_filter }}
+        users_filter: {{ $auth.ldap.users_filter }}
+    {{- end }}
+    {{- if $auth.ldap.additional_groups_dn }}
+        additional_groups_dn: {{ $auth.ldap.additional_groups_dn }}
+    {{- end }}
+    {{- if $auth.ldap.groups_filter }}
+        groups_filter: {{ $auth.ldap.groups_filter }}
+    {{- end }}
+    {{- if $auth.ldap.group_name_attribute }}
+        group_name_attribute: {{ $auth.ldap.group_name_attribute }}
+    {{- end }}
+    {{- if $auth.ldap.mail_attribute }}
+        mail_attribute: {{ $auth.ldap.mail_attribute }}
+    {{- end }}
+    {{- if $auth.ldap.display_name_attribute }}
+        display_name_attribute: {{ $auth.ldap.display_name_attribute }}
+    {{- end }}
+        user: {{ $auth.ldap.user }}
+    {{- end }}
+    {{- end }}
+    {{- with $session := .Values.session }}
+    session:
+      name: {{ default "authelia_session" $session.name }}
+      domain: {{ required "A valid .Values.domain entry required!" $.Values.domain }}
+      same_site: {{ default "lax" $session.same_site }}
+      expiration: {{ default "1M" $session.expiration }}
+      inactivity: {{ default "5m" $session.inactivity }}
+      remember_me_duration: {{ default "1M" $session.remember_me_duration }}
+    {{- end }}
+      redis:
+        host: {{ ( printf "%v-%v" .Release.Name "redis-master" ) }}
+      {{- with $redis := .Values.redisProvider }}
+        port: {{ default 6379 $redis.port }}
+        {{- if not (eq $redis.username "") }}
+        username: {{ $redis.username }}
+        {{- end }}
+        maximum_active_connections: {{ default 8 $redis.maximum_active_connections }}
+        minimum_idle_connections: {{ default 0 $redis.minimum_idle_connections }}
+    {{- if $redis.tls.enabled }}
+        tls:
+          server_name: {{ $redis.tls.server_name }}
+          minimum_version: {{ default "TLS1.2" $redis.tls.minimum_version }}
+          skip_verify: {{ $redis.tls.skip_verify }}
+    {{- end }}
+    {{- if $redis.high_availability.enabled }}
+        high_availability:
+          sentinel_name: {{ $redis.high_availability.sentinel_name }}
+    {{- if $redis.high_availability.nodes }}
+          nodes: {{ toYaml $redis.high_availability.nodes | nindent 10 }}
+    {{- end }}
+          route_by_latency: {{ $redis.high_availability.route_by_latency }}
+          route_randomly: {{ $redis.high_availability.route_randomly }}
+      {{- end }}
+    {{- end }}
+
+    regulation: {{ toYaml .Values.regulation | nindent 6 }}
+    storage:
+      postgres:
+        host: {{ printf "%v-%v" .Release.Name "postgresql" }}
+    {{- with $storage := .Values.storage }}
+        port: {{ default 5432 $storage.postgres.port }}
+        database: {{ default "authelia" $storage.postgres.database }}
+        username: {{ default "authelia" $storage.postgres.username }}
+        timeout: {{ default "5s" $storage.postgres.timeout }}
+        sslmode: {{ default "disable" $storage.postgres.sslmode }}
+    {{- end }}
+    {{- with $notifier := .Values.notifier }}
+    notifier:
+      disable_startup_check: {{ $.Values.notifier.disable_startup_check }}
+    {{- if $notifier.filesystem.enabled }}
+      filesystem:
+        filename: {{ $notifier.filesystem.filename }}
+    {{- end }}
+    {{- if $notifier.smtp.enabled }}
+      smtp:
+        host: {{ $notifier.smtp.host }}
+        port: {{ default 25 $notifier.smtp.port }}
+        timeout: {{ default "5s" $notifier.smtp.timeout }}
+        username: {{ $notifier.smtp.username }}
+        sender: {{ $notifier.smtp.sender }}
+        identifier: {{ $notifier.smtp.identifier }}
+        subject: {{ $notifier.smtp.subject | quote }}
+        startup_check_address: {{ $notifier.smtp.startup_check_address }}
+        disable_require_tls: {{ $notifier.smtp.disable_require_tls }}
+        disable_html_emails: {{ $notifier.smtp.disable_html_emails }}
+        tls:
+          server_name: {{ default $notifier.smtp.host $notifier.smtp.tls.server_name }}
+          minimum_version: {{ default "TLS1.2" $notifier.smtp.tls.minimum_version }}
+          skip_verify: {{ default false $notifier.smtp.tls.skip_verify }}
+    {{- end }}
+    {{- end }}
+    {{- if .Values.identity_providers.oidc.enabled }}
+    identity_providers:
+      oidc:
+        access_token_lifespan: {{ default "1h" .Values.identity_providers.oidc.access_token_lifespan }}
+        authorize_code_lifespan: {{ default "1m" .Values.identity_providers.oidc.authorize_code_lifespan }}
+        id_token_lifespan: {{ default "1h" .Values.identity_providers.oidc.id_token_lifespan }}
+        refresh_token_lifespan: {{ default "90m" .Values.identity_providers.oidc.refresh_token_lifespan }}
+        enable_client_debug_messages: {{ default false .Values.identity_providers.oidc.enable_client_debug_messages }}
+        minimum_parameter_entropy: {{ default 8 .Values.identity_providers.oidc.minimum_parameter_entropy }}
+        {{- if gt (len .Values.identity_providers.oidc.clients) 0 }}
+        clients:
+    {{- range $client := .Values.identity_providers.oidc.clients }}
+        - id: {{ $client.id }}
+          description: {{ default $client.id $client.description }}
+          secret: {{ default (randAlphaNum 128) $client.secret }}
+          {{- if hasKey $client "public" }}
+          public: {{ $client.public }}
+          {{- end }}
+          authorization_policy: {{ default "two_factor" $client.authorization_policy }}
+          redirect_uris: {{ toYaml $client.redirect_uris | nindent 10 }}
+          {{- if hasKey $client "audience" }}
+          audience: {{ toYaml $client.audience | nindent 10 }}
+          {{- end }}
+          scopes: {{ toYaml (default (list "openid" "profile" "email" "groups") $client.scopes) | nindent 10 }}
+          grant_types: {{ toYaml (default (list "refresh_token" "authorization_code") $client.grant_types) | nindent 10 }}
+          response_types: {{ toYaml (default (list "code") $client.response_types) | nindent 10 }}
+          {{- if hasKey $client "response_modes" }}
+          response_modes: {{ toYaml $client.response_modes | nindent 10 }}
+          {{- end }}
+          userinfo_signing_algorithm: {{ default "none" $client.userinfo_signing_algorithm }}
+    {{- end }}
+    {{- end }}
+    {{- end }}
+    access_control:
+    {{- if (eq (len .Values.access_control.rules) 0) }}
+      {{- if (eq .Values.access_control.default_policy "bypass") }}
+      default_policy: one_factor
+      {{- else if (eq .Values.access_control.default_policy "deny") }}
+      default_policy: two_factor
+      {{- else }}
+      default_policy: {{ .Values.access_control.default_policy }}
+      {{- end }}
+    {{- else }}
+      default_policy: {{ .Values.access_control.default_policy }}
+    {{- end }}
+    {{- if (eq (len .Values.access_control.networks) 0) }}
+      networks: []
+    {{- else }}
+      networks: {{ toYaml .Values.access_control.networks | nindent 6 }}
+    {{- end }}
+    {{- if (eq (len .Values.access_control.rules) 0) }}
+      rules: []
+    {{- else }}
+      rules: {{ toYaml .Values.access_control.rules | nindent 6 }}
+    {{- end }}
+    ...
