oauth2_proxy:  
  application:        "application"
  port:               "80"
  allowed_groups:
    - "/roles/web-app-yourls-administrator"
  acl:
    blacklist:
      - "<< defaults_applications[web-app-yourls].server.locations.admin >>" # Protects the admin area
features:
  matomo:             true
  css:                true
  port-ui-desktop:    true
  central_database:   true
  oauth2:             true
  logout:             true
server:
  domains:
    canonical:
      - "s.{{ primary_domain }}"
    aliases:
      - "short.{{ primary_domain }}"
  csp:
    flags:
      style-src:
        unsafe-inline:  true
      script-src-elem:
        unsafe-inline:  true
      script-src:
        unsafe-inline:  true
  locations:
    admin:  "/admin/"
  status_code:
    landingpage: 301
docker:
  services:
    database:
      enabled: true
    yourls: 
      version:    "latest"
      name:       "yourls"
      image:      "yourls"