-
Notifications
You must be signed in to change notification settings - Fork 0
Expand file tree
/
Copy path.env.example
More file actions
37 lines (32 loc) · 1.34 KB
/
.env.example
File metadata and controls
37 lines (32 loc) · 1.34 KB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
# AgentIdentity Okta compatibility checks (examples/tests)
# Core Okta app settings used by OBO compatibility demo/test.
OKTA_ISSUER=https://<your-okta-domain>/oauth2/default
OKTA_CLIENT_ID=<your-okta-client-id>
OKTA_CLIENT_SECRET=<your-okta-client-secret>
OKTA_AUDIENCE=api://predicate-authority
OKTA_SCOPE=authority:check
# Enable live compatibility check test (disabled by default).
OKTA_OBO_COMPAT_CHECK_ENABLED=0
# Set to 1/true only if your Okta tenant supports token exchange/OBO.
OKTA_SUPPORTS_TOKEN_EXCHANGE=0
# Entra OBO compatibility checks (examples/tests)
ENTRA_TENANT_ID=<your-entra-tenant-id>
ENTRA_CLIENT_ID=<your-entra-client-id>
ENTRA_CLIENT_SECRET=<your-entra-client-secret>
ENTRA_SCOPE=api://predicate-authority/.default
ENTRA_AUTHORITY_HOST=login.microsoftonline.com
ENTRA_AUTHORITY_SCHEME=https
ENTRA_OBO_COMPAT_CHECK_ENABLED=0
ENTRA_SUPPORTS_OBO=0
# Optional; required only when running true Entra OBO exchange path.
ENTRA_USER_ASSERTION=
# Generic OIDC token exchange compatibility checks (examples/tests)
OIDC_ISSUER=https://<oidc-provider>/oauth2/default
OIDC_CLIENT_ID=<your-oidc-client-id>
OIDC_CLIENT_SECRET=<your-oidc-client-secret>
OIDC_AUDIENCE=api://predicate-authority
OIDC_SCOPE=authority:check
OIDC_COMPAT_CHECK_ENABLED=0
OIDC_SUPPORTS_TOKEN_EXCHANGE=0
# Optional; required only when testing true token exchange.
OIDC_SUBJECT_TOKEN=