---
# nginx_sso_backend_configs:
#   example:
#     login:
#       title: "example.com - Login"
#       default_method: "simple"
#       hide_mfa_field: true
#       names:
#         simple: "Username / Password"
#     cookie:
#       domain: ".example.com"
#       authentication_key: "very-very-secret"
#       prefix: nginx-sso-example
#       secure: yes
#       expire: 3600
#     listen:
#       addr: "127.0.0.1"
#       port: 8082
#     audit_log:
#       targets:
#       - fd://stdout
#       events: ['access_denied', 'login_success', 'login_failure', 'logout', 'validate']
#       headers: ['x-origin-uri']
#       trusted_ip_headers: ["X-Forwarded-For", "RemoteAddr", "X-Real-IP"]
#     acl:
#       rule_sets:
#       - rules:
#         - field: "x-host"
#           regexp: ".*"
#         allow: ["@_authenticated"]
#     providers:
#       simple:
#         enable_basic_auth: false
#         users:
#           admin: "{{ 'admin' | password_hash('bcrypt', ('admin@example.com/nginx-sso' | bcrypt_salt)) }}"
#         groups:
#           admins: ["admin"]