mirror of
https://github.com/project-zot/zot.git
synced 2024-12-16 21:56:37 -05:00
b461619682
fix(authn): configurable hashing/encryption keys used to secure cookies If they are not configured zot will generate a random hashing key at startup, invalidating all cookies if zot is restarted. closes: #2526 Signed-off-by: Petu Eusebiu <peusebiu@cisco.com>
72 lines
1.7 KiB
JSON
72 lines
1.7 KiB
JSON
{
|
|
"distSpecVersion": "1.1.0",
|
|
"storage": {
|
|
"rootDirectory": "/tmp/zot",
|
|
"dedupe": true
|
|
},
|
|
"http": {
|
|
"address": "127.0.0.1",
|
|
"port": "8080",
|
|
"externalUrl": "http://127.0.0.1:8080",
|
|
"realm": "zot",
|
|
"auth": {
|
|
"htpasswd": {
|
|
"path": "test/data/htpasswd"
|
|
},
|
|
"sessionKeysFile": "examples/sessionKeys.json",
|
|
"apikey": true,
|
|
"openid": {
|
|
"providers": {
|
|
"github": {
|
|
"clientid": "client_id",
|
|
"clientsecret": "client_secret",
|
|
"keypath": "",
|
|
"scopes": ["read:org", "user", "repo"]
|
|
},
|
|
"google": {
|
|
"issuer": "https://accounts.google.com",
|
|
"clientid": "client_id",
|
|
"clientsecret": "client_secret",
|
|
"scopes": ["openid", "email"]
|
|
},
|
|
"gitlab": {
|
|
"issuer": "https://gitlab.com",
|
|
"clientid": "client_id",
|
|
"clientsecret": "client_secret",
|
|
"scopes": ["openid", "read_api", "read_user", "profile", "email"]
|
|
},
|
|
"oidc": {
|
|
"name": "Corporate SSO",
|
|
"issuer": "http://127.0.0.1:5556/dex",
|
|
"clientid": "client_id",
|
|
"clientsecret": "client_secret",
|
|
"scopes": ["openid", "user", "email", "groups"]
|
|
}
|
|
}
|
|
},
|
|
"failDelay": 5
|
|
},
|
|
"accessControl": {
|
|
"repositories": {
|
|
"**": {
|
|
"policies": [
|
|
{
|
|
"users": [
|
|
"test"
|
|
],
|
|
"actions": [
|
|
"read",
|
|
"create"
|
|
]
|
|
}
|
|
],
|
|
"defaultPolicy": ["read"]
|
|
}
|
|
}
|
|
}
|
|
},
|
|
"log": {
|
|
"level": "debug"
|
|
},
|
|
"extensions": {}
|
|
}
|