forked from panchal-ravi/confused-deputy-aws
-
Notifications
You must be signed in to change notification settings - Fork 0
Expand file tree
/
Copy path.env.keycloak.example
More file actions
37 lines (28 loc) · 1.49 KB
/
.env.keycloak.example
File metadata and controls
37 lines (28 loc) · 1.49 KB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
# Keycloak OAuth Configuration Example
# Copy this file to .env and fill in your actual Keycloak values
# Keycloak Client Configuration
CLIENT_ID=products-web-client
CLIENT_SECRET=your_keycloak_client_secret_here
# Keycloak Server Configuration
# Replace keycloak.example.com and realm-name with your actual values
KEYCLOAK_SERVER_URL=https://keycloak.example.com
KEYCLOAK_REALM=your-realm-name
# OAuth Scopes (space-separated)
# Keycloak common scopes: openid profile email
SCOPE=openid profile email
# Redirect URI (must match what's configured in Keycloak client)
REDIRECT_URI=http://localhost:8501/oauth2callback
# Base URL will be constructed automatically from KEYCLOAK_SERVER_URL and KEYCLOAK_REALM
# Leave empty to auto-construct, or set manually for custom configurations
BASE_URL=
# For manual URL configuration (advanced users only - leave empty for auto-construction):
# AUTHORIZE_URL=https://keycloak.example.com/realms/your-realm-name/protocol/openid-connect/auth
# TOKEN_URL=https://keycloak.example.com/realms/your-realm-name/protocol/openid-connect/token
# REFRESH_TOKEN_URL=https://keycloak.example.com/realms/your-realm-name/protocol/openid-connect/token
# REVOKE_TOKEN_URL=https://keycloak.example.com/realms/your-realm-name/protocol/openid-connect/revoke
# ProductsAgent API Configuration
PRODUCTS_AGENT_URL=http://localhost:8000
# Authentication Provider (set to 'keycloak' to enable Keycloak-specific features)
AUTH_PROVIDER=keycloak
# Logging Level (DEBUG, INFO, WARNING, ERROR)
LOG_LEVEL=INFO