-
Notifications
You must be signed in to change notification settings - Fork 1
/
Copy pathdefault.config.yml
42 lines (34 loc) · 1.36 KB
/
default.config.yml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
---
# Listen port
#Port: 8000
# If no cetificate are provided, they will be autogenerated
#PrivateKey: /opt/gfa/ssl/server.key
#Certificate: /opt/gfa/ssl/server.crt
# Cookie and session configuration
#CookieDomain: "mydomain.com" # leave empty to disable sso
#CookieName: "_auth_gfa"
TokenExpire: 90 # jwt expiration delay in minutes
TokenRefresh: 2 # refresh jwt token if user make action in the last XX minutes (0 to disable refresh)
# template file for login/out
#HtmlFile: /opt/gfa/default.index.html
# key to sign jwt validate csrf. If not provided, will be generated. Must be >= 32bytes
#JwtSecretKey: "my_secret_JWT_key"
#CsrfSecretKey: "my_secret_CSRF_key"
# if this MagicIp is in JWT, it won't be tested against client's one
#MagicIp: "my_magic_ip"
# set log level
#LogLevel: info
# list of users :
# - key is the username used for connexion, and the value passed by Remote-User Header
# - values are :
# - Password : is the bcrypt hash of the password (https://bcrypt.online/)
# - AllowedDomains : list of regex for domains allowed for this user, use * for all
#Users:
# - admin:
# Password: $2y$10$t6XPeRTf5.a.Gb3I/lYq7ukuOpx6fsJRstEXNfOP4jXjjGGZ2Af72 # pass
# AllowedDomains: ".*"
# - jean:
# Password: $2y$10$PpzVO0zStuQKJAHmdIBqQuagxkc732nnGR.Iet4SE5tJR1FjOuo.6 # pwd
# AllowedDomains:
# - "allowed.com"
# - ".*website"