feat: allow custom hydra clients generation
This commit is contained in:
14
templates/hydra-client.json.j2
Normal file
14
templates/hydra-client.json.j2
Normal file
@ -0,0 +1,14 @@
|
||||
{
|
||||
"client_id": {{ item.client_id | to_json }},
|
||||
"client_name": {{ item.client_name | default(item.client_id) | to_json }},
|
||||
"client_secret": {{ item.client_secret | default(lookup('ansible.builtin.password', '/dev/null chars=ascii_lowercase,digits length=32')) | to_json }},
|
||||
"grant_types": {{ item.grant_types | default(["authorization_code","refresh_token"]) | to_json }},
|
||||
"jwks": {},
|
||||
"metadata": {},
|
||||
"post_logout_redirect_uris": {{ item.post_logout_redirect_uris | default([]) | to_json }},
|
||||
"redirect_uris": {{ item.redirect_uris | default([]) | to_json }},
|
||||
"response_types": {{ item.response_types | default(["code"]) | to_json }},
|
||||
"logo_uri": {{ item.logo_uri | default("") | to_json }},
|
||||
"scope": {{ item.scope | default("openid profile email") | to_json }},
|
||||
"token_endpoint_auth_method": {{ item.token_endpoint_auth_method | default("client_secret_post") | to_json }}
|
||||
}
|
@ -1,19 +0,0 @@
|
||||
{
|
||||
"client_id": "{{ oidc_test_app_client_id }}",
|
||||
"client_name": "OIDC Test",
|
||||
"client_secret": "{{ oidc_test_app_client_secret }}",
|
||||
"grant_types": [
|
||||
"authorization_code",
|
||||
"refresh_token"
|
||||
],
|
||||
"jwks": {},
|
||||
"metadata": {},
|
||||
"post_logout_redirect_uris": ["{{ public_scheme }}://{{ public_host }}:8080"],
|
||||
"redirect_uris": ["{{ public_scheme }}://{{ public_host }}:8080/oauth2/callback"],
|
||||
"response_types": [
|
||||
"code"
|
||||
],
|
||||
"logo_uri": "https://www.cadoles.com/images/logo.svg",
|
||||
"scope": "openid profile email",
|
||||
"token_endpoint_auth_method": "client_secret_post"
|
||||
}
|
Reference in New Issue
Block a user