colin
/
ATLAS
forked from Nixius/authelia
1
0
Fork 0
Code Pull Requests Activity

Compare commits

base: colin:75b63ca923671c172e65ee3ab0a661667139a0ee
Branches Tags
colin:main
Nixius:main
colin:subscription-flow-2026-03
colin:v1.0.2
colin:v1.0.1
colin:v1
..
compare: colin:bd84b0a578bcc1e4d3ff5837f92a963907259bb3
Branches Tags
colin:main
Nixius:main
colin:subscription-flow-2026-03
colin:v1.0.2
colin:v1.0.1
colin:v1

No commits in common. "75b63ca923671c172e65ee3ab0a661667139a0ee" and "bd84b0a578bcc1e4d3ff5837f92a963907259bb3" have entirely different histories.
75b63ca923 ... bd84b0a578

3 changed files with 2 additions and 27 deletions
Show Stats Expand all files Collapse all files

23
docker/ss-atlas/templates/pages/dashboard.html
View File

@ -115,16 +115,6 @@
.btn-warning:hover { background: rgba(234,179,8,0.22); color: #eab308; } .btn-warning:hover { background: rgba(234,179,8,0.22); color: #eab308; }
.btn-sm { padding: 0.45rem 0.9rem; font-size: 0.82rem; } .btn-sm { padding: 0.45rem 0.9rem; font-size: 0.82rem; }
.divider { border: none; border-top: 1px solid var(--border); margin: 1rem 0; } .divider { border: none; border-top: 1px solid var(--border); margin: 1rem 0; }
.security-notice {
background: rgba(234, 179, 8, 0.08);
border: 1px solid rgba(234, 179, 8, 0.25);
border-radius: 8px;
padding: 0.85rem 1.1rem;
font-size: 0.88rem;
line-height: 1.55;
color: var(--muted);
}
.security-notice strong { color: #eab308; }
.version-badge { .version-badge {
position: fixed; position: fixed;
bottom: 0.75rem; bottom: 0.75rem;
@ -232,23 +222,12 @@
{{end}} {{end}}
</form> </form>
{{end}} {{end}}
<a href="{{.AutheliaURL}}" class="btn btn-outline">Account Settings</a>
</div> </div>
<p style="color: var(--muted); font-size: 0.8rem; margin-top: 1rem;"> <p style="color: var(--muted); font-size: 0.8rem; margin-top: 1rem;">
No refunds for the current billing period. Access continues until the end of your paid month. No refunds for the current billing period. Access continues until the end of your paid month.
</p> </p>
</div> </div>
<div class="card">
<h2>Account Security</h2>
<div class="security-notice">
<strong>We strongly recommend enabling two-factor authentication.</strong>
Accounts involved in system abuse will be removed. Passkeys and TOTP are the
best way to ensure your account is never compromised and used without your knowledge.
</div>
<div class="actions">
<a href="{{.AutheliaURL}}/settings/two-factor-authentication" class="btn btn-outline btn-sm">Set Up Passkey / TOTP</a>
<a href="{{.AutheliaURL}}/settings/security" class="btn btn-outline btn-sm">Change Password</a>
</div>
</div>
{{else}} {{else}}
<div class="card"> <div class="card">
<div class="empty-state"> <div class="empty-state">

4
docker/ss-atlas/templates/stack-template.yml
View File

@ -35,10 +35,8 @@ services:
GITEA__server__DOMAIN: "{{.Subdomain}}.{{.Domain}}" GITEA__server__DOMAIN: "{{.Subdomain}}.{{.Domain}}"
GITEA__server__ROOT_URL: "https://{{.Subdomain}}.{{.Domain}}" GITEA__server__ROOT_URL: "https://{{.Subdomain}}.{{.Domain}}"
GITEA__server__HTTP_PORT: "3000" GITEA__server__HTTP_PORT: "3000"
GITEA__security__INSTALL_LOCK: "true"
volumes: volumes:
- gitea_data:/var/lib/gitea - gitea_data:/var/lib/gitea
- gitea_config:/etc/gitea
networks: networks:
- traefik_net - traefik_net
- backend - backend
@ -80,7 +78,5 @@ networks:
volumes: volumes:
gitea_data: gitea_data:
driver: local driver: local
gitea_config:
driver: local
db_data: db_data:
driver: local driver: local

