mirror of
https://github.com/netbirdio/netbird.git
synced 2024-12-13 18:31:18 +01:00
f2fc0df104
* Make possible set IdpSignKeyRefreshEnabled from setup.env IdpSignKeyRefreshEnabled is default to false but with some idps on token expire of logged users netbird always give error and return usable only on server restart so I think is useful make easier/faster set it on server configuration * add template IdpSignKeyRefreshEnabled value test
27 lines
1.3 KiB
Bash
27 lines
1.3 KiB
Bash
## example file, you can copy this file to setup.env and update its values
|
|
##
|
|
# Dashboard domain. e.g. app.mydomain.com
|
|
NETBIRD_DOMAIN=$CI_NETBIRD_DOMAIN
|
|
# e.g. https://dev-24vkclam.us.auth0.com/ or https://YOUR-KEYCLOAK-HOST:8080/realms/netbird
|
|
NETBIRD_AUTH_OIDC_CONFIGURATION_ENDPOINT="https://example.eu.auth0.com/.well-known/openid-configuration"
|
|
# e.g. netbird-client
|
|
NETBIRD_AUTH_CLIENT_ID=$CI_NETBIRD_AUTH_CLIENT_ID
|
|
NETBIRD_AUTH_SUPPORTED_SCOPES=$CI_NETBIRD_AUTH_SUPPORTED_SCOPES
|
|
NETBIRD_AUTH_CLIENT_SECRET=$CI_NETBIRD_AUTH_CLIENT_SECRET
|
|
# indicates whether to use Auth0 or not: true or false
|
|
NETBIRD_USE_AUTH0=$CI_NETBIRD_USE_AUTH0
|
|
NETBIRD_AUTH_AUDIENCE=$CI_NETBIRD_AUTH_AUDIENCE
|
|
# e.g. hello@mydomain.com
|
|
NETBIRD_LETSENCRYPT_EMAIL=""
|
|
NETBIRD_AUTH_REDIRECT_URI="/peers"
|
|
NETBIRD_DISABLE_LETSENCRYPT=true
|
|
NETBIRD_TOKEN_SOURCE="idToken"
|
|
NETBIRD_AUTH_DEVICE_AUTH_AUDIENCE="super"
|
|
NETBIRD_AUTH_USER_ID_CLAIM="email"
|
|
NETBIRD_AUTH_DEVICE_AUTH_SCOPE="openid email"
|
|
NETBIRD_MGMT_IDP=$CI_NETBIRD_MGMT_IDP
|
|
NETBIRD_IDP_MGMT_CLIENT_ID=$CI_NETBIRD_IDP_MGMT_CLIENT_ID
|
|
NETBIRD_IDP_MGMT_CLIENT_SECRET=$CI_NETBIRD_IDP_MGMT_CLIENT_SECRET
|
|
NETBIRD_SIGNAL_PORT=12345
|
|
NETBIRD_STORE_CONFIG_ENGINE=$CI_NETBIRD_STORE_CONFIG_ENGINE
|
|
NETBIRD_MGMT_IDP_SIGNKEY_REFRESH=$CI_NETBIRD_MGMT_IDP_SIGNKEY_REFRESH |