Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Sample config.yaml file for Keycloak #551

Open
wants to merge 5 commits into
base: master
Choose a base branch
from
Open

Sample config.yaml file for Keycloak #551

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
5 commits
Select commit Hold shift + click to select a range
0516bcf
Added sample config file for keycloak
shkpk Feb 5, 2024
f825b4d
reverting .gitignore
shkpk Feb 5, 2024
bbeb9a5
Updated README.md for keycloak sample config
shkpk Feb 5, 2024
b639ae8
README.md file update for keycloak sample config
shkpk Feb 5, 2024
6669758
Fixed README.md file for keycloak sample config
shkpk Feb 5, 2024
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
2 changes: 1 addition & 1 deletion README.md
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -24,7 +24,7 @@ Vouch Proxy supports many OAuth and OIDC login providers and can enforce authent
- [Discord](https://github.com/eltariel/foundry-docker-nginx-vouch)
- [SecureAuth](https://github.com/vouch/vouch-proxy/blob/master/config/config.yml_example_secureauth)
- [Gitea](https://github.com/vouch/vouch-proxy/blob/master/config/config.yml_example_gitea)
- Keycloak
- [Keycloak](config/config.yml_example_keycloak)
- [OAuth2 Server Library for PHP](https://github.com/vouch/vouch-proxy/issues/99)
- [HomeAssistant](https://developers.home-assistant.io/docs/en/auth_api.html)
- [OpenStax](https://github.com/vouch/vouch-proxy/pull/141)
Expand Down
39 changes: 39 additions & 0 deletions config/config.yml_example_keycloak
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,39 @@

# Vouch Proxy configuration
# bare minimum to get Vouch Proxy running with Keycloak

vouch:
domains:
- yourdomain.com

# - OR -
# instead of setting specific domains you may prefer to allow all users...
# set allowAllUsers: true to use Vouch Proxy to just accept anyone who can authenticate at the configured provider
# and set vouch.cookie.domain to the domain you wish to protect
# allowAllUsers: true

cookie:
# allow the jwt/cookie to be set into http://yourdomain.com (defaults to true, requiring https://yourdomain.com)
secure: false
# vouch.cookie.domain must be set when enabling allowAllUsers
# domain: yourdomain.com

oauth:
# Generic OpenID Connect
# for Keycloak
provider: oidc
client_id: xxxxxxxxxxxxxxxxxxxxxxxxxxxx
client_secret: xxxxxxxxxxxxxxxxxxxxxxxx
auth_url: https://{yourKeycloakDomain}/realms/{yourKeycloakRealm}/protocol/openid-connect/auth
token_url: https://{yourKeycloakDomain}/realms/{yourKeycloakRealm}/protocol/openid-connect/token
user_info_url: https://{yourKeycloakDomain}/realms/{yourKeycloakRealm}/protocol/openid-connect/userinfo
scopes:
- openid
- email
- profile
callback_url: http://vouch.yourdomain.com:9090/auth
# you can get values of of auth_url, token_url and user_info_url from https://{yourKeycloakDomain}/realms/{yourKeycloakRealm}/.well-known/openid-configuration
# When configuring client in Keycloak, you should use following values
## valid redirect: http://vouch.yourdomain.com:9090/auth
## valid logout: http://vouch.yourdomain.com:9090/logout
## web origin: http://vouch.yourdomain.com:9090