computer-playbook/roles/docker-oauth2-proxy/templates/oauth2-proxy-keycloak.cfg.j2

http_address="0.0.0.0:4180"
cookie_secret="{{oauth2_proxy_cookie_secret}}"
email_domains="{{primary_domain}}"
cookie_secure="false"
upstreams="http://{{oauth2_proxy_upstream_application_and_port}}"
cookie_domains=["{{domain}}", "{{domain_keycloak}}"]                # Required so cookie can be read on all subdomains.
whitelist_domains=[".{{primary_domain}}"]                           # Required to allow redirection back to original requested target.

# keycloak provider
client_secret="{{oauth2_proxy_client_secret}}"
client_id="{{domain}}"
redirect_url="https://{{domain}}/oauth2/callback"

# in this case oauth2-proxy is going to visit
oidc_issuer_url="https://{{domain_keycloak}}/realms/{{primary_domain}}"
provider="oidc"
provider_display_name="Keycloak"
implemented functioning oauth2-proxy 2025-01-26 15:15:23 +01:00			`http_address="0.0.0.0:4180"`
			`cookie_secret="{{oauth2_proxy_cookie_secret}}"`
			`email_domains="{{primary_domain}}"`
			`cookie_secure="false"`
refactored oauth2-proxy 2025-01-26 16:14:30 +01:00			`upstreams="http://{{oauth2_proxy_upstream_application_and_port}}"`
			`cookie_domains=["{{domain}}", "{{domain_keycloak}}"] # Required so cookie can be read on all subdomains.`
			`whitelist_domains=[".{{primary_domain}}"] # Required to allow redirection back to original requested target.`
implemented functioning oauth2-proxy 2025-01-26 15:15:23 +01:00
			`# keycloak provider`
			`client_secret="{{oauth2_proxy_client_secret}}"`
			`client_id="{{domain}}"`
			`redirect_url="https://{{domain}}/oauth2/callback"`

			`# in this case oauth2-proxy is going to visit`
			`oidc_issuer_url="https://{{domain_keycloak}}/realms/{{primary_domain}}"`
			`provider="oidc"`
			`provider_display_name="Keycloak"`