-
Notifications
You must be signed in to change notification settings - Fork 13
Expand file tree
/
Copy pathsecrets.example.yaml
More file actions
38 lines (34 loc) · 1.1 KB
/
secrets.example.yaml
File metadata and controls
38 lines (34 loc) · 1.1 KB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
# Secrets configuration file for vc
# Copy this file to secrets.yaml and fill in real values.
# Referenced via common.secret_file_path in config.yaml.
# When set, secret values in config.yaml are cleared; only non-empty fields
# from this file are applied. Omitted fields remain at their zero value.
# Protect the real file with restrictive permissions (e.g., chmod 0600).
---
common:
mongo:
uri: "mongodb://user:password@mongo:27017"
apigw:
api_server:
basic_auth:
users:
admin: "<change-me>"
oidc_rp:
registration:
preconfigured:
client_secret: "<your-oidc-client-secret>"
# dynamic:
# initial_access_token: "<your-initial-access-token>"
registry:
admin_gui:
password: "<change-me>"
verifier:
oidc_op:
subject_salt: "<random-salt-for-pairwise-subjects>"
# static_clients maps client_id to client_secret for static OIDC OP clients.
# Only clients whose client_id matches a static_clients entry in config.yaml
# will have their secret applied.
# static_clients:
# "my-client-id": "<client-secret>"
ui:
password: "<change-me>"