2
stack.yml
View File

@ -77,7 +77,7 @@ services:
echo "$${CLIENT_SECRET_HEADADMIN}" > /run/secrets/CLIENT_SECRET_HEADADMIN echo "$${CLIENT_SECRET_HEADADMIN}" > /run/secrets/CLIENT_SECRET_HEADADMIN
echo "$${CLIENT_SECRET_PORTAINER}" > /run/secrets/CLIENT_SECRET_PORTAINER echo "$${CLIENT_SECRET_PORTAINER}" > /run/secrets/CLIENT_SECRET_PORTAINER
echo "$${CLIENT_SECRET_GITEA}" > /run/secrets/CLIENT_SECRET_GITEA echo "$${CLIENT_SECRET_GITEA}" > /run/secrets/CLIENT_SECRET_GITEA
{ echo 'access_control:'; echo ' default_policy: deny'; echo ' rules:'; echo ' - domain: login.bc.a250.ca'; echo ' policy: bypass'; echo ' - domain: app.bc.a250.ca'; echo ' policy: bypass'; echo ' resources:'; echo " - '^/$$'"; echo " - '^/subscribe$$'"; echo " - '^/success(\\?.*)?$$'"; echo " - '^/webhook/stripe$$'"; echo " - '^/resend-reset$$'"; echo " - '^/health$$'"; echo " - '^/version$$'"; echo ' - domain: app.bc.a250.ca'; echo ' policy: one_factor'; echo ' resources:'; echo " - '^/dashboard$$'"; echo " - '^/activate$$'"; echo " - '^/portal$$'"; echo " - '^/resubscribe$$'"; echo " - '^/stack-manage$$'"; echo ' - domain:'; echo ' - lldap.bc.a250.ca'; echo ' - whoami.bc.a250.ca'; echo ' policy: bypass'; echo ' - domain: "{user}.bc.a250.ca"'; echo ' policy: two_factor'; echo ' - domain: "*.bc.a250.ca"'; echo ' policy: deny'; } > /config/configuration.acl.yml { echo 'access_control:'; echo ' default_policy: deny'; echo ' rules:'; echo ' - domain: login.bc.a250.ca'; echo ' policy: bypass'; echo ' - domain: app.bc.a250.ca'; echo ' policy: bypass'; echo ' resources:'; echo " - '^/$$'"; echo " - '^/subscribe$$'"; echo " - '^/success(\\?.*)?$$'"; echo " - '^/webhook/stripe$$'"; echo " - '^/resend-reset$$'"; echo " - '^/health$$'"; echo " - '^/version$$'"; echo ' - domain: app.bc.a250.ca'; echo ' policy: one_factor'; echo ' resources:'; echo " - '^/dashboard$$'"; echo " - '^/activate$$'"; echo " - '^/portal$$'"; echo " - '^/resubscribe$$'"; echo " - '^/stack-manage$$'"; echo ' - domain:'; echo ' - lldap.bc.a250.ca'; echo ' - whoami.bc.a250.ca'; echo ' policy: bypass'; echo ' - domain: "{user}.bc.a250.ca"'; echo ' policy: one_factor'; echo ' - domain: "*.bc.a250.ca"'; echo ' policy: deny'; } > /config/configuration.acl.yml
exec authelia --config=/config/configuration.server.yml --config=/config/configuration.ldap.yml --config=/config/configuration.acl.yml --config=/config/configuration.notifier.yml --config=/config/configuration.identity.providers.yml --config=/config/configuration.oidc.clients.yml exec authelia --config=/config/configuration.server.yml --config=/config/configuration.ldap.yml --config=/config/configuration.acl.yml --config=/config/configuration.notifier.yml --config=/config/configuration.identity.providers.yml --config=/config/configuration.oidc.clients.yml
environment: environment:
X_AUTHELIA_EMAIL: authelia@a250.ca X_AUTHELIA_EMAIL: authelia@a250.ca