SWAG + Authelia + TOTP

[piramiday]

I'm looking for a recent guide on how to set up SWAG + Authelia + TOTP.

LinuxServer's own guide is 5 years old, exploits/pins a now-outdated Authelia version, and relies on Duo authentication, which AFAIK is a disappointing HMAC-based OTP style, and usually does not provide TOTP.
in any case, I imagine that requires registration on Duo's website, etc.

any quick links? surely people have set it up like so?

[drizuid]

LinuxServer's own guide is 5 years old

We do not have a guide, we have a blog article

authelia maintains their own documentation, generally speaking, setup authelia correctly, then rename the 3 authelia files to remove .sample from the name

yes, using Cisco's DUO security will require a free account on their site. I will note, Cisco's DUO security is enterprise level, even the free version. (that said, i use a mixture of duo, totp, and yubikey)

[piramiday]

I'm asking because for example KeePassXC does not and will not support HMAC-style OTPs as they'd require writing back in the KDBX file at each OTP usage, as opposed to the more standard TOTP.

yep, that is a blog article offering some steps to guide users through the setup process, pardon my brevity in writing "guide".
will wait for more comments then I'll start heading down the Duo route to begin learning about Authelia.

[drizuid]

just to be clear, we have no plans to write any guide or updated blog post for authelia with swag at this time. You definitely do NOT have to use DUO, i love duo (but im a cisco partner) but i use my yubikey more than i use duo anyway. i would check authelia's documentation and get it setup, then just see if it starts working with swag with the 3 renamed files (you have to uncomment 2 lines in the proxy-confs as well). once you get it working at a basic level, check their documentation to add things like hw keys, totp, oidc, etc.

i think you'll be surprised at how straightforward it is.

With that said, I wouldn't expect a lot of engagement on the forum, we moved here to stop worrying about our dedicated forums because it was rarely used. Discord is where most of our discussions happen (note: authelia also has a discord)