headscale/hsman
1
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity

Fix authentication on Keycloak

Browse Source
This commit is contained in:
Andrea Mistrali
2025-01-17 10:24:21 +01:00
parent 9fcae05d20
commit 33c0e603f8
8 changed files with 532 additions and 388 deletions
Download Patch File Download Diff File Expand all files Collapse all files

8
config.py
View File

@ -13,8 +13,13 @@ class BaseConfig(object):
APP_PREFIX = os.getenv('APP_PREFIX', '')
DEBUG_TB_ENABLED = False
WTF_CSRF_ENABLED = False
# Session
# We store sessions in filesystem, max 100 files, expire in 2 hours
SESSION_TYPE = 'filesystem'
SESSION_FILE_THRESHOLD = 100
PERMANENT_SESSION_LIFETIME = 7200
# All the followinf vars can be overriden
# All the following vars can be overriden
# in the environment, using `HSMAN_` prefix
SECRET_KEY = "secreto"
ADMIN_GROUPS = "adminGroup"
@ -22,6 +27,7 @@ class BaseConfig(object):
OIDC_CLIENT_SECRET = 'client-secreto'
OIDC_URL = "https://myidp.example.com/auth"
OIDC_REDIRECT_URI = 'http://localhost:5000/auth'
OIDC_CLOCK_SKEW = 30
# These are required by hsapi, should not be defined here
# HSAPI_SERVER = "https://headscale.example.com"