-
Notifications
You must be signed in to change notification settings - Fork 3
/
Copy pathconfig.light.yaml
140 lines (126 loc) · 3.34 KB
/
config.light.yaml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
api_version: "0.1"
apps:
- name: one
path_prefix: /one
host: http://localhost:3000
internal:
enc_key: internal_enc_key
sign_key: internal_sign_key
storage: internal
auth:
- plugin: "vk"
name: vk_one
config:
client_id: ${VK_CLIENT_ID}
client_secret: ${VK_SECRET}
scopes:
- email
fields: [ ]
- plugin: "phone"
config:
sender: twilio
template: phone_otp
max_attempts: 3
otp:
length: 6
alphabet: num
prefix: A-
postfix: -B
exp: 300
- plugin: email
config:
sender: email
template: magic_link
exp: 3600
# - plugin: "vk"
# name: vk_two
# config:
# client_id: ${VK_CLIENT_ID}
# client_secret: ${VK_SECRET}
# scopes:
# - email
# fields: [ ]
senders:
- plugin: "twilio"
name: twilio
config:
account_sid: ${TEST_TWILIO_ACCOUNT_SID}
auth_token: ${TEST_TWILIO_AUTH_TOKEN}
from: ${TEST_TWILIO_PHONE_NUMBER}
templates:
phone_otp: ../lab/templates/phone_otp.txt
sms_2fa_tmpl: ../lab/templates/sms_2fa.txt
- plugin: "email"
name: email
config:
host: smtp.gmail.com:587
username: username@example.com
password: ${SMTP_PASSWORD}
from: app@example.com
templates:
default_text: ../lab/templates/default.txt
default_html: ../lab/templates/default.html
reset: ../lab/templates/password_reset.txt
magic_link: ../lab/templates/magic_link.txt
email_verification: ../lab/templates/email_verification.txt
issuer:
plugin: "jwt"
config:
iss: Aureole Server
sub: true
nbf: 0
iat: true
access_bearer: body # [cookie, body, both]
refresh_bearer: body # [cookie, body, both]
sign_key: local_jwk_keys
verify_keys:
- local_jwk_keys
access_exp: 900000
refresh_exp: 7890000
payload: ../lab/templates/jwt_payload.json.tmpl
crypto_keys:
- plugin: "jwk"
name: local_jwk_keys
config:
refresh_interval: 5
retries_num: 3
retry_interval: 7
storage: local_jwk_keys
- plugin: "jwk"
name: internal_enc_key
config:
kty: RSA
alg: RSA-OAEP-256
size: 4096
use: enc
kid: SHA-256
storage: internal_enc_keys
- plugin: "jwk"
name: internal_sign_key
config:
kty: RSA
alg: RS256
size: 2048
kid: SHA-256
storage: internal_sign_keys
storages:
- plugin: "memory"
name: internal
config:
size: 100
crypto_storages:
- plugin: "file"
name: local_jwk_keys
config:
path: ../lab/keys/keys.json
- plugin: "file"
name: internal_sign_keys
config:
path: ../lab/keys/service_sign_key.json
- plugin: "file"
name: internal_enc_keys
config:
path: ../lab/keys/service_enc_key.json
root_plugins:
- plugin: "urls"
name: get-urls