forked from OpenLiberty/ci.docker
-
Notifications
You must be signed in to change notification settings - Fork 0
/
sso-oauth2.xml
51 lines (49 loc) · 2.76 KB
/
sso-oauth2.xml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
<?xml version="1.0" encoding="UTF-8"?>
<server>
<!-- defaults from the server metatype.xml are declared as variables here
If nothing is passed in elsewhere, the defaults will prevail.
Required parameters have no defaults, so are not defined here.
The required parameters are
clientId, clientSecret,
tokenEndpoint, authorizationEndpoint
-->
<variable name="SEC_SSO_REDIRECTTORPHOSTANDPORT" defaultValue="" />
<variable name="SEC_SSO_MAPTOUSERREGISTRY" defaultValue="false"/>
<variable name="SEC_SSO_OAUTH2_GROUPNAMEATTRIBUTE" defaultValue=""/>
<variable name="SEC_SSO_OAUTH2_USERNAMEATTRIBUTE" defaultValue="email"/>
<variable name="SEC_SSO_OAUTH2_DISPLAYNAME" defaultValue="oauth2Login"/>
<variable name="SEC_SSO_OAUTH2_USERAPI" defaultValue=""/>
<variable name="SEC_SSO_OAUTH2_REALMNAMEATTRIBUTE" defaultValue=""/>
<variable name="SEC_SSO_OAUTH2_REALMNAME" defaultValue=""/>
<variable name="SEC_SSO_OAUTH2_SCOPE" defaultValue=""/>
<variable name="SEC_SSO_OAUTH2_TOKENENDPOINTAUTHMETHOD" defaultValue="client_secret_post"/>
<variable name="SEC_SSO_OAUTH2_ACCESSTOKENHEADERNAME" defaultValue=""/>
<variable name="SEC_SSO_OAUTH2_ACCESSTOKENREQUIRED" defaultValue="false"/>
<variable name="SEC_SSO_OAUTH2_ACCESSTOKENSUPPORTED" defaultValue="false"/>
<variable name="SEC_SSO_OAUTH2_USERAPITYPE" defaultValue="basic" />
<variable name="SEC_SSO_OAUTH2_USERAPI" defaultValue="" />
<variable name="SEC_SSO_OAUTH2_USERAPITOKEN" defaultValue="" />
<!-- the id attribute will not be substituted -->
<oauth2Login
id="oauth2"
clientId="${SEC_SSO_OAUTH2_CLIENTID}"
clientSecret="${SEC_SSO_OAUTH2_CLIENTSECRET}"
redirectToRPHostAndPort="${SEC_SSO_REDIRECTTORPHOSTANDPORT}"
tokenEndpoint="${SEC_SSO_OAUTH2_TOKENENDPOINT}"
authorizationEndpoint="${SEC_SSO_OAUTH2_AUTHORIZATIONENDPOINT}"
groupNameAttribute="${SEC_SSO_OAUTH2_GROUPNAMEATTRIBUTE}"
userNameAttribute="${SEC_SSO_OAUTH2_USERNAMEATTRIBUTE}"
displayName="${SEC_SSO_OAUTH2_DISPLAYNAME}"
mapToUserRegistry="${SEC_SSO_MAPTOUSERREGISTRY}"
realmNameAttribute="${SEC_SSO_OAUTH2_REALMNAMEATTRIBUTE}"
realmName="${SEC_SSO_OAUTH2_REALMNAME}"
scope="${SEC_SSO_OAUTH2_SCOPE}"
tokenEndpointAuthMethod="${SEC_SSO_OAUTH2_TOKENENDPOINTAUTHMETHOD}"
accessTokenHeaderName="${SEC_SSO_OAUTH2_ACCESSTOKENHEADERNAME}"
accessTokenRequired="${SEC_SSO_OAUTH2_ACCESSTOKENREQUIRED}"
accessTokenSupported="${SEC_SSO_OAUTH2_ACCESSTOKENSUPPORTED}"
userApiType="${SEC_SSO_OAUTH2_USERAPITYPE}"
userApiToken="${SEC_SSO_OAUTH2_USERAPITOKEN}"
userApi="${SEC_SSO_OAUTH2_USERAPI}"
></oauth2Login>
</server>