authelia - email+username for login, retry regulation

authelia_server-configuration.yaml

@@ -2,15 +2,11 @@ authentication_backend:
   file:
     path: /config/users.yaml
     watch: true
+    search:
+      email: true
 
 access_control:
   default_policy: deny
-  networks:
-    - name: 'internal'
-      networks:
-        - '10.0.0.0/8'
-        - '172.16.0.0/12'
-        - '192.168.0.0/18'
   rules:
     # go from most to least specific
     ###### bypasses ######
@@ -112,6 +108,13 @@ access_control:
         - 'group:super_admin'
       policy: 'two_factor'
 
+regulation:
+  modes:
+    - 'ip'
+  max_retries: 1
+  find_time: '1m'
+  ban_time: '5m'
+
 password_policy:
   zxcvbn:
     enabled: true
@@ -124,14 +127,14 @@ password_policy:
 session:
   # SECRET
   # secret: ''
-  redis:
-    host: 'authelia-redis'
   inactivity: '1w'
   expiration: '2w'
   remember_me: '3M'
   cookies:
     - domain: 'knravish.me'
       authelia_url: 'https://auth.knravish.me'
+  redis:
+    host: 'authelia-redis'
 
 storage:
   # SECRET
@@ -150,6 +153,13 @@ notifier:
     identifier: 'knravish.me'
     subject: '[Authelia] {title}'
 
+definitions:
+  network:
+    internal:
+      - '10.0.0.0/8'
+      - '172.16.0.0/12'
+      - '192.168.0.0/16'
+
 theme: 'auto'
 
 server: