[mod] role:authelia:Variablen für ownCloud-Anbindung

This commit is contained in:
roydfalk 2024-07-04 09:47:26 +02:00
parent a81ba565e1
commit 0d8d5c3651
3 changed files with 38 additions and 1 deletions

View file

@ -32,5 +32,8 @@
"var_authelia_notification_smtp_username": "authelia", "var_authelia_notification_smtp_username": "authelia",
"var_authelia_notification_smtp_password": "REPLACE_ME", "var_authelia_notification_smtp_password": "REPLACE_ME",
"var_authelia_notification_smtp_sender": "authelia@example.org", "var_authelia_notification_smtp_sender": "authelia@example.org",
"var_authelia_oidc_hmac_secret": "REPLACE_ME" "var_authelia_oidc_hmac_secret": "REPLACE_ME",
"var_authelia_oidc_lifespan_access_token": "1h",
"var_authelia_oidc_lifespan_authorization_code": "1m",
"var_authelia_oidc_cors_endpoints": null
} }

View file

@ -190,8 +190,16 @@
"oidc": { "oidc": {
"hmac_secret": "{{var_authelia_oidc_hmac_secret}}", "hmac_secret": "{{var_authelia_oidc_hmac_secret}}",
"issuer_private_key": "{{temp_tls_result.privatekey | replace('\n', '\\n')}}", "issuer_private_key": "{{temp_tls_result.privatekey | replace('\n', '\\n')}}",
"lifespans": {
"access_token": "{{var_authelia_oidc_lifespan_access_token}}",
"authorization_code": "{{var_authelia_oidc_lifespan_authorization_code}}"
},
"cors": { "cors": {
"allowed_origins_from_client_redirect_uris": true "allowed_origins_from_client_redirect_uris": true
{% if oidc_cors_endpoints is None %}
{% else %}
,"endpoints": {{var_authelia_oidc_cors_endpoints | json}}
{% endif %}
}, },
"clients": [ "clients": [
] ]

View file

@ -139,5 +139,31 @@
"oidc_hmac_secret": { "oidc_hmac_secret": {
"type": "string", "type": "string",
"mandatory": true "mandatory": true
},
"oidc_lifespan_access_token": {
"nullable": true,
"type": "string",
"mandatory": false
},
"oidc_lifespan_authorization_code": {
"nullable": true,
"type": "string",
"mandatory": false
},
"oidc_cors_endpoints": {
"nullable": true,
"type": "array",
"items": {
"type": "string",
"enum": [
"authorization",
"pushed-authorization-request",
"token",
"revocation",
"introspection",
"userinfo"
]
},
"mandatory": false
} }
} }