-
Notifications
You must be signed in to change notification settings - Fork 2.5k
/
application.properties
112 lines (93 loc) · 5.8 KB
/
application.properties
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
quarkus.http.cors=true
quarkus.oidc.token-cache.max-size=3
# Default Tenant
quarkus.oidc.auth-server-url=${keycloak.url}/realms/quarkus-a
quarkus.oidc.client-id=quarkus-app-a
quarkus.oidc.credentials.secret=secret
quarkus.oidc.application-type=service
# Tenant B
quarkus.oidc.tenant-b.auth-server-url=${keycloak.url}/realms/quarkus-b
quarkus.oidc.tenant-b.client-id=quarkus-app-b
quarkus.oidc.tenant-b.credentials.secret=secret
quarkus.oidc.tenant-b.token.issuer=${keycloak.url}/realms/quarkus-b
quarkus.oidc.tenant-b.application-type=service
# Tenant B - 2 clients
quarkus.oidc.tenant-b2.auth-server-url=${keycloak.url}/realms/quarkus-b
# issuer is discovered
# Tenant B Service No Discovery (Introspection + User Info)
quarkus.oidc.tenant-b-no-discovery.auth-server-url=${keycloak.url}/realms/quarkus-b
quarkus.oidc.tenant-b-no-discovery.discovery-enabled=false
quarkus.oidc.tenant-b-no-discovery.user-info-path=/protocol/openid-connect/userinfo
quarkus.oidc.tenant-b-no-discovery.introspection-path=protocol/openid-connect/token/introspect
quarkus.oidc.tenant-b-no-discovery.allow-token-introspection-cache=false
quarkus.oidc.tenant-b-no-discovery.allow-user-info-cache=false
quarkus.oidc.tenant-b-no-discovery.client-id=quarkus-app-b
quarkus.oidc.tenant-b-no-discovery.credentials.secret=secret
quarkus.oidc.tenant-b-no-discovery.application-type=service
quarkus.oidc.tenant-b-no-discovery.authentication.user-info-required=true
# Tenant C
quarkus.oidc.tenant-c.auth-server-url=${keycloak.url}/realms/quarkus-c
quarkus.oidc.tenant-c.client-id=quarkus-app-c
quarkus.oidc.tenant-c.credentials.secret=secret
quarkus.oidc.tenant-c.token.audience=${keycloak.url}/realms/quarkus-c
quarkus.oidc.tenant-c.application-type=service
# Tenant Web App
quarkus.oidc.tenant-web-app.auth-server-url=${keycloak.url}/realms/quarkus-webapp
quarkus.oidc.tenant-web-app.client-id=quarkus-app-webapp
quarkus.oidc.tenant-web-app.credentials.secret=secret
quarkus.oidc.tenant-web-app.application-type=web-app
quarkus.oidc.tenant-web-app.authentication.user-info-required=true
quarkus.oidc.tenant-web-app.roles.source=userinfo
quarkus.oidc.tenant-web-app.allow-user-info-cache=false
# Tenant Web App No Discovery (Introspection + User Info)
quarkus.oidc.tenant-web-app-no-discovery.auth-server-url=${keycloak.url}/realms/quarkus-webapp
quarkus.oidc.tenant-web-app-no-discovery.discovery-enabled=false
quarkus.oidc.tenant-web-app-no-discovery.authorization-path=/protocol/openid-connect/auth
quarkus.oidc.tenant-web-app-no-discovery.token-path=/protocol/openid-connect/token
quarkus.oidc.tenant-web-app-no-discovery.user-info-path=/protocol/openid-connect/userinfo
quarkus.oidc.tenant-web-app-no-discovery.introspection-path=protocol/openid-connect/token/introspect
quarkus.oidc.tenant-web-app-no-discovery.allow-token-introspection-cache=false
quarkus.oidc.tenant-web-app-no-discovery.client-id=quarkus-app-webapp
