computer-playbook/roles/web-app-yourls/config/main.yml

oauth2_proxy:  
  application:        "application"
  port:               "80"
  allowed_groups:
    - "{{ [RBAC.GROUP.NAME, 'web-app-yourls-administrator'] | path_join }}"
  acl:
    blacklist:
      - "<< defaults_applications[web-app-yourls].server.locations.admin >>" # Protects the admin area
features:
  matomo:             true
  css:                true
  desktop:            true
  central_database:   true
  oauth2:             true
  logout:             true
server:
  domains:
    canonical:
      - "s.{{ PRIMARY_DOMAIN }}"
    aliases:
      - "short.{{ PRIMARY_DOMAIN }}"
  csp:
    flags:
      style-src:
        unsafe-inline:  true
      script-src-elem:
        unsafe-inline:  true
      script-src:
        unsafe-inline:  true
  locations:
    admin:  "/admin/"
  status_codes:
    default: 301
docker:
  services:
    database:
      enabled:    true
    yourls: 
      version:    "latest"
      name:       "yourls"
      image:      "yourls"