arrtem 9b1f112a0b Merge remote-tracking branch 'origin/master' 1 day ago
oidcp milestone 4 (return 409 instead of 404) 1 day ago
swagger_docs milestone 4 (password and login creation) 1 month ago
tests milestone 4 (password and login creation) 1 month ago
.dockerignore local deployment fixes 2 months ago
.drone.yml Updated password for service 2 days ago
.env milestone 4 (return 409 instead of 404) 1 day ago
.gitignore create new command for makefile 2 months ago
.isort.cfg Fix line length to PEP standards. 11 months ago
CHANGELOG.md Add change log standard format. 11 months ago
Dockerfile fix worker. Celery should not be under root user 2 months ago
LICENSE Remove markdown file type. Not used. 10 months ago
MANIFEST.in Include documentation in package. 11 months ago
Makefile milestone 4 rename local env 1 month ago
Pipfile Removed opbeat 2 months ago
Pipfile.lock Updated lock 2 months ago
README.md Environment variables explanation 2 months ago
celworker.py celery autodiscover tasks 2 months ago
hosts Bugfix + add hosts 6 months ago
playbook.yml Updated password for service 2 days ago
setup.cfg Mark `oic` package as third party. 7 months ago
setup.py No idea what that does so I'm removing it. 8 months ago
wsgi.py port should be integer 2 months ago

README.md

oidcp

The OpenID Connect provider behind the account management system.

Environment variables explanation

export FLASK_APP=wsgi.py
export SWAGGER_UI=3
export BACKCHANNEL_ID=backchannel_id
export BACKCHANNEL_PWORD=backchannel_secret
export BACKCHANNEL_TIMEOUT=3
export FRONTEND_ID=openid_client_id
export FRONTEND_URL=http://localhost:8089/
export SHARED_JWT_SECRET=shared_jwt_secret
export TOKEN_ALGORITHM=HS256
export FRONTEND_SALT=frontend_salt
export SHARED_JWT_SECRET=shared_jwt_secret
export FSFE_CD_URL=http://localhost:8088/api
export LDAP_URL=ldap://localhost:389/
export LDAP_UNAME_PATTERN=uid={},ou=fellowship,dc=fsfe,dc=org
export LDAP_EMAIL_PATTERN=ou=fellowship,dc=fsfe,dc=org
export MAIL_DEFAULT_SENDER=TODO@fsfe.org
export CELERY_BROKER_URL=redis://localhost:6379/1
export CELERY_RESULT_BACKEND=redis://localhost:6379/1
export CODE_TIMEOUT=1800
export MAIL_SERVER=mail.todo.org
export REDIS_HOST=localhost
export REDIS_PORT=6379
export REDIS_SESSION_DB=0
export SERVER_PORT=localhost:8080
export ENV=development
  • FRONTEND_URL is needed to verify this client is allowed on oidcp
  • LDAP_URL, LDAP_UNAME_PATTERN, LDAP_EMAIL_PATTERN - ldap server config, to make ldap requests
  • FSFE_CD_URL - uri to fsfe-cd component to be able retrieve records from postgres
  • CELERY_BROKER_URL - where broker is hosted, CELERY_RESULT_BACKEND - where celery puts tasks results
  • REDIS_HOST, REDIS_PORT - where redis is hosted
  • REDIS_CACHE_DB - is needed for "redis" to select db
  • SHARED_JWT_SECRET - secret to sign jwt token (it's shared between the components)
  • SERVER_PORT - is used in Makefile
  • BACKCHANNEL_ID, BACKCHANNEL_PWORD - credentials to fsfe-cd (Basic authorization)