This repository has been archived by the owner on Sep 12, 2021. It is now read-only.
/
silhouette.conf
103 lines (89 loc) · 4.09 KB
/
silhouette.conf
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
silhouette {
# Authenticator settings
authenticator.cookieName="authenticator"
authenticator.cookiePath="/"
authenticator.secureCookie=false // Disabled for testing on localhost without SSL, otherwise cookie couldn't be set
authenticator.httpOnlyCookie=true
authenticator.sameSite="Lax"
authenticator.useFingerprinting=true
authenticator.authenticatorIdleTimeout=30 minutes
authenticator.authenticatorExpiry=12 hours
authenticator.rememberMe.cookieMaxAge=30 days
authenticator.rememberMe.authenticatorIdleTimeout=5 days
authenticator.rememberMe.authenticatorExpiry=30 days
authenticator.signer.key = "[changeme]" // A unique encryption key
authenticator.crypter.key = "[changeme]" // A unique encryption key
# OAuth1 token secret provider settings
oauth1TokenSecretProvider.cookieName="OAuth1TokenSecret"
oauth1TokenSecretProvider.cookiePath="/"
oauth1TokenSecretProvider.secureCookie=false // Disabled for testing on localhost without SSL, otherwise cookie couldn't be set
oauth1TokenSecretProvider.httpOnlyCookie=true
oauth1TokenSecretProvider.sameSite="Lax"
oauth1TokenSecretProvider.expirationTime=5 minutes
oauth1TokenSecretProvider.signer.key = "[changeme]" // A unique encryption key
oauth1TokenSecretProvider.crypter.key = "[changeme]" // A unique encryption key
# Social state handler
socialStateHandler.signer.key = "[changeme]" // A unique encryption key
# CSRF state item handler settings
csrfStateItemHandler.cookieName="OAuth2State"
csrfStateItemHandler.cookiePath="/"
csrfStateItemHandler.secureCookie=false // Disabled for testing on localhost without SSL, otherwise cookie couldn't be set
csrfStateItemHandler.httpOnlyCookie=true
csrfStateItemHandler.sameSite="Lax"
csrfStateItemHandler.expirationTime=5 minutes
csrfStateItemHandler.signer.key = "[changeme]" // A unique encryption key
# Facebook provider
facebook.authorizationURL="https://graph.facebook.com/v2.3/oauth/authorize"
facebook.accessTokenURL="https://graph.facebook.com/v2.3/oauth/access_token"
facebook.redirectURL="http://localhost:9000/authenticate/facebook"
facebook.clientID=""
facebook.clientID=${?FACEBOOK_CLIENT_ID}
facebook.clientSecret=""
facebook.clientSecret=${?FACEBOOK_CLIENT_SECRET}
facebook.scope="email"
# Google provider
google.authorizationURL="https://accounts.google.com/o/oauth2/auth"
google.accessTokenURL="https://accounts.google.com/o/oauth2/token"
google.redirectURL="http://localhost:9000/authenticate/google"
google.clientID=""
google.clientID=${?GOOGLE_CLIENT_ID}
google.clientSecret=""
google.clientSecret=${?GOOGLE_CLIENT_SECRET}
google.scope="profile email"
# VK provider
vk.authorizationURL="http://oauth.vk.com/authorize"
vk.accessTokenURL="https://oauth.vk.com/access_token"
vk.redirectURL="http://localhost:9000/authenticate/vk"
vk.clientID=""
vk.clientID=${?VK_CLIENT_ID}
vk.clientSecret=""
vk.clientSecret=${?VK_CLIENT_SECRET}
vk.scope="email"
# Twitter provider
twitter.requestTokenURL="https://twitter.com/oauth/request_token"
twitter.accessTokenURL="https://twitter.com/oauth/access_token"
twitter.authorizationURL="https://twitter.com/oauth/authenticate"
twitter.callbackURL="http://localhost:9000/authenticate/twitter"
twitter.consumerKey=""
twitter.consumerKey=${?TWITTER_CONSUMER_KEY}
twitter.consumerSecret=""
twitter.consumerSecret=${?TWITTER_CONSUMER_SECRET}
# Xing provider
xing.requestTokenURL="https://api.xing.com/v1/request_token"
xing.accessTokenURL="https://api.xing.com/v1/access_token"
xing.authorizationURL="https://api.xing.com/v1/authorize"
xing.callbackURL="http://localhost:9000/authenticate/xing"
xing.consumerKey=""
xing.consumerKey=${?XING_CONSUMER_KEY}
xing.consumerSecret=""
xing.consumerSecret=${?XING_CONSUMER_SECRET}
# Yahoo provider
yahoo.providerURL="https://me.yahoo.com/"
yahoo.callbackURL="http://localhost:9000/authenticate/yahoo"
yahoo.axRequired={
"fullname": "http://axschema.org/namePerson",
"email": "http://axschema.org/contact/email",
"image": "http://axschema.org/media/image/default"
}
yahoo.realm="http://localhost:9000"
}