83 lines
3.9 KiB
Bash
83 lines
3.9 KiB
Bash
APP_ENV=PROD
|
||
APP_SECRET=changeme
|
||
DATABASE_URL="postgresql://symfony:changeme@postgres:5432/app?serverVersion=13&charset=utf8"
|
||
MESSENGER_TRANSPORT_DSN=doctrine://default?auto_setup=0
|
||
|
||
APP_AUTH=OPENID # SQL | CAS | LDAP | OPENID
|
||
APP_MASTERIDENTITY=SSO # SQL | SSO | LDAP
|
||
APP_SYNCHRO= # Synchronisation null | LDAP2NINE | NINE2LDAP | NINE2NINE
|
||
|
||
# Redis Sentiel Session
|
||
REDIS_HOST='redis-sentinel'
|
||
REDIS_PORT=26379 # 6379 | 26379
|
||
REDIS_SERVICE=redismaster # master sentinel name
|
||
|
||
# LDAP
|
||
LDAP_HOST=openldap # host du serveur ldap
|
||
LDAP_PORT=389 # port du serveur ldap
|
||
LDAP_USETLS=0 # connection TLS 0/1
|
||
LDAP_USERWRITER=0 # LDAP_USER compte writer ? 0/1
|
||
LDAP_USER="cn=admin,dc=nuo,dc=fr" # DN compte access ldap
|
||
LDAP_PASSWORD=changeme # Password compte access ldap
|
||
LDAP_BASEDN="dc=nuo,dc=fr" # Base DN ex:dc=nine,dc=fr
|
||
LDAP_BASEORGANISATION= # Base Organisation ex:ou=nineskeletor,dc=nine,dc=fr
|
||
LDAP_BASENIVEAU01= # Base Niveau01 ex:ou=niveau01,ou=nineskeletor,dc=nine,dc=fr
|
||
LDAP_BASENIVEAU02= # Base Niveau02 ex:ou=niveau02,ou=nineskeletor,dc=nine,dc=fr
|
||
LDAP_BASENIVEAU03= # Base Niveau03 ex:ou=niveau03,ou=nineskeletor,dc=nine,dc=fr
|
||
LDAP_BASENIVEAU04= # Base Niveau04 ex:ou=niveau04,ou=nineskeletor,dc=nine,dc=fr
|
||
LDAP_BASEGROUP= # Base Group ex:ou=groups,ou=nineskeletor,dc=nine,dc=fr
|
||
LDAP_BASEUSER= # Base User ex:ou=users,ou=nineskeletor,dc=nine,dc=fr
|
||
LDAP_USERNAME=uid # Attribut id d'un user
|
||
LDAP_FIRSTNAME=givenname # Attribut firstname d'un user
|
||
LDAP_LASTNAME=sn # Attribut lastname d'un user
|
||
LDAP_EMAIL=mail # Attribut email d'un user
|
||
LDAP_AVATAR=jpegphoto # Attribut avatar d'un user
|
||
LDAP_MEMBEROF=memberof # Attribut memberof d'un user
|
||
LDAP_GROUPGID=gidnumber # Attribut gid d'un groupe
|
||
LDAP_GROUPNAME=cn # Attribut name d'un groupe
|
||
LDAP_GROUPMEMBER=memberuid # Attribut stockant les membres d'un groupe
|
||
LDAP_GROUPMEMBERISDN=0 # LDAP_GROUPMEMBER stocke un uid ou un dn ? 0/1
|
||
LDAP_FILTERGROUP=(cn=*) # requete ldap pour rechercher les groupes
|
||
LDAP_FILTERUSER=(uid=*) # requete ldap pour rechercher les users
|
||
LDAP_AUTOSUBMIT=1 # if APP_AUTH = LDAP autocréer les users non existant
|
||
LDAP_AUTOUPDATE=1 # if APP_AUTH = LDAP automodifier les users existant
|
||
|
||
# If APP_AUTH = CAS
|
||
CAS_HOST=
|
||
CAS_PORT=
|
||
CAS_PATH=
|
||
CAS_USERNAME=username
|
||
CAS_EMAIL=email
|
||
CAS_LASTNAME=lastname
|
||
CAS_FIRSTNAME=firstname
|
||
CAS_AVATAR=
|
||
CAS_NIVEAU01=
|
||
CAS_GROUP=
|
||
CAS_AUTOSUBMIT=1 # if APP_AUTH = CAS autocréer les users non existant
|
||
CAS_AUTOUPDATE=1 # if APP_AUTH = CAS automodifier les users existant
|
||
|
||
# If APP_AUTH = OPENID
|
||
OAUTH_CLIENTID=nuosso
|
||
OAUTH_CLIENTSECRET="changeme"
|
||
OAUTH_LOGINURL=http://127.0.0.1:7080/oauth2/auth
|
||
OAUTH_LOGOUTURL=http://127.0.0.1:7080/oauth2/sessions/logout
|
||
OAUTH_TOKENURL=http://hydra:4444/oauth2/token
|
||
OAUTH_USERINFO=http://hydra:4444/userinfo
|
||
OAUTH_USERNAME=username
|
||
OAUTH_EMAIL=email
|
||
OAUTH_LASTNAME=lastname
|
||
OAUTH_FIRSTNAME=firstname
|
||
OAUTH_AVATAR=picture
|
||
OAUTH_AUTOSUBMIT=1 # if APP_AUTH = OPENID autocréer les users non existant
|
||
OAUTH_AUTOUPDATE=1 # if APP_AUTH = OPENID automodifier les users existant
|
||
|
||
# Proxy
|
||
PROXY_USE=0
|
||
PROXY_HOST=
|
||
PROXY_PORT=
|
||
|
||
# Hydra apps
|
||
HYDRA_LOGINCHALLENGE="http://hydra:4445/oauth2/auth/requests/login?login_challenge="
|
||
HYDRA_LOGINCHALLENGEACCEPT="http://hydra:4445/oauth2/auth/requests/login/accept?login_challenge="
|
||
HYDRA_CONSENTCHALLENGE="http://hydra:4445/oauth2/auth/requests/consent?consent_challenge="
|
||
HYDRA_CONSENTCHALLENGEACCEPT="http://hydra:4445/oauth2/auth/requests/consent/accept?consent_challenge=" |