Environment Variables
Environment variables for the auth-bearer service
| Name | Introduction Version | Type | Description | Default Value |
|---|---|---|---|---|
OC_TRACING_ENABLEDAUTH_BEARER_TRACING_ENABLED | 1.0.0 | bool | Activates tracing. | false |
OC_TRACING_TYPEAUTH_BEARER_TRACING_TYPE | 1.0.0 | string | The type of tracing. Defaults to '', which is the same as 'jaeger'. Allowed tracing types are 'jaeger' and '' as of now. | |
OC_TRACING_ENDPOINTAUTH_BEARER_TRACING_ENDPOINT | 1.0.0 | string | The endpoint of the tracing agent. | |
OC_TRACING_COLLECTORAUTH_BEARER_TRACING_COLLECTOR | 1.0.0 | string | The HTTP endpoint for sending spans directly to a collector, i.e. \http://jaeger-collector:14268/api/traces. Only used if the tracing endpoint is unset. | |
OC_LOG_LEVELAUTH_BEARER_LOG_LEVEL | 1.0.0 | string | The log level. Valid values are: 'panic', 'fatal', 'error', 'warn', 'info', 'debug', 'trace'. | |
OC_LOG_PRETTYAUTH_BEARER_LOG_PRETTY | 1.0.0 | bool | Activates pretty log output. | false |
OC_LOG_COLORAUTH_BEARER_LOG_COLOR | 1.0.0 | bool | Activates colorized log output. | false |
OC_LOG_FILEAUTH_BEARER_LOG_FILE | 1.0.0 | string | The path to the log file. Activates logging to this file if set. | |
AUTH_BEARER_DEBUG_ADDR | 1.0.0 | string | Bind address of the debug server, where metrics, health, config and debug endpoints will be exposed. | 127.0.0.1:9149 |
AUTH_BEARER_DEBUG_TOKEN | 1.0.0 | string | Token to secure the metrics endpoint. | |
AUTH_BEARER_DEBUG_PPROF | 1.0.0 | bool | Enables pprof, which can be used for profiling. | false |
AUTH_BEARER_DEBUG_ZPAGES | 1.0.0 | bool | Enables zpages, which can be used for collecting and viewing in-memory traces. | false |
AUTH_BEARER_GRPC_ADDR | 1.0.0 | string | The bind address of the GRPC service. | 127.0.0.1:9148 |
OC_GRPC_PROTOCOLAUTH_BEARER_GRPC_PROTOCOL | 1.0.0 | string | The transport protocol of the GRPC service. | tcp |
OC_JWT_SECRETAUTH_BEARER_JWT_SECRET | 1.0.0 | string | The secret to mint and validate jwt tokens. | |
OC_REVA_GATEWAY | 1.0.0 | string | The CS3 gateway endpoint. | eu.opencloud.api.gateway |
OC_GRPC_CLIENT_TLS_MODE | 1.0.0 | string | TLS mode for grpc connection to the go-micro based grpc services. Possible values are 'off', 'insecure' and 'on'. 'off': disables transport security for the clients. 'insecure' allows using transport security, but disables certificate verification (to be used with the autogenerated self-signed certificates). 'on' enables transport security, including server certificate verification. | |
OC_GRPC_CLIENT_TLS_CACERT | 1.0.0 | string | Path/File name for the root CA certificate (in PEM format) used to validate TLS server certificates of the go-micro based grpc services. | |
AUTH_BEARER_SKIP_USER_GROUPS_IN_TOKEN | 1.0.0 | bool | Disables the encoding of the user's group memberships in the reva access token. This reduces the token size, especially when users are members of a large number of groups. | false |
OC_URLOC_OIDC_ISSUERAUTH_BEARER_OIDC_ISSUER | 1.0.0 | string | URL of the OIDC issuer. It defaults to URL of the builtin IDP. | https://localhost:9200 |
OC_INSECUREAUTH_BEARER_OIDC_INSECURE | 1.0.0 | bool | Allow insecure connections to the OIDC issuer. | false |
AUTH_BEARER_OIDC_ID_CLAIM | 1.0.0 | string | Name of the claim, which holds the user identifier. | preferred_username |
AUTH_BEARER_OIDC_UID_CLAIM | 1.0.0 | string | Name of the claim, which holds the UID. | |
AUTH_BEARER_OIDC_GID_CLAIM | 1.0.0 | string | Name of the claim, which holds the GID. |