-
Notifications
You must be signed in to change notification settings - Fork 2
/
Copy pathconfig.sample.yaml
38 lines (32 loc) · 1.21 KB
/
config.sample.yaml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
# See detailed configuration settings : https://www.pomerium.io/docs/reference/reference/
# this is the domain the identity provider will callback after a user authenticates
authenticate_service_url: https://authenticate.localhost.pomerium.io
# certificate settings: https://www.pomerium.io/docs/reference/certificates.html
# autocert: true
certificates:
- cert: "/pomerium/cert.pem"
key: "/pomerium/privkey.pem"
# REMOVE FOR PRODUCTION
autocert_use_staging: true
# identity provider settings : https://www.pomerium.io/docs/identity-providers.html
idp_provider: github
idp_client_id: ""
idp_client_secret: ""
# necessary for allowed-groups
idp_service_account: ""
# Generate 256 bit random keys e.g. `head -c32 /dev/urandom | base64`
cookie_secret: WwMtDXWaRDMBQCylle8OJ+w4kLIDIGd8W3cB4/zFFtg=
# https://www.pomerium.io/configuration/#policy
policy:
- from: https://verify.localhost.pomerium.io
to: https://verify.pomerium.com
allowed_users:
- your@email.com
- another.email@example.com
pass_identity_headers: true
- from: https://code.localhost.pomerium.io
to: http://codeserver:8080
allowed_users:
- your@email.com
- another.email@example.com
allow_websockets: true