Compare commits
No commits in common. "4dc49134588735c91c0a51e638d2cb275e94e3b0" and "0a5acb790778815e982aee805e9558eee3d008d9" have entirely different histories.
4dc4913458
...
0a5acb7907
4 changed files with 47 additions and 43 deletions
|
|
@ -11,7 +11,7 @@
|
|||
"var_hedgedoc_database_data_postgresql_password": "REPLACE_ME",
|
||||
"var_hedgedoc_database_data_postgresql_schema": "hedgedoc",
|
||||
"var_hedgedoc_domain": "hedgedoc.example.org",
|
||||
"var_hedgedoc_authentication_kind": "internal",
|
||||
"var_hedgedoc_authentication_kind": "authelia",
|
||||
"var_hedgedoc_authentication_data_authelia_client_id": "hedgedoc",
|
||||
"var_hedgedoc_authentication_data_authelia_client_secret": "REPLACE_ME",
|
||||
"var_hedgedoc_authentication_data_authelia_url_base": "https://authelia.example.org",
|
||||
|
|
|
|||
|
|
@ -12,11 +12,13 @@
|
|||
"var_mas_matrix_secret": "REPLACE_ME",
|
||||
"var_mas_matrix_endpoint": "http://localhost:8008/",
|
||||
"var_mas_encryption_key": "REPLACE_ME",
|
||||
"var_mas_authentication_upstream_kind": "none",
|
||||
"var_mas_authentication_upstream_data_authelia_url_base": "https://authelia.example.org",
|
||||
"var_mas_authentication_upstream_data_authelia_auth_method": "client_secret_post",
|
||||
"var_mas_authentication_upstream_data_authelia_scope": "openid profile email",
|
||||
"var_mas_authentication_upstream_data_authelia_name": "authelia",
|
||||
"var_mas_authentication_upstream_data_authelia_client_id": "mas",
|
||||
"var_mas_authentication_upstream_data_authelia_client_secret": "REPLACE_ME"
|
||||
"var_mas_authentication_upstream_active": false,
|
||||
"var_mas_authentication_upstream_id": "default_upstream",
|
||||
"var_mas_authentication_upstream_issuer": "https://auth.example.org",
|
||||
"var_mas_authentication_upstream_client_id": "mas",
|
||||
"var_mas_authentication_upstream_client_secret": "REPLACE_ME",
|
||||
"var_mas_authentication_upstream_token_endpoint_auth_method": "client_secret_post"
|
||||
"var_mas_authentication_upstream_scope": "openid email profile",
|
||||
"var_mas_authentication_upstream_authorization_endpoint": "https://auth.example.org/authorize",
|
||||
"var_mas_authentication_upstream_token_endpoint": "https://auth.example.org/token"
|
||||
}
|
||||
|
|
|
|||
|
|
@ -85,20 +85,18 @@
|
|||
],
|
||||
"minimum_complexity": 3
|
||||
},
|
||||
{% if var_mas_authentication_upstream_kind == 'none' %}
|
||||
{% endif %}
|
||||
{% if var_mas_authentication_upstream_kind == 'authelia' %}
|
||||
{% if var_mas_authentication_upstream_active %}
|
||||
"upstream_oauth2": {
|
||||
"providers": [
|
||||
{
|
||||
"id": "{{var_mas_authentication_upstream_data_authelia_name}}",
|
||||
"issuer": "{{var_mas_authentication_upstream_data_authelia_url_base}}",
|
||||
"authorization_endpoint": "{{var_mas_authentication_upstream_data_authelia_url_base}}/api/oidc/authorization",
|
||||
"token_endpoint": "{{var_mas_authentication_upstream_data_authelia_url_base}}/api/oidc/token",
|
||||
"token_endpoint_auth_method": "{{var_mas_authentication_upstream_data_authelia_auth_method}}",
|
||||
"scope": "{{var_mas_authentication_upstream_data_authelia_scope}}",
|
||||
"client_id": "{{var_mas_authentication_upstream_data_authelia_client_id}}",
|
||||
"client_secret": "{{var_mas_authentication_upstream_data_authelia_client_secret}}"
|
||||
"id": "{{var_mas_authentication_upstream_id}}",
|
||||
"issuer": "{{var_mas_authentication_upstream_issuer}}",
|
||||
"client_id": "{{var_mas_authentication_upstream_client_id}}",
|
||||
"client_secret": "{{var_mas_authentication_upstream_client_secret}}",
|
||||
"token_endpoint_auth_method": "{{var_mas_authentication_upstream_token_endpoint_auth_method}}",
|
||||
"scope": "{{var_mas_authentication_upstream_scope}}",
|
||||
"authorization_endpoint": "{{var_mas_authentication_upstream_authorization_endpoint}}",
|
||||
"token_endpoint": "{{var_mas_authentication_upstream_token_endpoint}}"
|
||||
}
|
||||
]
|
||||
},
|
||||
|
|
|
|||
|
|
@ -43,36 +43,40 @@
|
|||
"type": "string",
|
||||
"mandatory": false
|
||||
},
|
||||
"authentication_upstream_kind": {
|
||||
"authentication_upstream_active": {
|
||||
"nullable": false,
|
||||
"type": "string",
|
||||
"options": [
|
||||
"none",
|
||||
"authelia"
|
||||
]
|
||||
"type": "boolean"
|
||||
},
|
||||
"authentication_upstream_data_authelia_url_base": {
|
||||
"type": "string",
|
||||
"mandatory": false
|
||||
"authentication_upstream_id": {
|
||||
"nullable": false,
|
||||
"type": "string"
|
||||
},
|
||||
"authentication_upstream_data_authelia_auth_method": {
|
||||
"type": "string",
|
||||
"mandatory": false
|
||||
"authentication_upstream_issuer": {
|
||||
"nullable": false,
|
||||
"type": "string"
|
||||
},
|
||||
"authentication_upstream_data_authelia_scope": {
|
||||
"type": "string",
|
||||
"mandatory": false
|
||||
"authentication_upstream_client_id": {
|
||||
"nullable": false,
|
||||
"type": "string"
|
||||
},
|
||||
"authentication_upstream_data_authelia_name": {
|
||||
"type": "string",
|
||||
"mandatory": false
|
||||
"authentication_upstream_client_secret": {
|
||||
"nullable": false,
|
||||
"type": "string"
|
||||
},
|
||||
"authentication_upstream_data_authelia_client_id": {
|
||||
"type": "string",
|
||||
"mandatory": false
|
||||
"authentication_upstream_token_endpoint_auth_method": {
|
||||
"nullable": false,
|
||||
"type": "string"
|
||||
},
|
||||
"authentication_upstream_data_authelia_client_secret": {
|
||||
"type": "string",
|
||||
"mandatory": false
|
||||
"authentication_upstream_scope": {
|
||||
"nullable": false,
|
||||
"type": "string"
|
||||
},
|
||||
"authentication_upstream_authorization_endpoint": {
|
||||
"nullable": false,
|
||||
"type": "string"
|
||||
},
|
||||
"authentication_upstream_token_endpoint": {
|
||||
"nullable": false,
|
||||
"type": "string"
|
||||
}
|
||||
}
|
||||
|
|
|
|||
Loading…
Add table
Reference in a new issue