4
0
Fork 2
mirror of https://gerrit.hackerspace.pl/hscloud synced 2025-02-15 10:16:44 +00:00

matrix.0x3c.pl: migrate to native oidc support

Change-Id: I1c0f0561e78cb3c8bf60a279d8959d97cb27806e
Reviewed-on: https://gerrit.hackerspace.pl/c/hscloud/+/1860
Reviewed-by: informatic <informatic@hackerspace.pl>
This commit is contained in:
informatic 2023-12-27 20:39:09 +01:00 committed by informatic
parent 3325214147
commit f1dbac29a1

View file

@ -15,15 +15,20 @@ matrix {
casProxy: "registry.k0.hswaw.net/informatic/oauth2-cas-proxy:0.1.5",
},
cas: {
oidc+: {
enable: true,
oauth2: {
clientID: "YCWg1Qor9YstKn_yAHB_NT3GFAGqbnDFzIwyI_fCUWI",
clientSecret: (std.split(importstr "secrets/plain/cas-proxy-0x3c-0auth2-secret", "\n"))[0],
config+: {
allow_existing_users: true,
issuer: "https://0x3c.pl",
discover: false,
authorization_endpoint: "https://0x3c.pl/oauth/authorize",
token_endpoint: "https://0x3c.pl/oauth/token",
userinfo_endpoint: "https://0x3c.pl/api/v1/accounts/verify_credentials",
client_id: "YCWg1Qor9YstKn_yAHB_NT3GFAGqbnDFzIwyI_fCUWI",
client_secret: (std.split(importstr "secrets/plain/cas-proxy-0x3c-0auth2-secret", "\n"))[0],
scope: "read:accounts",
authorizeURL: "https://0x3c.pl/oauth/authorize",
tokenURL: "https://0x3c.pl/oauth/token",
userinfoURL: "https://0x3c.pl/api/v1/accounts/verify_credentials",
user_profile_method: "userinfo_endpoint",
client_auth_method: "client_secret_post",
},
},
},