-
Notifications
You must be signed in to change notification settings - Fork 0
/
tobira-auth.env
81 lines (67 loc) · 3.35 KB
/
tobira-auth.env
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
# This configuration file defines environment variables for tobira-auth service.
# Some framework specific variables can also be set here,
# see https://sanic.dev/en/guide/deployment/configuration.html#builtin-values.
# Include this file in systemd service file to configure your tobira-auth instance properly.
# Whether to enable the auth callback endpoint, value=true, or not, value=false.
# Due to Tobira configuration only one endpoint needs to be provided, auth or login callback.
# You can enable/disable the unused endpoint here.
# Default value: false
TOBIRA_AUTH_ENABLE_AUTH_CALLBACK="true"
# Whether to enable the login callback endpoint, value=true, or not, value=false.
# Due to Tobira configuration only one endpoint needs to be provided, auth or login callback.
# You can enable/disable the unused endpoint here.
# Default value: false
TOBIRA_AUTH_ENABLE_LOGIN_CALLBACK="true"
# The dummy user service provide test data endpoints for auth/login callbacks.
# DO NOT USE IT IN PRODUCTION!
# Default value: false
TOBIRA_AUTH_ENABLE_DUMMY_USER_SERVICE="true"
# Header name containing the username value for auth callback.
# Default value: uniqueID
TOBIRA_AUTH_USERNAME_HEADER="uniqueID"
# Header name containing the display name value for auth callback.
# This is the human readable name (firstname, lastname) of the user.
# Default value: displayName
TOBIRA_AUTH_DISPLAY_NAME_HEADER="displayName"
# Header name containing the given name value for auth callback.
# This is the human readable firstname of the user.
# Default value: givenName
TOBIRA_AUTH_GIVEN_NAME_HEADER="givenName"
# Header name containing the surname value for auth callback.
# This is the human readable lastname of the user.
# Default value: surname
TOBIRA_AUTH_SURNAME_HEADER="surname"
# In case of display name value is not set but given name and surname
# are present, the format of display name can be configured here.
# The template variables should be written in between of curly brackets like {variable}.
# This variables are available:
# - given_name: The value of given name header
# - surname: The value of surname header
# Default value: {given_name} {surname}
TOBIRA_AUTH_DISPLAY_NAME_FORMAT="{given_name} {surname}"
# Header name containing the email address value for auth callback.
# Default value: mail
TOBIRA_AUTH_EMAIL_HEADER="mail"
# Header name containing the user affiliations value for auth callback.
# The header value may include multiple affiliations concatenated by ';'.
# Default value: affiliation
TOBIRA_AUTH_AFFILIATION_HEADER="affiliation"
# Header name containing the shibboleth users home organization value for auth callback.
# Default value: homeOrganization
TOBIRA_AUTH_HOME_ORGANIZATION="homeOrganization"
# Comma-separated list of custom roles each user should have set.
# You can use variables. They should be written in between of curly brackets like {variable}.
# This variables are available:
# - username: The value of username header
# - email: The value of email header
# - home_organization: The value of home organization header
# Default value:
TOBIRA_AUTH_CUSTOM_ROLES=""
# Comma-separated list of usernames of users who should be given
# administrative rights in Tobira.
# Default value:
TOBIRA_AUTH_ADMIN_USERS_USERNAME=""
# Comma-separated list of email addresses of users who should be given
# administrative rights in Tobira.
# Default value:
TOBIRA_AUTH_ADMIN_USERS_MAIL=""