quarkus.oidc.tenant-web-app-no-discovery.credentials.secret=secret
quarkus.oidc.tenant-web-app-no-discovery.application-type=web-app
quarkus.oidc.tenant-web-app-no-discovery.authentication.user-info-required=true
quarkus.oidc.tenant-web-app-no-discovery.authentication.id-token-required=false
quarkus.oidc.tenant-web-app-no-discovery.roles.source=userinfo
quarkus.oidc.tenant-web-app-no-discovery.allow-user-info-cache=false
# Tenant Web App2
quarkus.oidc.tenant-web-app2.auth-server-url=${keycloak.url}/realms/quarkus-webapp2
quarkus.oidc.tenant-web-app2.client-id=quarkus-app-webapp2
quarkus.oidc.tenant-web-app2.credentials.secret=secret
quarkus.oidc.tenant-web-app2.application-type=web-app
quarkus.oidc.tenant-web-app2.roles.source=accesstoken
# Tenant Hybrid Service
quarkus.oidc.tenant-hybrid-service.auth-server-url=${keycloak.url}/realms/quarkus-hybrid
quarkus.oidc.tenant-hybrid-service.client-id=quarkus-app-hybrid
quarkus.oidc.tenant-hybrid-service.credentials.secret=secret
quarkus.oidc.tenant-hybrid-service.application-type=service
# Tenant Hybrid Web-App
quarkus.oidc.tenant-hybrid-webapp.auth-server-url=${keycloak.url}/realms/quarkus-hybrid
quarkus.oidc.tenant-hybrid-webapp.client-id=quarkus-app-hybrid
quarkus.oidc.tenant-hybrid-webapp.credentials.secret=secret
quarkus.oidc.tenant-hybrid-webapp.application-type=web-app
# Tenant Hybrid Web-App Service
quarkus.oidc.tenant-hybrid-webapp-service.auth-server-url=${keycloak.url}/realms/quarkus-hybrid
quarkus.oidc.tenant-hybrid-webapp-service.client-id=quarkus-app-hybrid
quarkus.oidc.tenant-hybrid-webapp-service.credentials.secret=secret
quarkus.oidc.tenant-hybrid-webapp-service.application-type=hybrid
# Custom header
quarkus.oidc.tenant-customheader.auth-server-url=${keycloak.url}/realms/quarkus-b
quarkus.oidc.tenant-customheader.client-id=quarkus-app-b
quarkus.oidc.tenant-customheader.credentials.secret=secret
quarkus.oidc.tenant-customheader.token.header=X-Forwarded-Authorization
quarkus.oidc.tenant-customheader.application-type=service
# Required claim (Uses tenant-b settings as it has multiple clients)
quarkus.oidc.tenant-requiredclaim.auth-server-url=${keycloak.url}/realms/quarkus-b
quarkus.oidc.tenant-requiredclaim.application-type=service
quarkus.oidc.tenant-requiredclaim.token.required-claims.azp=quarkus-app-b
quarkus.oidc.tenant-public-key.client-id=test
quarkus.oidc.tenant-public-key.public-key=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlivFI8qB4D0y2jy0CfEqFyy46R0o7S8TKpsx5xbHKoU1VWg6QkQm+ntyIv1p4kE1sPEQO73+HY8+Bzs75XwRTYL1BmR1w8J5hmjVWjc6R2BTBGAYRPFRhor3kpM6ni2SPmNNhurEAHw7TaqszP5eUF/F9+KEBWkwVta+PZ37bwqSE4sCb1soZFrVz/UT/LF4tYpuVYt3YbqToZ3pZOZ9AX2o1GCG3xwOjkc4x0W7ezbQZdC9iftPxVHR8irOijJRRjcPDtA6vPKpzLl6CyYnsIYPd99ltwxTHjr3npfv/3Lw50bAkbT4HeLFxTx4flEoZLKO/g0bAoV2uqBhkA9xnQIDAQAB
smallrye.jwt.sign.key.location=/privateKey.pem
quarkus.log.category."com.gargoylesoftware.htmlunit.javascript.host.css.CSSStyleSheet".level=FATAL
quarkus.http.auth.proactive=false
quarkus.native.additional-build-args=-H:IncludeResources=.*\\.pem