+{{- end -}}
--- a/incubator/authelia/0.0.1/templates/_secrets.tpl
+++ b/incubator/authelia/0.0.1/templates/_secrets.tpl
@ -0,0 +1,112 @@
+{{/* Define the secrets */}}
+{{- define "authelia.secrets" -}}
+---
+
+apiVersion: v1
+kind: Secret
+metadata:
+  labels:
+    {{- include "common.labels" . | nindent 4 }}
+  name: {{ .Release.Name }}-dbcreds
+{{- $dbprevious := lookup "v1" "Secret" .Release.Namespace ( ( printf "%v-%v"  .Release.Name "dbcreds" ) | quote ) }}
+{{- $dbPass := "" }}
+data:
+{{- if $dbprevious }}
+  postgresql-password: {{ ( index $dbprevious.data "postgresql-password" ) }}
+  postgresql-postgres-password: {{ ( index $dbprevious.data "postgresql-postgres-password" ) }}
+{{- else }}
+  {{- $dbPass = randAlphaNum 50 }}
+  postgresql-password: {{ $dbPass | b64enc | quote }}
+  postgresql-postgres-password: {{ randAlphaNum 50 | b64enc | quote }}
+{{- end }}
+  url: {{ ( printf "%v%v:%v@%v-%v:%v/%v" "postgresql://" .Values.postgresql.postgresqlUsername $dbPass .Release.Name "postgresql" "5432" .Values.postgresql.postgresqlDatabase  ) | b64enc | quote }}
+type: Opaque
+
+
+---
+
+apiVersion: v1
+kind: Secret
+metadata:
+  labels:
+    {{- include "common.labels" . | nindent 4 }}
+  name: rediscreds
+{{- $redisprevious := lookup "v1" "Secret" .Release.Namespace "rediscreds" }}
+{{- $redisPass := "" }}
+{{- $sentinelPass := "" }}
+data:
+{{- if $redisprevious }}
+  redis-password: {{ ( index $redisprevious.data "redis-password" ) }}
+  sentinel-password: {{ ( index $redisprevious.data "sentinel-password" ) }}
+{{- else }}
+  {{- $redisPass = randAlphaNum 50 }}
+  {{- $sentinelPass = randAlphaNum 50 }}
+  redis-password: {{ $redisPass | b64enc | quote }}
+  sentinel-password: {{ $sentinelPass | b64enc | quote }}
+{{- end }}
+  masterhost: {{ ( printf "%v-%v" .Release.Name "redis-master" ) | b64enc | quote }}
+  slavehost: {{ ( printf "%v-%v" .Release.Name "redis-master" ) | b64enc | quote }}
+type: Opaque
+
+
+---
+
+apiVersion: v1
+kind: Secret
+type: Opaque
+metadata:
+  name: {{ include "common.names.fullname" . }}-secrets
+{{- $autheliaprevious := lookup "v1" "Secret" .Release.Namespace ( ( printf "%v-%v" ( ( include "common.names.fullname" . ) | quote ) "-secrets" ) | quote ) }}
+{{- $oidckey := "" }}
+{{- $oidcsecret := "" }}
+{{- $jwtsecret := "" }}
+{{- $sessionsecret := "" }}
+data:
+  {{- if $autheliaprevious }}
+  SESSION_ENCRYPTION_KEY: {{ index $autheliaprevious.data "SESSION_ENCRYPTION_KEY"  }}
+  JWT_TOKEN: {{ index $autheliaprevious.data "JWT_TOKEN"  }}
+  {{- else }}
+  {{- $jwtsecret := randAlphaNum 50 }}
+  {{- $sessionsecret := randAlphaNum 50 }}
+  SESSION_ENCRYPTION_KEY: {{ $jwtsecret | b64enc | quote }}
+  JWT_TOKEN: {{ $jwtsecret | b64enc | quote }}
+  {{- end }}
+  {{- if .Values.authentication_backend.ldap.enabled }}
+  LDAP_PASSWORD: {{ .Values.authentication_backend.ldap.plain_password }}
+  {{- end }}
+  {{- if .Values.notifier.smtp.enabled }}
+  SMTP_PASSWORD: {{ .Values.notifier.smtp.plain_password }}
+  {{- end }}
+  {{- if .Values.duo_api.enabled }}
+  DUO_API_KEY: {{ .Values.duo_api.plain_api_key | b64enc }}
+  {{- end }}
+  {{- if $dbprevious }}
+  STORAGE_PASSWORD: {{ ( index $dbprevious.data "postgresql-password" ) }}
+  {{- else }}
+  STORAGE_PASSWORD: {{ $dbPass | b64enc | quote }}
+  {{- end }}
+  {{- if $redisprevious }}
+  REDIS_PASSWORD: {{ ( index $redisprevious.data "redis-password" ) }}
+  {{- if .Values.redisProvider.high_availability.enabled}}
+  REDIS_SENTINEL_PASSWORD: {{ ( index $redisprevious.data "sentinel-password" ) }}
+  {{- end }}
+  {{- else }}
+  REDIS_PASSWORD: {{ $redisPass | b64enc | quote }}
+  {{- if .Values.redisProvider.high_availability.enabled}}
+  REDIS_SENTINEL_PASSWORD: {{ $sentinelPass | b64enc | quote }}
+  {{- end }}
+  {{- end }}
+  {{- if .Values.identity_providers.oidc.enabled }}
+  {{- if $autheliaprevious }}
+  OIDC_PRIVATE_KEY: {{ index $autheliaprevious.data "OIDC_PRIVATE_KEY"  }}
+  OIDC_HMAC_SECRET: {{index $autheliaprevious.data "OIDC_HMAC_SECRET" }}
+  {{- else }}
+  {{- $oidckey := genPrivateKey "rsa"   }}
+  {{- $oidcsecret := randAlphaNum 32 }}
+  OIDC_PRIVATE_KEY: {{ $oidckey | b64enc }}
+  OIDC_HMAC_SECRET: {{ $oidcsecret | b64enc }}
+  {{- end }}
+  {{- end }}
+
+
+{{- end -}}
--- a/incubator/authelia/0.0.1/templates/common.yaml
+++ b/incubator/authelia/0.0.1/templates/common.yaml
@ -0,0 +1,72 @@
+{{/* Make sure all variables are set properly */}}
+{{- include "common.values.setup" . }}
+
+{{/* Render configmap for authelia */}}
+{{- include "authelia.configmap" . }}
+
+{{/* Render secrets for authelia */}}
+{{- include "authelia.secrets" . }}
+
+{{/* Append the general configMap volume to the volumes */}}
+{{- define "authelia.configmapVolume" -}}
+enabled: "true"
+mountPath: " /configuration.yaml"
+readOnly: true
+subPath: configuration.yaml
+type: "custom"
+volumeSpec:
+  configMap:
+    name: {{ include "common.names.fullname" . }}-configfile
+    items:
+    - key: configuration.yaml
+      path: configuration.yaml
+{{- end -}}
+
+{{/* Append the general secret volumes to the volumes */}}
+{{- define "authelia.secretVolumes" -}}
+enabled: "true"
+mountPath: " /secrets"
+readOnly: true
+type: "custom"
+volumeSpec:
+  secret:
+    secretName: {{ include "common.names.fullname" . }}-secrets
+    items:
+    - key: "JWT_TOKEN"
+      path: JWT_TOKEN
+    - key: "SESSION_ENCRYPTION_KEY"
+      path: SESSION_ENCRYPTION_KEY
+    - key: "STORAGE_PASSWORD"
+      path: STORAGE_PASSWORD
+      {{- if .Values.authentication_backend.ldap.enabled }}
+    - key: "LDAP_PASSWORD"
+      path: LDAP_PASSWORD
+      {{- end }}
+      {{- if .Values.notifier.smtp.enabled }}
+    - key: "SMTP_PASSWORD"
+      path: SMTP_PASSWORD
+      {{- end }}
+    - key: "REDIS_PASSWORD"
+      path: REDIS_PASSWORD
+      {{- if .Values.redisProvider.high_availability.enabled}}
+    - key: "REDIS_SENTINEL_PASSWORD"
+      path: REDIS_SENTINEL_PASSWORD
+      {{- end }}
+      {{- if .Values.duo_api.enabled }}
+    - key: "DUO_API_KEY"
+      path: DUO_API_KEY
+      {{- end }}
+      {{- if .Values.identity_providers.oidc.enabled }}
+    - key: "OIDC_PRIVATE_KEY"
+      path: OIDC_PRIVATE_KEY
+    - key: "OIDC_HMAC_SECRET"
+      path: OIDC_HMAC_SECRET
+      {{- end }}
+{{- end -}}
+
+{{- $_ := set .Values.persistence "authelia-configfile" (include "authelia.configmapVolume" . | fromYaml) -}}
+{{- $_ := set .Values.persistence "authelia-secrets" (include "authelia.secretVolumes" . | fromYaml) -}}
+
+
+{{/* Render the templates */}}
+{{ include "common.all" . }}
--- a/incubator/authelia/0.0.1/test_values.yaml
+++ b/incubator/authelia/0.0.1/test_values.yaml
@ -0,0 +1,662 @@
+# Default values for Bitwarden.
+
+image:
+  repository: ghcr.io/authelia/authelia
+  pullPolicy: IfNotPresent
+  tag: "4.30.4"
+
+command: ["authelia"]
+args: ["--config=/configuration.yaml"]
+
+strategy:
+  type: Recreate
+
+service:
+  main:
+    ports:
+      main:
+        port: 9091
+
+persistence:
+  config:
+    enabled: true
+    mountPath: "/config"
+    type: pvc
+    accessMode: ReadWriteOnce
+    size: "100Gi"
+  redismaster:
+    noMount: true
+    forceName: "redismaster"
+    enabled: true
+    type: pvc
+    accessMode: ReadWriteOnce
+    size: "100Gi"
+
+# Enabled postgres
+postgresql:
+  enabled: true
+  postgresqlUsername: authelia
+  postgresqlDatabase: authelia
+  existingSecret: "{{ .Release.Name }}-dbcreds"
+
+# Enabled redis
+# ... for more options see https://github.com/bitnami/charts/tree/master/bitnami/redis
+redis:
+  volumePermissions:
+    enabled: true
+  architecture: standalone
+  enabled: true
+  auth:
+    existingSecret: rediscreds
+    existingSecretPasswordKey: redis-password
+  master:
+    persistence:
+      enabled: false
+      existingClaim: redismaster
+  replica:
+    replicaCount: 0
+    persistence:
+      enabled: false
+
+
+podSecurityContext:
+  runAsUser: 568
+  runAsGroup: 568
+  fsGroup: 568
+
+securityContext:
+  readOnlyRootFilesystem: true
+  allowPrivilegeEscalation: false
+  privileged: false
+
+
+resources:
+  limits: {}
+  # limits:
+  #   cpu: "4.00"
+  #   memory: 125Mi
+  requests: {}
+  # requests:
+  #   cpu: "0.25"
+  #   memory: 50Mi
+
+envFrom:
+  - configMapRef:
+      name: '{{ include "common.names.fullname" . }}-paths'
+
+probes:
+  liveness:
+    type: HTTP
+    path: /api/health"
+
+  readiness:
+    type: HTTP
+    path: "/api/health"
+
+  startup:
+    type: HTTP
+    path: "/api/health"
+
+domain: example.com
+
+##
+## Server Configuration
+##
+server:
+  ##
+  ## Port sets the configured port for the daemon, service, and the probes.
+  ## Default is 9091 and should not need to be changed.
+  ##
+  port: 9091
+
+  ## Buffers usually should be configured to be the same value.
+  ## Explanation at https://www.authelia.com/docs/configuration/server.html
+  ## Read buffer size adjusts the server's max incoming request size in bytes.
+  ## Write buffer size does the same for outgoing responses.
+  read_buffer_size: 4096
+  write_buffer_size: 4096
+  ## Set the single level path Authelia listens on.
+  ## Must be alphanumeric chars and should not contain any slashes.
+  path: ""
+
+log:
+  ## Level of verbosity for logs: info, debug, trace.
+  level: trace
+
+  ## Format the logs are written as: json, text.
+  format: text
+
+  ## TODO: Statefulness check should check if this is set, and the configMap should enable it.
+  ## File path where the logs will be written. If not set logs are written to stdout.
+  # file_path: /config/authelia.log
+
+## Default redirection URL
+##
+## If user tries to authenticate without any referer, Authelia does not know where to redirect the user to at the end
+## of the authentication process. This parameter allows you to specify the default redirection URL Authelia will use
+## in such a case.
+##
+## Note: this parameter is optional. If not provided, user won't be redirected upon successful authentication.
+## Default is https://www.<domain> (value at the top of the values.yaml).
+default_redirection_url: ""
+# default_redirection_url: https://example.com
+
+theme: light
+
+##
+## TOTP Configuration
+##
+## Parameters used for TOTP generation
+totp:
+  ## The issuer name displayed in the Authenticator application of your choice
+  ## See: https://github.com/google/google-authenticator/wiki/Key-Uri-Format for more info on issuer names
+  ## Defaults to <domain>.
