2022-08-11 10:09:43 +00:00
|
|
|
---
|
|
|
|
serve:
|
|
|
|
admin:
|
2022-08-16 14:22:36 +00:00
|
|
|
host: {{ oidc_urls.hydra_admin.address | default("localhost") }}
|
|
|
|
port: {{ oidc_urls.hydra_admin.port | default("4445") }}
|
2023-08-07 16:41:29 +00:00
|
|
|
tls:
|
|
|
|
enabled: true
|
|
|
|
cert:
|
|
|
|
path: {{ hydra_tls.cert }}
|
|
|
|
key:
|
|
|
|
path: {{ hydra_tls.key }}
|
2022-08-11 10:09:43 +00:00
|
|
|
public:
|
2022-08-18 09:58:24 +00:00
|
|
|
host: {{ oidc_urls.hydra_public.address | default(ansible_default_ipv4.address) }}
|
2022-08-16 14:22:36 +00:00
|
|
|
port: {{ oidc_urls.hydra_public.port | default("4444") }}
|
2023-08-07 16:41:29 +00:00
|
|
|
tls:
|
|
|
|
enabled: true
|
|
|
|
cert:
|
|
|
|
path: {{ hydra_tls.cert }}
|
|
|
|
key:
|
|
|
|
path: {{ hydra_tls.key }}
|
|
|
|
|
2022-08-11 10:09:43 +00:00
|
|
|
dsn: 'postgres://{{ hydra_db_user }}:{{ hydra_db_password }}@{{ hydra_db_host }}:{{ hydra_db_port }}/{{ hydra_db_name }}'
|
|
|
|
|
|
|
|
webfinger:
|
|
|
|
oidc_discovery:
|
|
|
|
supported_claims:
|
|
|
|
- email
|
|
|
|
- email_verified
|
|
|
|
- name
|
|
|
|
supported_scope:
|
|
|
|
- profile
|
|
|
|
- email
|
|
|
|
|
|
|
|
oauth2:
|
|
|
|
expose_internal_errors: false
|
|
|
|
|
|
|
|
urls:
|
|
|
|
login: https://{{ oidc_urls.idp.host }}:{{ oidc_urls.idp.port }}/login
|
|
|
|
consent: https://{{ oidc_urls.idp.host }}:{{ oidc_urls.idp.port }}/consent
|
|
|
|
logout: https://{{ oidc_urls.idp.host }}:{{ oidc_urls.idp.port }}/logout
|
|
|
|
error: https://{{ oidc_urls.idp.host }}:{{ oidc_urls.idp.port }}/error
|
|
|
|
post_logout_redirect: https://{{ oidc_urls.idp.host }}:{{ oidc_urls.idp.port }}/logout-successful
|
|
|
|
self:
|
|
|
|
public: https://{{ oidc_urls.hydra_public.host }}:{{ oidc_urls.hydra_public.port }}/
|
|
|
|
issuer: https://{{ oidc_urls.hydra_public.host }}:{{ oidc_urls.hydra_public.port }}/
|
|
|
|
|
|
|
|
secrets:
|
|
|
|
system:
|
|
|
|
- "{{ hydra_system_secret }}"
|