summaryrefslogtreecommitdiff
path: root/roles/nginx/auth/sso/backend/defaults/main.yml
diff options
context:
space:
mode:
Diffstat (limited to 'roles/nginx/auth/sso/backend/defaults/main.yml')
-rw-r--r--roles/nginx/auth/sso/backend/defaults/main.yml37
1 files changed, 37 insertions, 0 deletions
diff --git a/roles/nginx/auth/sso/backend/defaults/main.yml b/roles/nginx/auth/sso/backend/defaults/main.yml
new file mode 100644
index 00000000..d1928f77
--- /dev/null
+++ b/roles/nginx/auth/sso/backend/defaults/main.yml
@@ -0,0 +1,37 @@
+---
+# nginx_sso_backend_configs:
+# example:
+# login:
+# title: "example.com - Login"
+# default_method: "simple"
+# hide_mfa_field: true
+# names:
+# simple: "Username / Password"
+# cookie:
+# domain: ".example.com"
+# authentication_key: "very-very-secret"
+# prefix: nginx-sso-example
+# secure: yes
+# expire: 3600
+# listen:
+# addr: "0.0.0.0"
+# port: 8082
+# audit_log:
+# targets:
+# - fd://stdout
+# events: ['access_denied', 'login_success', 'login_failure', 'logout', 'validate']
+# headers: ['x-origin-uri']
+# trusted_ip_headers: ["X-Forwarded-For", "RemoteAddr", "X-Real-IP"]
+# acl:
+# rule_sets:
+# - rules:
+# - field: "x-host"
+# regexp: ".*"
+# allow: ["@_authenticated"]
+# providers:
+# simple:
+# enable_basic_auth: false
+# users:
+# admin: "{{ 'admin' | password_hash('bcrypt', ('admin@example.com/nginx-sso' | bcrypt_salt)) }}"
+# groups:
+# admins: ["admin"]
generated by cgit v1.2.3 (git 2.39.1) at 2024-11-04 21:52:43 +0000