+  issuer: ""
+  ## The period in seconds a one-time password is current for. Changing this will require all users to register
+  ## their TOTP applications again. Warning: before changing period read the docs link below.
+  period: 30
+  ## The skew controls number of one-time passwords either side of the current one that are valid.
+  ## Warning: before changing skew read the docs link below.
+  ## See: https://www.authelia.com/docs/configuration/one-time-password.html#period-and-skew to read the documentation.
+  skew: 1
+
+##
+## Duo Push API Configuration
+##
+## Parameters used to contact the Duo API. Those are generated when you protect an application of type
+## "Partner Auth API" in the management panel.
+duo_api:
+  enabled: false
+  hostname: api-123456789.example.com
+  integration_key: ABCDEF
+  plain_api_key: ""
+
+##
+## Authentication Backend Provider Configuration
+##
+## Used for verifying user passwords and retrieve information such as email address and groups users belong to.
+##
+## The available providers are: `file`, `ldap`. You must use one and only one of these providers.
+authentication_backend:
+  ## Disable both the HTML element and the API for reset password functionality
+  disable_reset_password: false
+
+  ## The amount of time to wait before we refresh data from the authentication backend. Uses duration notation.
+  ## To disable this feature set it to 'disable', this will slightly reduce security because for Authelia, users will
+  ## always belong to groups they belonged to at the time of login even if they have been removed from them in LDAP.
+  ## To force update on every request you can set this to '0' or 'always', this will increase processor demand.
+  ## See the below documentation for more information.
+  ## Duration Notation docs:  https://www.authelia.com/docs/configuration/index.html#duration-notation-format
+  ## Refresh Interval docs: https://www.authelia.com/docs/configuration/authentication/ldap.html#refresh-interval
+  refresh_interval: 5m
+
+  ## LDAP backend configuration.
+  ##
+  ## This backend allows Authelia to be scaled to more
+  ## than one instance and therefore is recommended for
+  ## production.
+  ldap:
+
+    ## Enable LDAP Backend.
+    enabled: false
+
+    ## The LDAP implementation, this affects elements like the attribute utilised for resetting a password.
+    ## Acceptable options are as follows:
+    ## - 'activedirectory' - For Microsoft Active Directory.
+    ## - 'custom' - For custom specifications of attributes and filters.
+    ## This currently defaults to 'custom' to maintain existing behaviour.
+    ##
+    ## Depending on the option here certain other values in this section have a default value, notably all of the
+    ## attribute mappings have a default value that this config overrides, you can read more about these default values
+    ## at https://www.authelia.com/docs/configuration/authentication/ldap.html#defaults
+    implementation: activedirectory
+
+    ## The url to the ldap server. Format: <scheme>://<address>[:<port>].
+    ## Scheme can be ldap or ldaps in the format (port optional).
+    url: ldap://openldap.default.svc.cluster.local
+
+    ## Connection Timeout.
+    timeout: 5s
+
+    ## Use StartTLS with the LDAP connection.
+    start_tls: false
+
+    tls:
+      ## Server Name for certificate validation (in case it's not set correctly in the URL).
+      server_name: ""
+
+      ## Skip verifying the server certificate (to allow a self-signed certificate).
+      ## In preference to setting this we strongly recommend you add the public portion of the certificate to the
+      ## certificates directory which is defined by the `certificates_directory` option at the top of the config.
+      skip_verify: false
+
+      ## Minimum TLS version for either Secure LDAP or LDAP StartTLS.
+      minimum_version: TLS1.2
+
+    ## The base dn for every LDAP query.
+    base_dn: DC=example,DC=com
+
+    ## The attribute holding the username of the user. This attribute is used to populate the username in the session
+    ## information. It was introduced due to #561 to handle case insensitive search queries. For you information,
+    ## Microsoft Active Directory usually uses 'sAMAccountName' and OpenLDAP usually uses 'uid'. Beware that this
+    ## attribute holds the unique identifiers for the users binding the user and the configuration stored in database.
+    ## Therefore only single value attributes are allowed and the value must never be changed once attributed to a user
+    ## otherwise it would break the configuration for that user. Technically, non-unique attributes like 'mail' can also
+    ## be used but we don't recommend using them, we instead advise to use the attributes mentioned above
+    ## (sAMAccountName and uid) to follow https://www.ietf.org/rfc/rfc2307.txt.
+    username_attribute: ""
+
+    ## An additional dn to define the scope to all users.
+    additional_users_dn: OU=Users
+
+    ## The users filter used in search queries to find the user profile based on input filled in login form.
+    ## Various placeholders are available in the user filter:
+    ## - {input} is a placeholder replaced by what the user inputs in the login form.
+    ## - {username_attribute} is a mandatory placeholder replaced by what is configured in `username_attribute`.
+    ## - {mail_attribute} is a placeholder replaced by what is configured in `mail_attribute`.
+    ## - DON'T USE - {0} is an alias for {input} supported for backward compatibility but it will be deprecated in later
+    ##   versions, so please don't use it.
+    ##
+    ## Recommended settings are as follows:
+    ## - Microsoft Active Directory: (&({username_attribute}={input})(objectCategory=person)(objectClass=user))
+    ## - OpenLDAP:
+    ##   - (&({username_attribute}={input})(objectClass=person))
+    ##   - (&({username_attribute}={input})(objectClass=inetOrgPerson))
+    ##
+    ## To allow sign in both with username and email, one can use a filter like
+    ## (&(|({username_attribute}={input})({mail_attribute}={input}))(objectClass=person))
+    users_filter: ""
+
+    ## An additional dn to define the scope of groups.
+    additional_groups_dn: OU=Groups
+
+    ## The groups filter used in search queries to find the groups of the user.
+    ## - {input} is a placeholder replaced by what the user inputs in the login form.
+    ## - {username} is a placeholder replace by the username stored in LDAP (based on `username_attribute`).
+    ## - {dn} is a matcher replaced by the user distinguished name, aka, user DN.
+    ## - {username_attribute} is a placeholder replaced by what is configured in `username_attribute`.
+    ## - {mail_attribute} is a placeholder replaced by what is configured in `mail_attribute`.
+    ## - DON'T USE - {0} is an alias for {input} supported for backward compatibility but it will be deprecated in later
+    ##   versions, so please don't use it.
+    ## - DON'T USE - {1} is an alias for {username} supported for backward compatibility but it will be deprecated in
+    ##   later version, so please don't use it.
+    ##
+    ## If your groups use the `groupOfUniqueNames` structure use this instead:
+    ##    (&(uniquemember={dn})(objectclass=groupOfUniqueNames))
+    groups_filter: ""
+
+    ## The attribute holding the name of the group
+    group_name_attribute: ""
+
+    ## The attribute holding the mail address of the user. If multiple email addresses are defined for a user, only the
+    ## first one returned by the LDAP server is used.
+    mail_attribute: ""
+
+    ## The attribute holding the display name of the user. This will be used to greet an authenticated user.
+    display_name_attribute: ""
+
+    ## The username of the admin user.
+    user: CN=Authelia,DC=example,DC=com
+    plain_password: ""
+
+  ##
+  ## File (Authentication Provider)
+  ##
+  ## With this backend, the users database is stored in a file which is updated when users reset their passwords.
+  ## Therefore, this backend is meant to be used in a dev environment and not in production since it prevents Authelia
+  ## to be scaled to more than one instance. The options under 'password' have sane defaults, and as it has security
+  ## implications it is highly recommended you leave the default values. Before considering changing these settings
+  ## please read the docs page below:
+  ## https://www.authelia.com/docs/configuration/authentication/file.html#password-hash-algorithm-tuning
+  ##
+  ## Important: Kubernetes (or HA) users must read https://www.authelia.com/docs/features/statelessness.html
+  ##
+  file:
+    enabled: true
+    path: /config/users_database.yml
+    password:
+      algorithm: argon2id
+      iterations: 1
+      key_length: 32
+      salt_length: 16
+      memory: 1024
+      parallelism: 8
+
+##
+## Access Control Configuration
+##
+## Access control is a list of rules defining the authorizations applied for one resource to users or group of users.
+##
+## If 'access_control' is not defined, ACL rules are disabled and the 'bypass' rule is applied, i.e., access is allowed
+## to anyone. Otherwise restrictions follow the rules defined.
+##
+## Note: One can use the wildcard * to match any subdomain.
+## It must stand at the beginning of the pattern. (example: *.mydomain.com)
+##
+## Note: You must put patterns containing wildcards between simple quotes for the YAML to be syntactically correct.
+##
+## Definition: A 'rule' is an object with the following keys: 'domain', 'subject', 'policy' and 'resources'.
+##
+## - 'domain' defines which domain or set of domains the rule applies to.
+##
+## - 'subject' defines the subject to apply authorizations to. This parameter is optional and matching any user if not
+##    provided. If provided, the parameter represents either a user or a group. It should be of the form
+##    'user:<username>' or 'group:<groupname>'.
+##
+## - 'policy' is the policy to apply to resources. It must be either 'bypass', 'one_factor', 'two_factor' or 'deny'.
+##
+## - 'resources' is a list of regular expressions that matches a set of resources to apply the policy to. This parameter
+##   is optional and matches any resource if not provided.
+##
+## Note: the order of the rules is important. The first policy matching (domain, resource, subject) applies.
+access_control:
+  ## Default policy can either be 'bypass', 'one_factor', 'two_factor' or 'deny'. It is the policy applied to any
+  ## resource if there is no policy to be applied to the user.
+  default_policy: deny
+
+  networks: []
+  # networks:
+  # - name: private
+  #   networks:
+  #   - 10.0.0.0/8
+  #   - 172.16.0.0/12
+  #   - 192.168.0.0/16
+  # - name: vpn
+  #   networks:
+  #   - 10.9.0.0/16
+
+  rules: []
+  # rules:
+  # - domain: public.example.com
+  #   policy: bypass
+  # - domain: "*.example.com"
+  #   policy: bypass
+  #   methods:
+  #   - OPTIONS
+  # - domain: secure.example.com
+  #   policy: one_factor
+  #   networks:
+  #   - private
+  #   - vpn
+  #   - 192.168.1.0/24
+  #   - 10.0.0.1
+  # - domain:
+  #   - secure.example.com
+  #   - private.example.com
+  #   policy: two_factor
+  # - domain: singlefactor.example.com
+  #   policy: one_factor
+  # - domain: "mx2.mail.example.com"
+  #   subject: "group:admins"
+  #   policy: deny
+  # - domain: "*.example.com"
+  #   subject:
+  #   - "group:admins"
+  #   - "group:moderators"
+  #   policy: two_factor
+  # - domain: dev.example.com
+  #   resources:
+  #   - "^/groups/dev/.*$"
+  #   subject: "group:dev"
+  #   policy: two_factor
+  # - domain: dev.example.com
+  #   resources:
+  #   - "^/users/john/.*$"
+  #   subject:
+  #   - ["group:dev", "user:john"]
+  #   - "group:admins"
+  #   policy: two_factor
+  # - domain: "{user}.example.com"
+  #   policy: bypass
+
+##
+## Session Provider Configuration
+##
+## The session cookies identify the user once logged in.
