authelia: Skip scanserv-js auth for internal

For convenience, clients on the internal network do not need to
authenticate in order to access *scanserv-js*.  There isn't anything
particularly sensitive about this application, anyway.

authelia/configuration.yml

@@ -1,8 +1,17 @@
 access_control:
   default_policy: one_factor
+  networks:
+  - name: internal
+    networks:
+    - 172.30.0.0/26
+    - 172.31.1.0/24
   rules:
   - domain: paperless.pyrocufflink.blue
     policy: two_factor
+  - domain: scan.pyrocufflink.blue
+    networks:
+    - internal
+    policy: bypass
 
 authentication_backend:
   ldap: