Nicolas Cantu
0af507143a
- New smart-ide-global-api (127.0.0.1:37149): internal bearer, upstream proxy, X-OIDC forward - SSO gateway calls global API with GLOBAL_API_INTERNAL_TOKEN; logs to .logs/sso-gateway/ - Aggregated config example, docs, VERSION 0.0.2, claw proxy local URL hint
26 lines
932 B
Plaintext
26 lines
932 B
Plaintext
# smart-ide-sso-gateway — copy to .env, do not commit .env
|
|
# Or merge into config/services.local.env (repo root)
|
|
|
|
SSO_GATEWAY_HOST=127.0.0.1
|
|
SSO_GATEWAY_PORT=37148
|
|
# Optional: browser SPA origin for CORS on JSON and proxied responses
|
|
# SSO_CORS_ORIGIN=https://app.example.test
|
|
# SSO_GATEWAY_MAX_BODY_BYTES=33554432
|
|
|
|
# Required: docv / Enso OpenID issuer URL (JWKS discovery)
|
|
OIDC_ISSUER=https://docv.example.test
|
|
# Optional: validate access_token audience
|
|
# OIDC_AUDIENCE=smart-ide-gateway
|
|
# Optional: override JWKS URL
|
|
# OIDC_JWKS_URI=https://docv.example.test/.well-known/jwks.json
|
|
|
|
# smart-ide-global-api (must be running; same secret on both sides)
|
|
GLOBAL_API_URL=http://127.0.0.1:37149
|
|
GLOBAL_API_INTERNAL_TOKEN=
|
|
|
|
# Optional: monorepo root for .logs/sso-gateway/
|
|
# SMART_IDE_MONOREPO_ROOT=
|
|
|
|
# Micro-service tokens and hosts are read by smart-ide-global-api, not this process.
|
|
# See services/smart-ide-global-api/.env.example
|