32 lines
1.3 KiB
YAML
32 lines
1.3 KiB
YAML
# Spring Boot application configuration
|
|
server:
|
|
port: ${AUTH_SERVICE_PORT:8099} # Port the auth-service will run on
|
|
|
|
spring:
|
|
application:
|
|
name: auth-service
|
|
|
|
# Keycloak Configuration (adjust values as needed)
|
|
keycloak:
|
|
server-url: ${KEYCLOAK_AUTH_SERVER_URL:http://localhost:9100} # Base URL of your Keycloak instance (NO trailing slash)
|
|
realm: ${KEYCLOAK_AUTH_REALM:myrealm} # The realm name you are using
|
|
client-id: ${KEYCLOAK_AUTH_SERVICE_Client:test-client} # Client ID created in Keycloak for this service
|
|
client-secret: ${KEYCLOAK_AUTH_SERVICE_SECRET:7Xyh7M6Tc1FvwznY265KcLzcmXoWmjs6} # Client Secret from Keycloak (use secrets management!)
|
|
# Grant type specific settings (ROPC for /login)
|
|
grant-type: password
|
|
|
|
logging:
|
|
level:
|
|
# Set log levels as needed, e.g., DEBUG for Keycloak interactions
|
|
com.clevermicro.authservice.service.impl: DEBUG
|
|
org.springframework.web.client.RestTemplate: DEBUG
|
|
reactor.netty.http.client: DEBUG
|
|
|
|
|
|
# --- Security Note ---
|
|
# Storing secrets like client-secret directly in application.yml is NOT recommended for production.
|
|
# Use environment variables, Docker secrets, Vault, or Spring Cloud Config Server.
|
|
# Example using environment variables:
|
|
# keycloak:
|
|
# client-secret: ${KEYCLOAK_AUTH_SERVICE_SECRET}
|