ansible-role-sso/templates/cadoles-pod-hydra-remote-user-v1.conf.j2

# {{ ansible_managed }}
PODMAN_ARGS="\
    -p 127.0.0.1:3003:80 \
    --network=slirp4netns:allow_host_loopback=true \
    --replace --name 'cadoles-pod-hydra-remote-user-v1' \
    --tz=local \
    -v /etc/hydra-remote-user/conf.d:/var/www/config/remote_user \
    -v /etc/hydra-remote-user/apache.conf:/etc/apache2/sites-available/000-default.conf \
    -v /etc/hosts:/etc/hosts:ro \
    -e APP_ENV=prod \
    -e 'APP_DEBUG={{ hydra_saml_debug }}' \
    -e 'HTTP_BASE_URL={{ haproxy_public_base_url }}{{ haproxy_hydra_saml_base_path }}' \
    -e 'COOKIE_PATH={{ hydra_saml_cookie_path }}' \
    -e HYDRA_ADMIN_BASE_URL=http://10.0.2.2:3000 \
    -e 'TRUSTED_PROXIES=127.0.0.1,10.0.2.0/24' \
    -e 'LOGOUT_REDIRECT_URL_PATTERN={{ haproxy_public_base_url }}{{ haproxy_hydra_saml_base_path }}/Shibboleth.sso/Logout?return=%s' \
"