nginx-sso configuration (documentation) as a Nix attribute set.
Options containing secret data should be set to an attribute set with the singleton attribute _secret - a string value set to the path to the file containing the secret value which should be used in the configuration. This file must be readable by nginx-sso.
Declarations
Type
YAML valueDefault
{ }Example
{
listen = { addr = "127.0.0.1"; port = 8080; };
providers.token.tokens = {
myuser = {
_secret = "/path/to/secret/token.txt"; # File content should be the secret token
};
};
acl = {
rule_sets = [
{
rules = [ { field = "x-application"; equals = "MyApp"; } ];
allow = [ "myuser" ];
}
];
};
}