From 9f6a119bf9b7fd6430438b6c920df21474f67028 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Sebastian=20Kr=C3=BCger?= <valknar@pivoine.art>
Date: Sat, 15 Nov 2025 20:03:39 +0100
Subject: [PATCH] fix: update Authelia configuration for v4.38+ compatibility

- Use modern server.address syntax instead of host/port
- Add identity_validation.reset_password.jwt_secret (deprecates jwt_secret)
- Update session to use cookies array with secret
- Fix session.remember_me_duration to remember_me
---
 net/authelia/configuration.yml | 22 +++++++++++++---------
 1 file changed, 13 insertions(+), 9 deletions(-)

diff --git a/net/authelia/configuration.yml b/net/authelia/configuration.yml
index 620cb3e..bbe3e51 100644
--- a/net/authelia/configuration.yml
+++ b/net/authelia/configuration.yml
@@ -6,9 +6,7 @@
 theme: auto
 
 server:
-  host: 0.0.0.0
-  port: 9091
-  path: ""
+  address: "tcp://:9091"
   asset_path: /config/assets/
   headers:
     csp_template: ""
@@ -17,6 +15,10 @@ log:
   level: info
   format: text
 
+identity_validation:
+  reset_password:
+    jwt_secret: ${AUTHELIA_JWT_SECRET}
+
 totp:
   issuer: pivoine.art
   period: 30
@@ -84,12 +86,14 @@ access_control:
       policy: two_factor
 
 session:
-  name: authelia_session
-  domain: pivoine.art
-  same_site: lax
-  expiration: 1h
-  inactivity: 5m
-  remember_me_duration: 1M
+  secret: ${AUTHELIA_SESSION_SECRET}
+  cookies:
+    - name: authelia_session
+      domain: pivoine.art
+      same_site: lax
+      expiration: 1h
+      inactivity: 5m
+      remember_me: 1M
 
 regulation:
   max_retries: 3