Infrastructure

1. Authelia: Single Sign-on and Access Control 🔒 Purpose Centralized authentication system with: Two Factor Authentication (2FA) Rights management via user groups Integration with 15+ services via OIDC Technical implementation Version: 4.39.4 Data Storage: PostgreSQL 15 Caching: Redis 8.0.3 Secrets: Key encryption via Docker Secrets Monitoring: Export metrics to Prometheus Security and Access Administration: admin group only Access Policies: Cascading rules in authelia.configuration.yml Auditing: Logging of all login attempts Backup: Hourly database backups Features ...

Update Tracking System 🔄 Purpose Automatically detect new versions of images with: Discord/Telegram notifications Support for 15+ registries (Docker Hub, GHCR) 90 days of change history Portainer integration Technical implementation Version: 4.29.0 Checking: Every 6 hours + random delay Storage: SQLite database with encryption Providers: Flexible configuration via YAML Security and Access Permissions: Limited User (UID 1000) Notifications: Only for admin and dev groups Audit: Full log of scans Isolation: Separate Docker network Features ...

1. Traefik: Smart Router 🛠️ Purpose Basic reverse proxy and inbound traffic controller with: Automatic SSL via Let’s Encrypt Integration with Authelia for RBAC Load balancing between services Technical implementation Version: v3.4.3 Ports: 80 (HTTP), 443 (HTTPS) Network Policies: Via traefik network only Configuration: Static file + dynamic rules via Docker Security and Access Dashboard: potatoenergy.ru/traefik (only group admin) Certificates: Stored in encrypted acme.json Auditing: Real-time logging (LOG_LEVEL=debug) Features. HTTP/3 and QUIC support Automatic configuration update without downtime Integration with Prometheus for monitoring 2. Error-Pages: Custom Error Pages 🚨 Purpose Generate customized pages for: ...