--- # whawty_nginx_sso_logins: # example: # hostname: login.example.com # tls: # certificate_provider: .... # ... # config: # cookie: # domain: ".example.com" # name: __Secure-example-sso # secure: yes # expire: 168h # keys: # - name: 2023-11 # ed25519: # private-key-data: |- # .... # backend: # bolt: {} # auth: # ldap: # servers: # - ldaps://ldap1.example.com # - ldaps://ldap2.example.com # start-tls: false # tls: # insecure-skip-verify: false # ca-certificates-data: |- # -----BEGIN CERTIFICATE----- # ... # -----END CERTIFICATE----- # web: # listen: 127.0.0.1:1234 # login: # title: "example.com - Login" # foo: # hostname: login.foo.bar # tls: # certificate_provider: .... # ... # config: # cookie: # domain: ".foo.bar" # name: __Secure-foobar-sso # secure: yes # expire: 24h # keys: # - name: 2023-11 # ed25519: # private-key-data: |- # .... # backend: # bolt: # path: /path/to/db.bolt # auth: # static: # autoreload: yes # web: # listen: 127.0.0.1:2345 # login: # title: "foobar - Login" # revocations: # tokens: # - secret # whawty_nginx_sso_login_static_credentials__foo: # admin: "very-secret" # equinox: "secret"