Skip to content
This repository was archived by the owner on Jun 1, 2023. It is now read-only.

Commit c783506

Browse files
roherohe
authored
Merge pull request #17 from peppelinux/master
flask_rp/example_conf.yml updated
2 parents 7d1d6cf + 6e76e0c commit c783506

File tree

1 file changed

+31
-16
lines changed

1 file changed

+31
-16
lines changed

flask_rp/example_conf.yaml

Lines changed: 31 additions & 16 deletions
Original file line numberDiff line numberDiff line change
@@ -5,9 +5,10 @@ BASEURL: "https://localhost:8089"
55
# If BASE is https these has to be specified
66
SERVER_CERT: "certs/cert.pem"
77
SERVER_KEY: "certs/key.pem"
8-
CA_BUNDLE: None
8+
CA_BUNDLE: ''
99

10-
VERIFY_SSL: False
10+
# This is just for testing an local usage. In all other cases it MUST be True
11+
VERIFY_SSL: false
1112

1213
KEYDEFS: &keydef
1314
-
@@ -19,38 +20,51 @@ KEYDEFS: &keydef
1920
"crv": "P-256"
2021
"use": ["sig"]
2122

23+
HTML_HOME: 'html'
24+
SECRET_KEY: 'secret_key'
25+
SESSION_COOKIE_NAME: 'rp_session'
26+
PREFERRED_URL_SCHEME: 'https'
27+
2228
RP_KEYS:
23-
'private_path': 'jwks_dir/jwks.json'
29+
'private_path': './private/jwks.json'
2430
'key_defs': *keydef
25-
'public_path': 'static/jwks.json'
31+
'public_path': './static/jwks.json'
2632
# this will create the jwks files if they absent
2733
'read_only': False
2834

2935
# information used when registering the client, this may be the same for all OPs
3036

37+
client_preferences: &prefs
38+
application_name: rphandler
39+
application_type: web
40+
contacts: [[email protected]]
41+
response_types: [code]
42+
scope: [openid, profile, email, address, phone]
43+
token_endpoint_auth_method: [client_secret_basic, client_secret_post]
44+
3145
services: &services
3246
discovery:
33-
class: oidcservice.rp.provider_info_discovery.ProviderInfoDiscovery
47+
class: oidcservice.oidc.provider_info_discovery.ProviderInfoDiscovery
48+
kwargs: {}
3449
registration:
35-
class: oidcservice.rp.registration.Registration
50+
class: oidcservice.oidc.registration.Registration
51+
kwargs: {}
3652
authorization:
3753
class: oidcservice.oidc.authorization.Authorization
54+
kwargs: {}
3855
accesstoken:
39-
class: oidcservice.oidc.accesstoken.Accesstoken
56+
class: oidcservice.oidc.access_token.AccessToken
57+
kwargs: {}
4058
refresh_accesstoken:
4159
class: oidcservice.oidc.refresh_access_token.RefreshAccessToken
60+
kwargs: {}
4261
userinfo:
4362
class: oidcservice.oidc.userinfo.UserInfo
63+
kwargs: {}
4464
end_session:
45-
class: oidcservice.oidc.session.EndSession
65+
class: oidcservice.oidc.end_session.EndSession
66+
kwargs: {}
4667

47-
client_preferences: &prefs
48-
application_name: rphandler
49-
application_type: web
50-
contacts: [[email protected]]
51-
response_types: [code]
52-
scope: [openid, profile, email, address, phone]
53-
token_endpoint_auth_method: [client_secret_basic, client_secret_post]
5468

5569

5670
# The keys in this dictionary are the OPs short user friendly name
@@ -302,4 +316,5 @@ clients:
302316
https://pf.example.com/: https://pf.example.com/jwks.json
303317

304318
# Whether an attempt to fetch the userinfo should be made
305-
userinfo: True
319+
USERINFO: true
320+

0 commit comments

Comments
 (0)