# oidc issuer
issuer=
# oidc client id
clientId=
# oidc client secret
clientSecret=
# Change the <hostname:port> to the external hostname of the cluster
# https://<hostname:port>/auth/oidc/callback
redirectUri=
# by default, maps the email address to a linux user which is the email address username
findUser="(tokeninfo, userdata) => { console.log(tokeninfo, userdata); return userinfo.email.replace(/@.*/,\"\") }"
# *** ADVANCED SETTINGS: you should leave default ***
# uri for logging in
loginUri=/auth
# oidc scope
scope="openid email profile"
# algorithm
idTokenSignedResponseAlg="RS256"
# auth method
tokenEndpointAuthMethod="client_secret_basic"
# where to redirect when the login has completed
loginCompleteRedirectUri="../.."
# endpoint for logging out
endSessionEndpoint=""
# where to redirect after oidc has logged out
logoutRedirectUri="/logout"