+## The available providers are: `memory`, `redis`. Memory is the provider unless redis is defined.
+session:
+  ## The name of the session cookie. (default: authelia_session).
+  name: authelia_session
+
+  ## Sets the Cookie SameSite value. Possible options are none, lax, or strict.
+  ## Please read https://www.authelia.com/docs/configuration/session.html#same_site
+  same_site: lax
+
+  ## The time in seconds before the cookie expires and session is reset.
+  expiration: 1h
+
+  ## The inactivity time in seconds before the session is reset.
+  inactivity: 5m
+
+  ## The remember me duration.
+  ## Value is in seconds, or duration notation. Value of 0 disables remember me.
+  ## See: https://www.authelia.com/docs/configuration/index.html#duration-notation-format
+  ## Longer periods are considered less secure because a stolen cookie will last longer giving attackers more time to
+  ## spy or attack. Currently the default is 1M or 1 month.
+  remember_me_duration: 1M
+
+##
+## Redis Provider
+##
+## Important: Kubernetes (or HA) users must read https://www.authelia.com/docs/features/statelessness.html
+##
+## The redis connection details
+redisProvider:
+  port: 6379
+
+  ## Optional username to be used with authentication.
+  # username: authelia
+  username: ""
+
+  ## This is the Redis DB Index https://redis.io/commands/select (sometimes referred to as database number, DB, etc).
+  database_index: 0
+
+  ## The maximum number of concurrent active connections to Redis.
+  maximum_active_connections: 8
+
+  ## The target number of idle connections to have open ready for work. Useful when opening connections is slow.
+  minimum_idle_connections: 0
+
+  ## The Redis TLS configuration. If defined will require a TLS connection to the Redis instance(s).
+  tls:
+    enabled: false
+
+    ## Server Name for certificate validation (in case you are using the IP or non-FQDN in the host option).
+    server_name: ""
+
+    ## Skip verifying the server certificate (to allow a self-signed certificate).
+    ## In preference to setting this we strongly recommend you add the public portion of the certificate to the
+    ## certificates directory which is defined by the `certificates_directory` option at the top of the config.
+    skip_verify: false
+
+    ## Minimum TLS version for the connection.
+    minimum_version: TLS1.2
+
+  ## The Redis HA configuration options.
+  ## This provides specific options to Redis Sentinel, sentinel_name must be defined (Master Name).
+  high_availability:
+    enabled: false
+    enabledSecret: false
+    ## Sentinel Name / Master Name
+    sentinel_name: mysentinel
+
+    ## The additional nodes to pre-seed the redis provider with (for sentinel).
+    ## If the host in the above section is defined, it will be combined with this list to connect to sentinel.
+    ## For high availability to be used you must have either defined; the host above or at least one node below.
+    nodes: []
+    # nodes:
+    #   - host: sentinel-0.databases.svc.cluster.local
+    #     port: 26379
+    #   - host: sentinel-1.databases.svc.cluster.local
+    #     port: 26379
+
+    ## Choose the host with the lowest latency.
+    route_by_latency: false
+
+    ## Choose the host randomly.
+    route_randomly: false
+
+##
+## Regulation Configuration
+##
+## This mechanism prevents attackers from brute forcing the first factor. It bans the user if too many attempts are done
+## in a short period of time.
+regulation:
+  ## The number of failed login attempts before user is banned. Set it to 0 to disable regulation.
+  max_retries: 3
+
+  ## The time range during which the user can attempt login before being banned. The user is banned if the
+  ## authentication failed 'max_retries' times in a 'find_time' seconds window. Find Time accepts duration notation.
+  ## See: https://www.authelia.com/docs/configuration/index.html#duration-notation-format
+  find_time: 2m
+
+  ## The length of time before a banned user can login again. Ban Time accepts duration notation.
+  ## See: https://www.authelia.com/docs/configuration/index.html#duration-notation-format
+  ban_time: 5m
+
+
+##
+## Storage Provider Configuration
+##
+## The available providers are: `local`, `mysql`, `postgres`. You must use one and only one of these providers.
+storage:
+  ##
+  ## PostgreSQL (Storage Provider)
+  ##
+  postgres:
+    port: 5432
+    database: authelia
+    username: authelia
+    sslmode: disable
+    timeout: 5s
+
+##
+## Notification Provider
+##
+##
+## Notifications are sent to users when they require a password reset, a u2f registration or a TOTP registration.
+## The available providers are: filesystem, smtp. You must use one and only one of these providers.
+notifier:
+  ## You can disable the notifier startup check by setting this to true.
+  disable_startup_check: false
+
+  ##
+  ## File System (Notification Provider)
+  ##
+  ## Important: Kubernetes (or HA) users must read https://www.authelia.com/docs/features/statelessness.html
+  ##
+  filesystem:
+    enabled: true
+    filename: /config/notification.txt
+
+  ##
+  ## SMTP (Notification Provider)
+  ##
+  ## Use a SMTP server for sending notifications. Authelia uses the PLAIN or LOGIN methods to authenticate.
+  ## [Security] By default Authelia will:
+  ##   - force all SMTP connections over TLS including unauthenticated connections
+  ##      - use the disable_require_tls boolean value to disable this requirement
+  ##        (only works for unauthenticated connections)
+  ##   - validate the SMTP server x509 certificate during the TLS handshake against the hosts trusted certificates
+  ##     (configure in tls section)
+  smtp:
+    enabled: false
+    enabledSecret: false
+    host: smtp.mail.svc.cluster.local
+    port: 25
+    timeout: 5s
+    username: test
+    plain_password: test
+    sender: admin@example.com
+    ## HELO/EHLO Identifier. Some SMTP Servers may reject the default of localhost.
+    identifier: localhost
+    ## Subject configuration of the emails sent.
+    ## {title} is replaced by the text from the notifier
+    subject: "[Authelia] {title}"
+    ## This address is used during the startup check to verify the email configuration is correct.
+    ## It's not important what it is except if your email server only allows local delivery.
+    startup_check_address: test@authelia.com
+    disable_require_tls: false
+    disable_html_emails: false
+
+    tls:
+      ## Server Name for certificate validation (in case you are using the IP or non-FQDN in the host option).
+      server_name: ""
+
+      ## Skip verifying the server certificate (to allow a self-signed certificate).
+      ## In preference to setting this we strongly recommend you add the public portion of the certificate to the
+      ## certificates directory which is defined by the `certificates_directory` option at the top of the config.
+      skip_verify: false
+
+      ## Minimum TLS version for either StartTLS or SMTPS.
+      minimum_version: TLS1.2
+
+identity_providers:
+  oidc:
+    ## Enables this in the config map. Currently in beta stage.
+    ## See https://www.authelia.com/docs/configuration/identity-providers/oidc.html#roadmap
+    enabled: false
+
+    access_token_lifespan: 1h
+    authorize_code_lifespan: 1m
+    id_token_lifespan: 1h
+    refresh_token_lifespan: 90m
+
+    enable_client_debug_messages: false
+
+    ## SECURITY NOTICE: It's not recommended changing this option, and highly discouraged to have it below 8 for
+    ## security reasons.
+    minimum_parameter_entropy: 8
+
+    clients: []
+    # clients:
+      # -
+        ## The ID is the OpenID Connect ClientID which is used to link an application to a configuration.
+        # id: myapp
+
+        ## The description to show to users when they end up on the consent screen. Defaults to the ID above.
+        # description: My Application
+
+        ## The client secret is a shared secret between Authelia and the consumer of this client.
+        # secret: apple123
+
+        ## Sets the client to public. This should typically not be set, please see the documentation for usage.
+        # public: false
+
+        ## The policy to require for this client; one_factor or two_factor.
+        # authorization_policy: two_factor
+
+        ## Audience this client is allowed to request.
+        # audience: []
+
+        ## Scopes this client is allowed to request.
+        # scopes:
+        #   - openid
+        #   - profile
+        #   - email
+        #   - groups
+
+        ## Redirect URI's specifies a list of valid case-sensitive callbacks for this client.
+        # redirect_uris:
+        #   - https://oidc.example.com/oauth2/callback
+
+        ## Grant Types configures which grants this client can obtain.
+        ## It's not recommended to configure this unless you know what you're doing.
+        # grant_types:
+        #   - refresh_token
+        #   - authorization_code
+
+        ## Response Types configures which responses this client can be sent.
+        ## It's not recommended to configure this unless you know what you're doing.
+        # response_types:
+        #   - code
+
+        ## Response Modes configures which response modes this client supports.
+        ## It's not recommended to configure this unless you know what you're doing.
+        # response_modes:
+        #   - form_post
+        #   - query
+        #   - fragment
+
+        ## The algorithm used to sign userinfo endpoint responses for this client, either none or RS256.
