blob: 7f52f1e46e7c6569f20af226dfe2eba5f73c5d6d (
plain) (
blame)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
|
---
# nginx_sso_backend_configs:
# example:
# login:
# title: "example.com - Login"
# default_method: "simple"
# hide_mfa_field: true
# names:
# simple: "Username / Password"
# cookie:
# domain: ".example.com"
# authentication_key: "very-very-secret"
# prefix: nginx-sso-example
# secure: yes
# expire: 3600
# listen:
# addr: "127.0.0.1"
# port: 8082
# audit_log:
# targets:
# - fd://stdout
# events: ['access_denied', 'login_success', 'login_failure', 'logout', 'validate']
# headers: ['x-origin-uri']
# trusted_ip_headers: ["X-Forwarded-For", "RemoteAddr", "X-Real-IP"]
# acl:
# rule_sets:
# - rules:
# - field: "x-host"
# regexp: ".*"
# allow: ["@_authenticated"]
# providers:
# simple:
# enable_basic_auth: false
# users:
# admin: "{{ 'admin' | password_hash('bcrypt', ('admin@example.com/nginx-sso' | bcrypt_salt)) }}"
# groups:
# admins: ["admin"]
|
