mirror of https://github.com/samply/bridgehead.git
40 lines
1.5 KiB
Plaintext
40 lines
1.5 KiB
Plaintext
BROKER_ID=broker.ccp-it.dktk.dkfz.de
|
|
BROKER_URL=https://${BROKER_ID}
|
|
PROXY_ID=${SITE_ID}.${BROKER_ID}
|
|
FOCUS_BEAM_SECRET_SHORT="$(cat /proc/sys/kernel/random/uuid | sed 's/[-]//g' | head -c 20)"
|
|
FOCUS_RETRY_COUNT=32
|
|
SUPPORT_EMAIL=support-ccp@dkfz-heidelberg.de
|
|
PRIVATEKEYFILENAME=/etc/bridgehead/pki/${SITE_ID}.priv.pem
|
|
|
|
BROKER_URL_FOR_PREREQ=$BROKER_URL
|
|
DEFAULT_LANGUAGE=DE
|
|
DEFAULT_LANGUAGE_LOWER_CASE=${DEFAULT_LANGUAGE,,}
|
|
ENABLE_EXPORTER=true
|
|
ENABLE_TEILER=true
|
|
#ENABLE_DATASHIELD=true
|
|
|
|
KEYCLOAK_USER_GROUP="DKTK_CCP_$(capitalize_first_letter ${SITE_ID})"
|
|
KEYCLOAK_ADMIN_GROUP="DKTK_CCP_$(capitalize_first_letter ${SITE_ID})_Verwalter"
|
|
KEYCLOAK_PRIVATE_CLIENT_ID=${SITE_ID}-private
|
|
KEYCLOAK_PUBLIC_CLIENT_ID=${SITE_ID}-public
|
|
# TODO: Change Keycloak Realm to productive. "test-realm-01" is only for testing
|
|
KEYCLOAK_REALM="${KEYCLOAK_REALM:-test-realm-01}"
|
|
KEYCLOAK_URL="https://login.verbis.dkfz.de"
|
|
KEYCLOAK_ISSUER_URL="${KEYCLOAK_URL}/realms/${KEYCLOAK_REALM}"
|
|
KEYCLOAK_GROUP_CLAIM="groups"
|
|
OAUTH2_CALLBACK=/oauth2/callback
|
|
OAUTH2_PROXY_SECRET="$(echo \"This is a salt string to generate one consistent encryption key for the oauth2_proxy. It is not required to be secret.\" | openssl rsautl -sign -inkey /etc/bridgehead/pki/${SITE_ID}.priv.pem | base64 | head -c 32)"
|
|
|
|
add_private_oidc_redirect_url "${OAUTH2_CALLBACK}"
|
|
POSTGRES_TAG=15.6-alpine
|
|
|
|
for module in $PROJECT/modules/*.sh
|
|
do
|
|
log DEBUG "sourcing $module"
|
|
source $module
|
|
done
|
|
|
|
idManagementSetup
|
|
mtbaSetup
|
|
adt2fhirRestSetup
|