Alright, I’m having issues getting Authentik up and running. I keep getting the below error whenever I spin up the default docker-compose.yml as found on this page (the official documentation for docker compose).

{"event": "PostgreSQL connection failed, retrying... (connection failed: FATAL: password authentication failed for user \"authentik\")", "level": "info", "logger": "authentik.lib.config", "timestamp": 1701035903.4266412}

While I have experience running this stuff, I’m just not seeing where I’m goofing up. I’m convinced at this point that it’s something easy I’m just overlooking. Again, I’m using the default docker-compose.yml and I generated the .env file as directed in the link I provided at the top.

Thanks.

  • SenkyouOPB
    link
    fedilink
    English
    arrow-up
    1
    ·
    11 months ago
    ---
    version: "3.4"
    services:
      postgresql:
        image: docker.io/library/postgres:12-alpine
        restart: unless-stopped
        healthcheck:
          test: ["CMD-SHELL", "pg_isready -d $${POSTGRES_DB} -U $${POSTGRES_USER}"]
          start_period: 20s
          interval: 30s
          retries: 5
          timeout: 5s
        volumes:
          - database:/var/lib/postgresql/data
        environment:
          POSTGRES_PASSWORD: ${PG_PASS:?database password required}
          POSTGRES_USER: ${PG_USER:-authentik}
          POSTGRES_DB: ${PG_DB:-authentik}
        env_file:
          - .env
      redis:
        image: docker.io/library/redis:alpine
        command: --save 60 1 --loglevel warning
        restart: unless-stopped
        healthcheck:
          test: ["CMD-SHELL", "redis-cli ping | grep PONG"]
          start_period: 20s
          interval: 30s
          retries: 5
          timeout: 3s
        volumes:
          - redis:/data
      server:
        image: ${AUTHENTIK_IMAGE:-ghcr.io/goauthentik/server}:${AUTHENTIK_TAG:-2023.10.4}
        restart: unless-stopped
        command: server
        environment:
          AUTHENTIK_REDIS__HOST: redis
          AUTHENTIK_POSTGRESQL__HOST: postgresql
          AUTHENTIK_POSTGRESQL__USER: ${PG_USER:-authentik}
          AUTHENTIK_POSTGRESQL__NAME: ${PG_DB:-authentik}
          AUTHENTIK_POSTGRESQL__PASSWORD: ${PG_PASS}
        volumes:
          - ./media:/media
          - ./custom-templates:/templates
        env_file:
          - .env
        ports:
          - "${COMPOSE_PORT_HTTP:-9000}:9000"
          - "${COMPOSE_PORT_HTTPS:-9443}:9443"
        depends_on:
          - postgresql
          - redis
      worker:
        image: ${AUTHENTIK_IMAGE:-ghcr.io/goauthentik/server}:${AUTHENTIK_TAG:-2023.10.4}
        restart: unless-stopped
        command: worker
        environment:
          AUTHENTIK_REDIS__HOST: redis
          AUTHENTIK_POSTGRESQL__HOST: postgresql
          AUTHENTIK_POSTGRESQL__USER: ${PG_USER:-authentik}
          AUTHENTIK_POSTGRESQL__NAME: ${PG_DB:-authentik}
          AUTHENTIK_POSTGRESQL__PASSWORD: ${PG_PASS}
        # `user: root` and the docker socket volume are optional.
        # See more for the docker socket integration here:
        # https://goauthentik.io/docs/outposts/integrations/docker
        # Removing `user: root` also prevents the worker from fixing the permissions
        # on the mounted folders, so when removing this make sure the folders have the correct UID/GID
        # (1000:1000 by default)
        user: root
        volumes:
          - /var/run/docker.sock:/var/run/docker.sock
          - ./media:/media
          - ./certs:/certs
          - ./custom-templates:/templates
        env_file:
          - .env
        depends_on:
          - postgresql
          - redis
    volumes:
      database:
        driver: local
      redis:
        driver: local
    

    It’s the default compose file.