+        # userinfo_signing_algorithm: none
--- a/incubator/authelia/0.0.1/values.yaml
+++ b/incubator/authelia/0.0.1/values.yaml
--- a/incubator/authelia/item.yaml
+++ b/incubator/authelia/item.yaml
@ -0,0 +1,3 @@
+categories:
+  - security
+icon_url: https://avatars2.githubusercontent.com/u/59122411?s=200&v=4
--- a/incubator/nextcloud/2.3.2/Chart.lock
+++ b/incubator/nextcloud/2.3.2/Chart.lock
@ -9,4 +9,4 @@ dependencies:
  repository: https://charts.bitnami.com/bitnami
  version: 14.8.11
 digest: sha256:71e8d9de7d736bd5b9a6a167b86e24b48884272e74a7769e038bf71ad90257d4
-generated: "2021-08-28T10:38:49.10680875Z"
+generated: "2021-08-28T11:44:46.47094976Z"
--- a/stable/airsonic/1.8.2/Chart.lock
+++ b/stable/airsonic/1.8.2/Chart.lock
@ -3,4 +3,4 @@ dependencies:
  repository: https://truecharts.org/
  version: 6.10.6
 digest: sha256:b4bf4983bf57b47bd2c23cfa38cf9ffbf029eb690a4c5a968c4580bf0ffe5b8d
-generated: "2021-08-28T10:33:56.039788522Z"
+generated: "2021-08-28T11:39:05.925474793Z"
--- a/stable/appdaemon/3.8.2/Chart.lock
+++ b/stable/appdaemon/3.8.2/Chart.lock
@ -3,4 +3,4 @@ dependencies:
  repository: https://truecharts.org/
  version: 6.10.6
 digest: sha256:b4bf4983bf57b47bd2c23cfa38cf9ffbf029eb690a4c5a968c4580bf0ffe5b8d
-generated: "2021-08-28T10:33:59.423857492Z"
+generated: "2021-08-28T11:39:09.792968434Z"
--- a/stable/bazarr/6.8.2/Chart.lock
+++ b/stable/bazarr/6.8.2/Chart.lock
@ -3,4 +3,4 @@ dependencies:
  repository: https://truecharts.org/
  version: 6.10.6
 digest: sha256:b4bf4983bf57b47bd2c23cfa38cf9ffbf029eb690a4c5a968c4580bf0ffe5b8d
-generated: "2021-08-28T10:34:02.740124507Z"
+generated: "2021-08-28T11:39:13.570792852Z"
--- a/stable/booksonic-air/1.6.2/Chart.lock
+++ b/stable/booksonic-air/1.6.2/Chart.lock
@ -3,4 +3,4 @@ dependencies:
  repository: https://truecharts.org
  version: 6.10.6
 digest: sha256:9d26604a382118f9894ddbb7ab89c2d144a331d8fad534bdb2943269b48bb7c6
-generated: "2021-08-28T10:34:06.033424384Z"
+generated: "2021-08-28T11:39:17.26158671Z"
--- a/stable/calibre-web/6.8.2/Chart.lock
+++ b/stable/calibre-web/6.8.2/Chart.lock
@ -3,4 +3,4 @@ dependencies:
  repository: https://truecharts.org/
  version: 6.10.6
 digest: sha256:b4bf4983bf57b47bd2c23cfa38cf9ffbf029eb690a4c5a968c4580bf0ffe5b8d
-generated: "2021-08-28T10:34:12.746234233Z"
+generated: "2021-08-28T11:39:24.868601428Z"
--- a/stable/calibre/1.6.2/Chart.lock
+++ b/stable/calibre/1.6.2/Chart.lock
@ -3,4 +3,4 @@ dependencies:
  repository: https://truecharts.org
  version: 6.10.6
 digest: sha256:9d26604a382118f9894ddbb7ab89c2d144a331d8fad534bdb2943269b48bb7c6
-generated: "2021-08-28T10:34:09.339310342Z"
+generated: "2021-08-28T11:39:20.896174097Z"
--- a/stable/collabora-online/6.8.2/Chart.lock
+++ b/stable/collabora-online/6.8.2/Chart.lock
@ -3,4 +3,4 @@ dependencies:
  repository: https://truecharts.org/
  version: 6.10.6
 digest: sha256:b4bf4983bf57b47bd2c23cfa38cf9ffbf029eb690a4c5a968c4580bf0ffe5b8d
-generated: "2021-08-28T10:34:16.032859883Z"
+generated: "2021-08-28T11:39:28.625693342Z"
--- a/stable/deconz/1.6.2/Chart.lock
+++ b/stable/deconz/1.6.2/Chart.lock
@ -3,4 +3,4 @@ dependencies:
  repository: https://truecharts.org
  version: 6.10.6
 digest: sha256:9d26604a382118f9894ddbb7ab89c2d144a331d8fad534bdb2943269b48bb7c6
-generated: "2021-08-28T10:34:19.331647091Z"
+generated: "2021-08-28T11:39:32.28873189Z"
--- a/stable/deepstack-cpu/4.8.2/Chart.lock
+++ b/stable/deepstack-cpu/4.8.2/Chart.lock
@ -3,4 +3,4 @@ dependencies:
  repository: https://truecharts.org/
  version: 6.10.6
 digest: sha256:b4bf4983bf57b47bd2c23cfa38cf9ffbf029eb690a4c5a968c4580bf0ffe5b8d
-generated: "2021-08-28T10:34:22.612947794Z"
+generated: "2021-08-28T11:39:35.958669852Z"
--- a/stable/deluge/6.8.2/Chart.lock
+++ b/stable/deluge/6.8.2/Chart.lock
@ -3,4 +3,4 @@ dependencies:
  repository: https://truecharts.org/
  version: 6.10.6
 digest: sha256:b4bf4983bf57b47bd2c23cfa38cf9ffbf029eb690a4c5a968c4580bf0ffe5b8d
-generated: "2021-08-28T10:34:25.942404964Z"
+generated: "2021-08-28T11:39:39.608332419Z"
--- a/stable/dizquetv/1.6.2/Chart.lock
+++ b/stable/dizquetv/1.6.2/Chart.lock
@ -3,4 +3,4 @@ dependencies:
  repository: https://truecharts.org
  version: 6.10.6
 digest: sha256:9d26604a382118f9894ddbb7ab89c2d144a331d8fad534bdb2943269b48bb7c6
-generated: "2021-08-28T10:34:29.240033197Z"
+generated: "2021-08-28T11:39:43.228576981Z"
--- a/stable/duplicati/1.6.2/Chart.lock
+++ b/stable/duplicati/1.6.2/Chart.lock
@ -3,4 +3,4 @@ dependencies:
  repository: https://truecharts.org
  version: 6.10.6
 digest: sha256:9d26604a382118f9894ddbb7ab89c2d144a331d8fad534bdb2943269b48bb7c6
-generated: "2021-08-28T10:34:32.531567462Z"
+generated: "2021-08-28T11:39:47.170079867Z"
--- a/stable/emby/6.8.2/Chart.lock
+++ b/stable/emby/6.8.2/Chart.lock
@ -3,4 +3,4 @@ dependencies:
  repository: https://truecharts.org/
  version: 6.10.6
 digest: sha256:b4bf4983bf57b47bd2c23cfa38cf9ffbf029eb690a4c5a968c4580bf0ffe5b8d
-generated: "2021-08-28T10:34:35.844133915Z"
+generated: "2021-08-28T11:39:50.883034562Z"
--- a/stable/esphome/6.8.2/Chart.lock
+++ b/stable/esphome/6.8.2/Chart.lock
@ -3,4 +3,4 @@ dependencies:
  repository: https://truecharts.org/
  version: 6.10.6
 digest: sha256:b4bf4983bf57b47bd2c23cfa38cf9ffbf029eb690a4c5a968c4580bf0ffe5b8d
-generated: "2021-08-28T10:34:39.165666299Z"
+generated: "2021-08-28T11:39:54.687451992Z"
--- a/stable/external-service/1.1.3/Chart.lock
+++ b/stable/external-service/1.1.3/Chart.lock
@ -3,4 +3,4 @@ dependencies:
  repository: https://truecharts.org/
  version: 6.10.6
 digest: sha256:b4bf4983bf57b47bd2c23cfa38cf9ffbf029eb690a4c5a968c4580bf0ffe5b8d
-generated: "2021-08-28T10:34:42.514890171Z"
+generated: "2021-08-28T11:39:58.390037332Z"
--- a/stable/fireflyiii/5.3.2/Chart.lock
+++ b/stable/fireflyiii/5.3.2/Chart.lock
@ -6,4 +6,4 @@ dependencies:
  repository: https://truecharts.org/
  version: 1.1.0
 digest: sha256:5c11909e46dde6b3c6ce8ff24e890146ef3f689da1fd86ccbc61da3dc6e079f4
-generated: "2021-08-28T10:34:46.411383873Z"
+generated: "2021-08-28T11:40:02.824178521Z"
--- a/stable/flaresolverr/1.6.2/Chart.lock
+++ b/stable/flaresolverr/1.6.2/Chart.lock
@ -3,4 +3,4 @@ dependencies:
  repository: https://truecharts.org
  version: 6.10.6
 digest: sha256:9d26604a382118f9894ddbb7ab89c2d144a331d8fad534bdb2943269b48bb7c6
-generated: "2021-08-28T10:34:50.452863325Z"
+generated: "2021-08-28T11:40:07.443345588Z"
--- a/stable/flood/1.6.2/Chart.lock
+++ b/stable/flood/1.6.2/Chart.lock
@ -3,4 +3,4 @@ dependencies:
  repository: https://truecharts.org
  version: 6.10.6
 digest: sha256:9d26604a382118f9894ddbb7ab89c2d144a331d8fad534bdb2943269b48bb7c6
-generated: "2021-08-28T10:34:53.753496136Z"
+generated: "2021-08-28T11:40:11.216252167Z"
--- a/stable/focalboard/1.6.2/Chart.lock
+++ b/stable/focalboard/1.6.2/Chart.lock
@ -3,4 +3,4 @@ dependencies:
  repository: https://truecharts.org
  version: 6.10.6
 digest: sha256:9d26604a382118f9894ddbb7ab89c2d144a331d8fad534bdb2943269b48bb7c6
-generated: "2021-08-28T10:34:57.03819096Z"
+generated: "2021-08-28T11:40:14.968942194Z"
--- a/stable/freeradius/1.4.2/Chart.lock
+++ b/stable/freeradius/1.4.2/Chart.lock
