wip: adds config options for oidc

2025-07-11 12:30:56 -05:00
parent 04993ebb27
commit b74b563c56
7 changed files with 96 additions and 12 deletions
--- a/config/packages/security.yaml
+++ b/config/packages/security.yaml
@@ -24,9 +24,14 @@ security:
            logout:
                path: /logout
            provider: app_oidc
+            form_login:
+                login_path: app_login
+                check_path: app_login
+                enable_csrf: true
            oidc:
                login_path: '/login/oidc'
                check_path: '/login/oidc/auth'
+            entry_point: form_login

            # activate different ways to authenticate
            # https://symfony.com/doc/current/security.html#the-firewall
--- a/config/services.yaml
+++ b/config/services.yaml
@@ -6,6 +6,7 @@
 parameters:
    # App
    app.url: '%env(APP_URL)%'
+    app.version: '%env(default:app.default.version:APP_VERSION)%'

    # Debrid Services
    app.debrid.real_debrid.key: '%env(REAL_DEBRID_KEY)%'
@@ -34,7 +35,14 @@ parameters:
    app.default.version: '0.dev'
    app.default.timezone: 'America/Chicago'

-    app.version: '%env(default:app.default.version:APP_VERSION)%'
+    # Auth
+    auth.default.method: 'form_login'
+    auth.method: '%env(default:auth.default.method:AUTH_METHOD)%'
+
+    auth.oidc.well_known_url: '%env(OIDC_WELL_KNOWN_URL)%'
+    auth.oidc.client_id: '%env(OIDC_CLIENT_ID)%'
+    auth.oidc.client_secret: '%env(OIDC_CLIENT_SECRET)%'
+    auth.oidc.bypass_form_login: '%env(bool:OIDC_BYPASS_FORM_LOGIN)%'

 services:
    # default configuration for services in *this* file