From 58feb5f1ab2e016464cea2f13b7f1f28cb14b6b7 Mon Sep 17 00:00:00 2001
From: Christian Pointner <equinox@spreadspace.org>
Date: Wed, 29 Nov 2023 23:45:35 +0100
Subject: nginx/auth/whawty-sso: add support for release 0.2 and revokable
 sessions

---
 roles/nginx/auth/whawty-sso/login/defaults/main.yml | 16 ++++++++++++----
 1 file changed, 12 insertions(+), 4 deletions(-)

(limited to 'roles/nginx/auth/whawty-sso/login/defaults')

diff --git a/roles/nginx/auth/whawty-sso/login/defaults/main.yml b/roles/nginx/auth/whawty-sso/login/defaults/main.yml
index 6f7afe04..6e6249e7 100644
--- a/roles/nginx/auth/whawty-sso/login/defaults/main.yml
+++ b/roles/nginx/auth/whawty-sso/login/defaults/main.yml
@@ -14,17 +14,19 @@
 #         keys:
 #         - name: 2023-11
 #           ed25519:
-#             private-key: |-
+#             private-key-data: |-
 #               ....
+#         backend:
+#           bolt: {}
 #       auth:
 #         ldap:
 #           servers:
 #           - ldaps://ldap1.example.com
 #           - ldaps://ldap2.example.com
+#           start-tls: false
 #           tls:
-#             start-tls: false
 #             insecure-skip-verify: false
-#             ca-certificates: |-
+#             ca-certificates-data: |-
 #               -----BEGIN CERTIFICATE-----
 #               ...
 #               -----END CERTIFICATE-----
@@ -46,8 +48,11 @@
 #         keys:
 #         - name: 2023-11
 #           ed25519:
-#             private-key: |-
+#             private-key-data: |-
 #               ....
+#         backend:
+#           bolt:
+#             path: /path/to/db.bolt
 #       auth:
 #         static:
 #           autoreload: yes
@@ -55,6 +60,9 @@
 #         listen: 127.0.0.1:2345
 #         login:
 #           title: "foobar - Login"
+#         revocations:
+#           tokens:
+#           - secret
 
 # whawty_nginx_sso_login_static_credentials__foo:
 #   admin: "very-secret"
-- 
cgit v1.2.3