-
Notifications
You must be signed in to change notification settings - Fork 112
Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
Added OAuth2 bridge, made configuration more portable
root
committed
Sep 27, 2018
1 parent
0dbde05
commit c3a8ca9
Showing
5 changed files
with
69 additions
and
10 deletions.
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1 @@ | ||
COMPOSE_PROJECT_NAME=jupyterhub |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,41 @@ | ||
module.exports = { | ||
// The URL where the OAuth2 server will respond | ||
appURL: "https://jupyter.ens.uvsq.fr/c2o2b", | ||
// The port to bind to | ||
port: process.env.PORT, | ||
|
||
// The endpoints of the CAS server (v1.0) to authenticate to | ||
cas: { | ||
entryPoint: "https://cas.uvsq.fr/login", | ||
validate: "https://cas.uvsq.fr/serviceValidate", | ||
}, | ||
// The endpoint of the SAML server (v2.0) to authenticate to | ||
saml: { | ||
entryPoint: "https://cas.uvsq.fr/login", | ||
issuer: "cas2oauth2bridge", | ||
}, | ||
|
||
// The cipher used to encrypt cookies | ||
crypto: { | ||
// Authenticated encryption mode | ||
algorithm: "aes-256-gcm", | ||
// If initialized to zero, like here, a random key will be | ||
// generated at startup (hence, cookies will not survive | ||
// reboot). | ||
key: Buffer.alloc(32), | ||
ivlen: 16, | ||
}, | ||
|
||
// Definition of the services | ||
oauth: { | ||
// Expiration time of authentication cookies | ||
tokenLifetime: 24*60*60, | ||
// The services allowed to authenticate to this server | ||
clients: { | ||
"0": { | ||
secret: null, | ||
redirectUri: new RegExp('^https://jupyter\\.ens\\.uvsq\\.fr/'), | ||
}, | ||
}, | ||
}, | ||
} |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters