Set default buffer level for proxy basic conf, which are necessary for OIDC login

roles/srv-proxy-core/templates/headers/buffers.conf.j2

@@ -0,0 +1,6 @@
+# Raise the maximal header size to allow huge headers Keycloak for authentification
+proxy_buffer_size 16k;
+proxy_buffers 8 16k;
+proxy_busy_buffers_size 16k;
+client_header_buffer_size 8k;
+large_client_header_buffers 8 32k;

roles/srv-proxy-core/templates/location/html.conf.j2

@@ -1,5 +1,4 @@
 {% set location = location | default("/")%}
-
 location {{location}}
 {
   {% if oauth2_proxy_enabled | default(false) | bool %}

roles/srv-proxy-core/templates/vhost/basic.conf.j2

@@ -1,6 +1,7 @@
 server
 {
   server_name {{ domain }};
+  {% include 'roles/srv-proxy-core/templates/headers/buffers.conf.j2' %}
   
   {% if applications | get_app_conf(application_id, 'features.oauth2', False) %}
     {% include 'roles/web-app-oauth2-proxy/templates/endpoint.conf.j2'%}

roles/web-app-oauth2-proxy/templates/endpoint.conf.j2

@@ -1,11 +1,3 @@
-  {# Include OAuth2 Proxy #}
-  {# Raise the maximal header size. #}
-  {# Keycloak uses huge headers for authentification #}
-  proxy_buffer_size 16k;
-  proxy_buffers 8 16k;
-  proxy_busy_buffers_size 16k;
-  large_client_header_buffers 4 16k;
-
 # OAuth2-Proxy-Endpoint
 location /oauth2/ {
     proxy_pass http://127.0.0.1:{{ ports.localhost.oauth2_proxy[application_id] }};