AUTHENTIK_SECRET_KEY={{ authentik_secret_key }}
AUTHENTIK_ERROR_REPORTING__ENABLED={{ authentik_error_reporting }}


{% if authentik_email_host is defined and authentik_email_host|length %}
# SMTP Host Emails are sent to
    AUTHENTIK_EMAIL__HOST={{ authentik_email_host }}
    AUTHENTIK_EMAIL__PORT={{ authentik_email_port }}
# Optionally authenticate (don't add quotation marks to you password)
    AUTHENTIK_EMAIL__USERNAME={{ authentik_email_username }}
    AUTHENTIK_EMAIL__PASSWORD={{ authentik_email_password }}
# Use StartTLS
    AUTHENTIK_EMAIL__USE_TLS={{ authentik_email_use_tls }}
# Use SSL
    AUTHENTIK_EMAIL__USE_SSL={{ authentik_email_use_ssl }}
    AUTHENTIK_EMAIL__TIMEOUT={{ authentik_email_timeout }}
# Email address authentik will send from, should have a correct @domain
    AUTHENTIK_EMAIL__FROM={{ authentik_email_from }}
{% else %}
#
# no email facilities
#
{% endif %}

# REDIS
#
AUTHENTIK_REDIS__HOST=redis

# DB
#
AUTHENTIK_POSTGRESQL__HOST={{ authentik_db_host }}
AUTHENTIK_POSTGRESQL__USER={{ authentik_db_user }}
AUTHENTIK_POSTGRESQL__NAME=authentik
AUTHENTIK_POSTGRESQL__PASSWORD={{ authentik_db_password }}
AUTHENTIK_POSTGRESQL__PORT={{ authentik_db_port }}
# AUTHENTIK_LOG_LEVEL=debug

# Air-gapped environment
AUTHENTIK_DISABLE_UPDATE_CHECK=true
AUTHENTIK_ERROR_REPORTING__ENABLED=false
AUTHENTIK_DISABLE_STARTUP_ANALYTICS=true
AUTHENTIK_AVATARS=none

# First-time password
AK_ADMIN_PASS=akadmin

# GEOIP
GEOIPUPDATE_ACCOUNT_ID={{geoip_account_id}}
GEOIPUPDATE_LICENSE_KEY={{geoip_license_key}}
GEOIPUPDATE_EDITION_IDS={{geoip_update_edition_ids}}
GEOIPUPDATE_FREQUENCY={{geoip_update_frequency}}