@ -3,4 +3,4 @@ dependencies:
  repository: https://truecharts.org/
  version: 6.10.6
 digest: sha256:b4bf4983bf57b47bd2c23cfa38cf9ffbf029eb690a4c5a968c4580bf0ffe5b8d
-generated: "2021-08-28T10:35:00.35148489Z"
+generated: "2021-08-28T11:40:18.604916044Z"
--- a/stable/freshrss/6.8.2/Chart.lock
+++ b/stable/freshrss/6.8.2/Chart.lock
@ -3,4 +3,4 @@ dependencies:
  repository: https://truecharts.org/
  version: 6.10.6
 digest: sha256:b4bf4983bf57b47bd2c23cfa38cf9ffbf029eb690a4c5a968c4580bf0ffe5b8d
-generated: "2021-08-28T10:35:03.662662091Z"
+generated: "2021-08-28T11:40:22.428892227Z"
--- a/stable/gaps/6.8.2/Chart.lock
+++ b/stable/gaps/6.8.2/Chart.lock
@ -3,4 +3,4 @@ dependencies:
  repository: https://truecharts.org/
  version: 6.10.6
 digest: sha256:b4bf4983bf57b47bd2c23cfa38cf9ffbf029eb690a4c5a968c4580bf0ffe5b8d
-generated: "2021-08-28T10:35:06.96462831Z"
+generated: "2021-08-28T11:40:26.12775443Z"
--- a/stable/gonic/1.6.2/Chart.lock
+++ b/stable/gonic/1.6.2/Chart.lock
@ -3,4 +3,4 @@ dependencies:
  repository: https://truecharts.org
  version: 6.10.6
 digest: sha256:9d26604a382118f9894ddbb7ab89c2d144a331d8fad534bdb2943269b48bb7c6
-generated: "2021-08-28T10:35:10.263103777Z"
+generated: "2021-08-28T11:40:29.762460768Z"
--- a/stable/grocy/6.8.2/Chart.lock
+++ b/stable/grocy/6.8.2/Chart.lock
@ -3,4 +3,4 @@ dependencies:
  repository: https://truecharts.org/
  version: 6.10.6
 digest: sha256:b4bf4983bf57b47bd2c23cfa38cf9ffbf029eb690a4c5a968c4580bf0ffe5b8d
-generated: "2021-08-28T10:35:13.575314952Z"
+generated: "2021-08-28T11:40:33.422698691Z"
--- a/stable/handbrake/6.8.2/Chart.lock
+++ b/stable/handbrake/6.8.2/Chart.lock
@ -3,4 +3,4 @@ dependencies:
  repository: https://truecharts.org/
  version: 6.10.6
 digest: sha256:b4bf4983bf57b47bd2c23cfa38cf9ffbf029eb690a4c5a968c4580bf0ffe5b8d
-generated: "2021-08-28T10:35:16.890086956Z"
+generated: "2021-08-28T11:40:37.024279031Z"
--- a/stable/haste-server/1.8.2/Chart.lock
+++ b/stable/haste-server/1.8.2/Chart.lock
@ -3,4 +3,4 @@ dependencies:
  repository: https://truecharts.org/
  version: 6.10.6
 digest: sha256:b4bf4983bf57b47bd2c23cfa38cf9ffbf029eb690a4c5a968c4580bf0ffe5b8d
-generated: "2021-08-28T10:35:20.20630098Z"
+generated: "2021-08-28T11:40:40.748704245Z"
--- a/stable/healthchecks/1.6.2/Chart.lock
+++ b/stable/healthchecks/1.6.2/Chart.lock
@ -3,4 +3,4 @@ dependencies:
  repository: https://truecharts.org
  version: 6.10.6
 digest: sha256:9d26604a382118f9894ddbb7ab89c2d144a331d8fad534bdb2943269b48bb7c6
-generated: "2021-08-28T10:35:23.515951131Z"
+generated: "2021-08-28T11:40:44.34103548Z"
--- a/stable/heimdall/6.8.2/Chart.lock
+++ b/stable/heimdall/6.8.2/Chart.lock
@ -3,4 +3,4 @@ dependencies:
  repository: https://truecharts.org/
  version: 6.10.6
 digest: sha256:b4bf4983bf57b47bd2c23cfa38cf9ffbf029eb690a4c5a968c4580bf0ffe5b8d
-generated: "2021-08-28T10:35:26.82010231Z"
+generated: "2021-08-28T11:40:47.957720223Z"
--- a/stable/home-assistant/6.8.2/Chart.lock
+++ b/stable/home-assistant/6.8.2/Chart.lock
@ -3,4 +3,4 @@ dependencies:
  repository: https://truecharts.org/
  version: 6.10.6
 digest: sha256:b4bf4983bf57b47bd2c23cfa38cf9ffbf029eb690a4c5a968c4580bf0ffe5b8d
-generated: "2021-08-28T10:35:30.125734534Z"
+generated: "2021-08-28T11:40:51.693998187Z"
--- a/stable/hyperion-ng/1.6.2/Chart.lock
+++ b/stable/hyperion-ng/1.6.2/Chart.lock
@ -3,4 +3,4 @@ dependencies:
  repository: https://truecharts.org
  version: 6.10.6
 digest: sha256:9d26604a382118f9894ddbb7ab89c2d144a331d8fad534bdb2943269b48bb7c6
-generated: "2021-08-28T10:35:33.412908342Z"
+generated: "2021-08-28T11:40:55.298513546Z"
--- a/stable/jackett/6.8.2/Chart.lock
+++ b/stable/jackett/6.8.2/Chart.lock
@ -3,4 +3,4 @@ dependencies:
  repository: https://truecharts.org/
  version: 6.10.6
 digest: sha256:b4bf4983bf57b47bd2c23cfa38cf9ffbf029eb690a4c5a968c4580bf0ffe5b8d
-generated: "2021-08-28T10:35:36.699581687Z"
+generated: "2021-08-28T11:40:58.986822925Z"
--- a/stable/jellyfin/6.8.2/Chart.lock
+++ b/stable/jellyfin/6.8.2/Chart.lock
@ -3,4 +3,4 @@ dependencies:
  repository: https://truecharts.org/
  version: 6.10.6
 digest: sha256:b4bf4983bf57b47bd2c23cfa38cf9ffbf029eb690a4c5a968c4580bf0ffe5b8d
-generated: "2021-08-28T10:35:40.014433734Z"
+generated: "2021-08-28T11:41:02.749666094Z"
--- a/stable/kms/6.8.2/Chart.lock
+++ b/stable/kms/6.8.2/Chart.lock
@ -3,4 +3,4 @@ dependencies:
  repository: https://truecharts.org/
  version: 6.10.6
 digest: sha256:b4bf4983bf57b47bd2c23cfa38cf9ffbf029eb690a4c5a968c4580bf0ffe5b8d
-generated: "2021-08-28T10:35:43.32994829Z"
+generated: "2021-08-28T11:41:06.400956704Z"
--- a/stable/komga/1.6.2/Chart.lock
+++ b/stable/komga/1.6.2/Chart.lock
@ -3,4 +3,4 @@ dependencies:
  repository: https://truecharts.org
  version: 6.10.6
 digest: sha256:9d26604a382118f9894ddbb7ab89c2d144a331d8fad534bdb2943269b48bb7c6
-generated: "2021-08-28T10:35:46.658161587Z"
+generated: "2021-08-28T11:41:10.180086123Z"
--- a/stable/lazylibrarian/6.8.2/Chart.lock
+++ b/stable/lazylibrarian/6.8.2/Chart.lock
@ -3,4 +3,4 @@ dependencies:
  repository: https://truecharts.org/
  version: 6.10.6
 digest: sha256:b4bf4983bf57b47bd2c23cfa38cf9ffbf029eb690a4c5a968c4580bf0ffe5b8d
-generated: "2021-08-28T10:35:49.949656152Z"
+generated: "2021-08-28T11:41:14.029359167Z"
--- a/stable/librespeed/1.6.2/Chart.lock
+++ b/stable/librespeed/1.6.2/Chart.lock
@ -3,4 +3,4 @@ dependencies:
  repository: https://truecharts.org
  version: 6.10.6
 digest: sha256:9d26604a382118f9894ddbb7ab89c2d144a331d8fad534bdb2943269b48bb7c6
-generated: "2021-08-28T10:35:53.3265703Z"
+generated: "2021-08-28T11:41:17.659644222Z"
--- a/stable/lidarr/6.8.2/Chart.lock
+++ b/stable/lidarr/6.8.2/Chart.lock
@ -3,4 +3,4 @@ dependencies:
  repository: https://truecharts.org/
  version: 6.10.6
 digest: sha256:b4bf4983bf57b47bd2c23cfa38cf9ffbf029eb690a4c5a968c4580bf0ffe5b8d
-generated: "2021-08-28T10:35:56.632588511Z"
+generated: "2021-08-28T11:41:21.343018508Z"
--- a/stable/littlelink/1.2.2/Chart.lock
+++ b/stable/littlelink/1.2.2/Chart.lock
@ -3,4 +3,4 @@ dependencies:
  repository: https://truecharts.org/
  version: 6.10.6
 digest: sha256:b4bf4983bf57b47bd2c23cfa38cf9ffbf029eb690a4c5a968c4580bf0ffe5b8d
-generated: "2021-08-28T10:35:59.922517597Z"
+generated: "2021-08-28T11:41:25.037330231Z"
--- a/stable/lychee/6.8.2/Chart.lock
+++ b/stable/lychee/6.8.2/Chart.lock
@ -3,4 +3,4 @@ dependencies:
  repository: https://truecharts.org/
  version: 6.10.6
 digest: sha256:b4bf4983bf57b47bd2c23cfa38cf9ffbf029eb690a4c5a968c4580bf0ffe5b8d
-generated: "2021-08-28T10:36:03.222691988Z"
+generated: "2021-08-28T11:41:28.666266247Z"
--- a/stable/mealie/1.8.2/Chart.lock
+++ b/stable/mealie/1.8.2/Chart.lock
@ -3,4 +3,4 @@ dependencies:
  repository: https://truecharts.org/
  version: 6.10.6
 digest: sha256:b4bf4983bf57b47bd2c23cfa38cf9ffbf029eb690a4c5a968c4580bf0ffe5b8d
-generated: "2021-08-28T10:36:06.518293213Z"
+generated: "2021-08-28T11:41:32.453450729Z"
--- a/stable/mosquitto/1.8.2/Chart.lock
+++ b/stable/mosquitto/1.8.2/Chart.lock
@ -3,4 +3,4 @@ dependencies:
  repository: https://truecharts.org/
  version: 6.10.6
 digest: sha256:b4bf4983bf57b47bd2c23cfa38cf9ffbf029eb690a4c5a968c4580bf0ffe5b8d
