forked from mathesar-foundation/mathesar
-
Notifications
You must be signed in to change notification settings - Fork 0
Expand file tree
/
Copy pathsso.yml.example
More file actions
33 lines (30 loc) · 1.14 KB
/
sso.yml.example
File metadata and controls
33 lines (30 loc) · 1.14 KB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
# This config file allows you to configure OpenID Connect(OIDC)
# based Single Sign-On(SSO) for logging into Mathesar with your preferred
# Identity Provider(IdP).
version: 1
oidc_providers:
provider1:
# (REQUIRED)
# These values are mandatory to enable SSO via OIDC.
# Sample OIDC config using Google as an IdP:
provider_name: google
client_id: # your_client_id
secret: # your_secret_key
server_url: https://accounts.google.com
# (OPTIONAL)
# These are optional configuration that can be added for you OIDC config.
# Restrict logins to the specified email domains.
# Default(Allow all domains): []
# Example: ['xyz.org', 'example.com']
allowed_email_domains: []
# Specifies the default postgres roles to be provisioned to users on their first login.
default_pg_role:
db1:
name: # your_db_name
host: # your_db_host
port: # your_db_port
role: # your_db_role
db2:
# Use the same config as db1 to provision default roles to users on additional databases.
provider2:
# Use the same config as provider1 to configure additional OIDC providers.