-generated: "2021-08-28T10:36:09.818975149Z"
+generated: "2021-08-28T11:41:36.222715795Z"
--- a/stable/mylar/1.6.2/Chart.lock
+++ b/stable/mylar/1.6.2/Chart.lock
@ -3,4 +3,4 @@ dependencies:
  repository: https://truecharts.org
  version: 6.10.6
 digest: sha256:9d26604a382118f9894ddbb7ab89c2d144a331d8fad534bdb2943269b48bb7c6
-generated: "2021-08-28T10:36:13.135154129Z"
+generated: "2021-08-28T11:41:39.945778337Z"
--- a/stable/navidrome/6.8.2/Chart.lock
+++ b/stable/navidrome/6.8.2/Chart.lock
@ -3,4 +3,4 @@ dependencies:
  repository: https://truecharts.org/
  version: 6.10.6
 digest: sha256:b4bf4983bf57b47bd2c23cfa38cf9ffbf029eb690a4c5a968c4580bf0ffe5b8d
-generated: "2021-08-28T10:36:16.465679672Z"
+generated: "2021-08-28T11:41:43.821921613Z"
--- a/stable/node-red/6.8.2/Chart.lock
+++ b/stable/node-red/6.8.2/Chart.lock
@ -3,4 +3,4 @@ dependencies:
  repository: https://truecharts.org/
  version: 6.10.6
 digest: sha256:b4bf4983bf57b47bd2c23cfa38cf9ffbf029eb690a4c5a968c4580bf0ffe5b8d
-generated: "2021-08-28T10:36:19.781940921Z"
+generated: "2021-08-28T11:41:47.775403561Z"
--- a/stable/nullserv/1.6.2/Chart.lock
+++ b/stable/nullserv/1.6.2/Chart.lock
@ -3,4 +3,4 @@ dependencies:
  repository: https://truecharts.org
  version: 6.10.6
 digest: sha256:9d26604a382118f9894ddbb7ab89c2d144a331d8fad534bdb2943269b48bb7c6
-generated: "2021-08-28T10:36:23.097947266Z"
+generated: "2021-08-28T11:41:51.46243096Z"
--- a/stable/nzbget/6.8.2/Chart.lock
+++ b/stable/nzbget/6.8.2/Chart.lock
@ -3,4 +3,4 @@ dependencies:
  repository: https://truecharts.org/
  version: 6.10.6
 digest: sha256:b4bf4983bf57b47bd2c23cfa38cf9ffbf029eb690a4c5a968c4580bf0ffe5b8d
-generated: "2021-08-28T10:36:26.394815593Z"
+generated: "2021-08-28T11:41:55.21423404Z"
--- a/stable/nzbhydra/6.8.2/Chart.lock
+++ b/stable/nzbhydra/6.8.2/Chart.lock
@ -3,4 +3,4 @@ dependencies:
  repository: https://truecharts.org/
  version: 6.10.6
 digest: sha256:b4bf4983bf57b47bd2c23cfa38cf9ffbf029eb690a4c5a968c4580bf0ffe5b8d
-generated: "2021-08-28T10:36:29.868541838Z"
+generated: "2021-08-28T11:41:58.902425488Z"
--- a/stable/octoprint/1.6.2/Chart.lock
+++ b/stable/octoprint/1.6.2/Chart.lock
@ -3,4 +3,4 @@ dependencies:
  repository: https://truecharts.org
  version: 6.10.6
 digest: sha256:9d26604a382118f9894ddbb7ab89c2d144a331d8fad534bdb2943269b48bb7c6
-generated: "2021-08-28T10:36:33.17773855Z"
+generated: "2021-08-28T11:42:02.801917501Z"
--- a/stable/omada-controller/1.6.2/Chart.lock
+++ b/stable/omada-controller/1.6.2/Chart.lock
@ -3,4 +3,4 @@ dependencies:
  repository: https://truecharts.org
  version: 6.10.6
 digest: sha256:9d26604a382118f9894ddbb7ab89c2d144a331d8fad534bdb2943269b48bb7c6
-generated: "2021-08-28T10:36:36.510777221Z"
+generated: "2021-08-28T11:42:06.840948994Z"
--- a/stable/ombi/6.8.2/Chart.lock
+++ b/stable/ombi/6.8.2/Chart.lock
@ -3,4 +3,4 @@ dependencies:
  repository: https://truecharts.org/
  version: 6.10.6
 digest: sha256:b4bf4983bf57b47bd2c23cfa38cf9ffbf029eb690a4c5a968c4580bf0ffe5b8d
-generated: "2021-08-28T10:36:39.819329692Z"
+generated: "2021-08-28T11:42:10.876883682Z"
--- a/stable/openldap/1.4.2/Chart.lock
+++ b/stable/openldap/1.4.2/Chart.lock
@ -3,4 +3,4 @@ dependencies:
  repository: https://truecharts.org/
  version: 6.10.6
 digest: sha256:b4bf4983bf57b47bd2c23cfa38cf9ffbf029eb690a4c5a968c4580bf0ffe5b8d
-generated: "2021-08-28T10:36:43.131667636Z"
+generated: "2021-08-28T11:42:14.81916482Z"
--- a/stable/organizr/6.8.2/Chart.lock
+++ b/stable/organizr/6.8.2/Chart.lock
@ -3,4 +3,4 @@ dependencies:
  repository: https://truecharts.org/
  version: 6.10.6
 digest: sha256:b4bf4983bf57b47bd2c23cfa38cf9ffbf029eb690a4c5a968c4580bf0ffe5b8d
-generated: "2021-08-28T10:36:46.452488206Z"
+generated: "2021-08-28T11:42:18.610344192Z"
--- a/stable/overseerr/1.6.2/Chart.lock
+++ b/stable/overseerr/1.6.2/Chart.lock
@ -3,4 +3,4 @@ dependencies:
  repository: https://truecharts.org
  version: 6.10.6
 digest: sha256:9d26604a382118f9894ddbb7ab89c2d144a331d8fad534bdb2943269b48bb7c6
-generated: "2021-08-28T10:36:49.741349282Z"
+generated: "2021-08-28T11:42:22.275711554Z"
--- a/stable/owncast/1.6.2/Chart.lock
+++ b/stable/owncast/1.6.2/Chart.lock
@ -3,4 +3,4 @@ dependencies:
  repository: https://truecharts.org
  version: 6.10.6
 digest: sha256:9d26604a382118f9894ddbb7ab89c2d144a331d8fad534bdb2943269b48bb7c6
-generated: "2021-08-28T10:36:53.048593003Z"
+generated: "2021-08-28T11:42:25.979549031Z"
--- a/stable/owncloud-ocis/1.6.2/Chart.lock
+++ b/stable/owncloud-ocis/1.6.2/Chart.lock
@ -3,4 +3,4 @@ dependencies:
  repository: https://truecharts.org
  version: 6.10.6
 digest: sha256:9d26604a382118f9894ddbb7ab89c2d144a331d8fad534bdb2943269b48bb7c6
-generated: "2021-08-28T10:36:56.351313159Z"
+generated: "2021-08-28T11:42:29.696829605Z"
--- a/stable/pgadmin/1.5.2/Chart.lock
+++ b/stable/pgadmin/1.5.2/Chart.lock
@ -3,4 +3,4 @@ dependencies:
  repository: https://truecharts.org/
  version: 6.10.6
 digest: sha256:b4bf4983bf57b47bd2c23cfa38cf9ffbf029eb690a4c5a968c4580bf0ffe5b8d
-generated: "2021-08-28T10:36:59.662549696Z"
+generated: "2021-08-28T11:42:33.380746708Z"
--- a/stable/photoprism/1.6.2/Chart.lock
+++ b/stable/photoprism/1.6.2/Chart.lock
@ -3,4 +3,4 @@ dependencies:
  repository: https://truecharts.org
  version: 6.10.6
 digest: sha256:9d26604a382118f9894ddbb7ab89c2d144a331d8fad534bdb2943269b48bb7c6
-generated: "2021-08-28T10:37:02.976791137Z"
+generated: "2021-08-28T11:42:36.994222756Z"
--- a/stable/phpldapadmin/1.5.2/Chart.lock
+++ b/stable/phpldapadmin/1.5.2/Chart.lock
@ -3,4 +3,4 @@ dependencies:
  repository: https://truecharts.org/
  version: 6.10.6
 digest: sha256:b4bf4983bf57b47bd2c23cfa38cf9ffbf029eb690a4c5a968c4580bf0ffe5b8d
-generated: "2021-08-28T10:37:06.288326795Z"
+generated: "2021-08-28T11:42:40.672275642Z"
--- a/stable/piaware/1.6.2/Chart.lock
+++ b/stable/piaware/1.6.2/Chart.lock
@ -3,4 +3,4 @@ dependencies:
  repository: https://truecharts.org
  version: 6.10.6
 digest: sha256:9d26604a382118f9894ddbb7ab89c2d144a331d8fad534bdb2943269b48bb7c6
-generated: "2021-08-28T10:37:09.603469168Z"
+generated: "2021-08-28T11:42:44.331956613Z"
--- a/stable/plex/5.8.2/Chart.lock
+++ b/stable/plex/5.8.2/Chart.lock
@ -3,4 +3,4 @@ dependencies:
  repository: https://truecharts.org/
  version: 6.10.6
 digest: sha256:b4bf4983bf57b47bd2c23cfa38cf9ffbf029eb690a4c5a968c4580bf0ffe5b8d
-generated: "2021-08-28T10:37:12.915379616Z"
+generated: "2021-08-28T11:42:48.090737631Z"
--- a/stable/podgrab/4.8.2/Chart.lock
+++ b/stable/podgrab/4.8.2/Chart.lock
@ -3,4 +3,4 @@ dependencies:
  repository: https://truecharts.org/
  version: 6.10.6
 digest: sha256:b4bf4983bf57b47bd2c23cfa38cf9ffbf029eb690a4c5a968c4580bf0ffe5b8d
-generated: "2021-08-28T10:37:16.240646622Z"
+generated: "2021-08-28T11:42:52.039416068Z"
--- a/stable/postgresql/1.2.3/Chart.lock
+++ b/stable/postgresql/1.2.3/Chart.lock
@ -3,4 +3,4 @@ dependencies:
  repository: https://truecharts.org/
  version: 6.10.6
 digest: sha256:b4bf4983bf57b47bd2c23cfa38cf9ffbf029eb690a4c5a968c4580bf0ffe5b8d
-generated: "2021-08-28T10:37:19.545689342Z"
+generated: "2021-08-28T11:42:55.906328424Z"
--- a/stable/pretend-youre-xyzzy/1.6.2/Chart.lock
+++ b/stable/pretend-youre-xyzzy/1.6.2/Chart.lock
@ -3,4 +3,4 @@ dependencies:
  repository: https://truecharts.org
  version: 6.10.6
 digest: sha256:9d26604a382118f9894ddbb7ab89c2d144a331d8fad534bdb2943269b48bb7c6
-generated: "2021-08-28T10:37:22.836213916Z"
+generated: "2021-08-28T11:42:59.639786542Z"
--- a/stable/protonmail-bridge/1.6.2/Chart.lock
+++ b/stable/protonmail-bridge/1.6.2/Chart.lock
@ -3,4 +3,4 @@ dependencies:
  repository: https://truecharts.org
  version: 6.10.6
 digest: sha256:9d26604a382118f9894ddbb7ab89c2d144a331d8fad534bdb2943269b48bb7c6
-generated: "2021-08-28T10:37:26.151863679Z"
+generated: "2021-08-28T11:43:03.389001743Z"
--- a/stable/prowlarr/1.8.2/Chart.lock
+++ b/stable/prowlarr/1.8.2/Chart.lock
@ -3,4 +3,4 @@ dependencies:
  repository: https://truecharts.org/
  version: 6.10.6
 digest: sha256:b4bf4983bf57b47bd2c23cfa38cf9ffbf029eb690a4c5a968c4580bf0ffe5b8d
-generated: "2021-08-28T10:37:29.445832569Z"
+generated: "2021-08-28T11:43:06.991840582Z"
--- a/stable/pyload/1.6.2/Chart.lock
+++ b/stable/pyload/1.6.2/Chart.lock
@ -3,4 +3,4 @@ dependencies:
  repository: https://truecharts.org
  version: 6.10.6
 digest: sha256:9d26604a382118f9894ddbb7ab89c2d144a331d8fad534bdb2943269b48bb7c6
-generated: "2021-08-28T10:37:32.757984371Z"
+generated: "2021-08-28T11:43:10.640202483Z"
--- a/stable/qbittorrent/6.8.2/Chart.lock
+++ b/stable/qbittorrent/6.8.2/Chart.lock
@ -3,4 +3,4 @@ dependencies:
  repository: https://truecharts.org/
  version: 6.10.6
 digest: sha256:b4bf4983bf57b47bd2c23cfa38cf9ffbf029eb690a4c5a968c4580bf0ffe5b8d
-generated: "2021-08-28T10:37:36.103960144Z"
+generated: "2021-08-28T11:43:14.415089187Z"
--- a/stable/radarr/6.8.2/Chart.lock
+++ b/stable/radarr/6.8.2/Chart.lock
@ -3,4 +3,4 @@ dependencies:
  repository: https://truecharts.org/
  version: 6.10.6
 digest: sha256:b4bf4983bf57b47bd2c23cfa38cf9ffbf029eb690a4c5a968c4580bf0ffe5b8d
-generated: "2021-08-28T10:37:39.414448851Z"
+generated: "2021-08-28T11:43:18.051474716Z"
--- a/stable/readarr/6.8.2/Chart.lock
+++ b/stable/readarr/6.8.2/Chart.lock
@ -3,4 +3,4 @@ dependencies:
  repository: https://truecharts.org/
  version: 6.10.6
 digest: sha256:b4bf4983bf57b47bd2c23cfa38cf9ffbf029eb690a4c5a968c4580bf0ffe5b8d
-generated: "2021-08-28T10:37:42.700383081Z"
+generated: "2021-08-28T11:43:21.807615959Z"
--- a/stable/reg/1.8.2/Chart.lock
+++ b/stable/reg/1.8.2/Chart.lock
@ -3,4 +3,4 @@ dependencies:
  repository: https://truecharts.org/
  version: 6.10.6
 digest: sha256:b4bf4983bf57b47bd2c23cfa38cf9ffbf029eb690a4c5a968c4580bf0ffe5b8d
-generated: "2021-08-28T10:37:46.012788206Z"
+generated: "2021-08-28T11:43:25.570283893Z"
--- a/stable/resilio-sync/1.6.2/Chart.lock
+++ b/stable/resilio-sync/1.6.2/Chart.lock
@ -3,4 +3,4 @@ dependencies:
  repository: https://truecharts.org
  version: 6.10.6
 digest: sha256:9d26604a382118f9894ddbb7ab89c2d144a331d8fad534bdb2943269b48bb7c6
-generated: "2021-08-28T10:37:49.32397625Z"
+generated: "2021-08-28T11:43:29.216288112Z"
--- a/stable/sabnzbd/6.8.2/Chart.lock
+++ b/stable/sabnzbd/6.8.2/Chart.lock
@ -3,4 +3,4 @@ dependencies:
  repository: https://truecharts.org/
  version: 6.10.6
 digest: sha256:b4bf4983bf57b47bd2c23cfa38cf9ffbf029eb690a4c5a968c4580bf0ffe5b8d
-generated: "2021-08-28T10:37:52.616165039Z"
+generated: "2021-08-28T11:43:32.876728955Z"
--- a/stable/ser2sock/1.6.2/Chart.lock
+++ b/stable/ser2sock/1.6.2/Chart.lock
@ -3,4 +3,4 @@ dependencies:
  repository: https://truecharts.org
  version: 6.10.6
 digest: sha256:9d26604a382118f9894ddbb7ab89c2d144a331d8fad534bdb2943269b48bb7c6
-generated: "2021-08-28T10:37:55.947317101Z"
+generated: "2021-08-28T11:43:36.576273615Z"
--- a/stable/sonarr/6.8.2/Chart.lock
+++ b/stable/sonarr/6.8.2/Chart.lock
@ -3,4 +3,4 @@ dependencies:
  repository: https://truecharts.org/
  version: 6.10.6
 digest: sha256:b4bf4983bf57b47bd2c23cfa38cf9ffbf029eb690a4c5a968c4580bf0ffe5b8d
-generated: "2021-08-28T10:37:59.265554585Z"
+generated: "2021-08-28T11:43:40.232569256Z"
--- a/stable/stash/1.6.2/Chart.lock
+++ b/stable/stash/1.6.2/Chart.lock
@ -3,4 +3,4 @@ dependencies:
  repository: https://truecharts.org
  version: 6.10.6
 digest: sha256:9d26604a382118f9894ddbb7ab89c2d144a331d8fad534bdb2943269b48bb7c6
-generated: "2021-08-28T10:38:02.556496214Z"
+generated: "2021-08-28T11:43:43.864582871Z"
--- a/stable/syncthing/6.8.2/Chart.lock
+++ b/stable/syncthing/6.8.2/Chart.lock
@ -3,4 +3,4 @@ dependencies:
  repository: https://truecharts.org/
  version: 6.10.6
 digest: sha256:b4bf4983bf57b47bd2c23cfa38cf9ffbf029eb690a4c5a968c4580bf0ffe5b8d
-generated: "2021-08-28T10:38:05.859723225Z"
+generated: "2021-08-28T11:43:47.560081336Z"
--- a/stable/tautulli/6.8.2/Chart.lock
+++ b/stable/tautulli/6.8.2/Chart.lock
@ -3,4 +3,4 @@ dependencies:
  repository: https://truecharts.org/
  version: 6.10.6
 digest: sha256:b4bf4983bf57b47bd2c23cfa38cf9ffbf029eb690a4c5a968c4580bf0ffe5b8d
-generated: "2021-08-28T10:38:09.177835033Z"
+generated: "2021-08-28T11:43:51.307739654Z"
--- a/stable/thelounge/1.8.2/Chart.lock
+++ b/stable/thelounge/1.8.2/Chart.lock
@ -3,4 +3,4 @@ dependencies:
  repository: https://truecharts.org/
  version: 6.10.6
 digest: sha256:b4bf4983bf57b47bd2c23cfa38cf9ffbf029eb690a4c5a968c4580bf0ffe5b8d
-generated: "2021-08-28T10:38:12.570880543Z"
+generated: "2021-08-28T11:43:55.291812604Z"
--- a/stable/traefik/6.10.2/Chart.lock
+++ b/stable/traefik/6.10.2/Chart.lock
@ -3,4 +3,4 @@ dependencies:
  repository: https://truecharts.org/
  version: 6.10.6
 digest: sha256:b4bf4983bf57b47bd2c23cfa38cf9ffbf029eb690a4c5a968c4580bf0ffe5b8d
-generated: "2021-08-28T10:38:15.899531663Z"
+generated: "2021-08-28T11:43:59.125443525Z"
--- a/stable/transmission/6.8.2/Chart.lock
+++ b/stable/transmission/6.8.2/Chart.lock
@ -3,4 +3,4 @@ dependencies:
  repository: https://truecharts.org/
  version: 6.10.6
 digest: sha256:b4bf4983bf57b47bd2c23cfa38cf9ffbf029eb690a4c5a968c4580bf0ffe5b8d
-generated: "2021-08-28T10:38:19.205161623Z"
+generated: "2021-08-28T11:44:03.1073008Z"
--- a/stable/truecommand/6.8.2/Chart.lock
+++ b/stable/truecommand/6.8.2/Chart.lock
@ -3,4 +3,4 @@ dependencies:
  repository: https://truecharts.org/
  version: 6.10.6
 digest: sha256:b4bf4983bf57b47bd2c23cfa38cf9ffbf029eb690a4c5a968c4580bf0ffe5b8d
-generated: "2021-08-28T10:38:22.546509966Z"
+generated: "2021-08-28T11:44:07.030102496Z"
--- a/stable/tvheadend/7.8.2/Chart.lock
+++ b/stable/tvheadend/7.8.2/Chart.lock
@ -3,4 +3,4 @@ dependencies:
  repository: https://truecharts.org/
  version: 6.10.6
 digest: sha256:b4bf4983bf57b47bd2c23cfa38cf9ffbf029eb690a4c5a968c4580bf0ffe5b8d
-generated: "2021-08-28T10:38:25.864893813Z"
+generated: "2021-08-28T11:44:10.864345823Z"
--- a/stable/unifi/6.8.2/Chart.lock
+++ b/stable/unifi/6.8.2/Chart.lock
@ -3,4 +3,4 @@ dependencies:
  repository: https://truecharts.org/
  version: 6.10.6
 digest: sha256:b4bf4983bf57b47bd2c23cfa38cf9ffbf029eb690a4c5a968c4580bf0ffe5b8d
-generated: "2021-08-28T10:38:29.174545556Z"
+generated: "2021-08-28T11:44:14.640263964Z"
--- a/Show More
+++ b/Show More
				`@ -0,0 +1 @@`
				`Authelia is a Single Sign-On Multi-Factor portal for web apps`