wg-portal/config.yml.sample

advanced:
  log_level: trace

core:
  admin_user: test@test.de
  admin_password: secret
  create_default_peer: true
  create_default_peer_on_creation: false

web:
  external_url: http://localhost:8888
  request_logging: true

auth:
  callback_url_prefix: http://localhost:8888/api/v0
  ldap:
    - id: ldap1
      provider_name: company ldap
      display_name: Login with</br>LDAP
      url: ldap://ldap.yourcompany.local:389
      bind_user: ldap_wireguard@yourcompany.local
      bind_pass: super_Secret_PASSWORD
      base_dn: DC=YOURCOMPANY,DC=LOCAL
      login_filter: (&(objectClass=organizationalPerson)(mail={{login_identifier}})(!userAccountControl:1.2.840.113556.1.4.803:=2))
      admin_group: CN=WireGuardAdmins,OU=it,DC=YOURCOMPANY,DC=LOCAL
      synchronize: false
      sync_filter: (&(objectClass=organizationalPerson)(!userAccountControl:1.2.840.113556.1.4.803:=2)(mail=*))
      registration_enabled: true
  oidc:
    - id: oidc1
      provider_name: google
      display_name: Login with</br>Google
      base_url: https://accounts.google.com
      client_id: the-client-id-1234.apps.googleusercontent.com
      client_secret: A_CLIENT_SECRET
      extra_scopes:
        - https://www.googleapis.com/auth/userinfo.email
        - https://www.googleapis.com/auth/userinfo.profile
      registration_enabled: true
    - id: oidc2
      provider_name: google2
      display_name: Login with</br>Google2
      base_url: https://accounts.google.com
      client_id: another-client-id-1234.apps.googleusercontent.com
      client_secret: A_CLIENT_SECRET
      extra_scopes:
        - https://www.googleapis.com/auth/userinfo.email
        - https://www.googleapis.com/auth/userinfo.profile
      registration_enabled: true
V2 alpha - initial version (#172) Initial alpha codebase for version 2 of WireGuard Portal. This version is considered unstable and incomplete (for example, no public REST API)! Use with care! Fixes/Implements the following issues: - OAuth support #154, #1 - New Web UI with internationalisation support #98, #107, #89, #62 - Postgres Support #49 - Improved Email handling #47, #119 - DNS Search Domain support #46 - Bugfixes #94, #48 --------- Co-authored-by: Fabian Wechselberger <wechselbergerf@hotmail.com> 2023-08-04 11:34:18 +00:00			`advanced:`
			`log_level: trace`

			`core:`
			`admin_user: test@test.de`
			`admin_password: secret`
fix default peer creation on login (#189) 2024-04-02 20:29:10 +00:00			`create_default_peer: true`
			`create_default_peer_on_creation: false`
V2 alpha - initial version (#172) Initial alpha codebase for version 2 of WireGuard Portal. This version is considered unstable and incomplete (for example, no public REST API)! Use with care! Fixes/Implements the following issues: - OAuth support #154, #1 - New Web UI with internationalisation support #98, #107, #89, #62 - Postgres Support #49 - Improved Email handling #47, #119 - DNS Search Domain support #46 - Bugfixes #94, #48 --------- Co-authored-by: Fabian Wechselberger <wechselbergerf@hotmail.com> 2023-08-04 11:34:18 +00:00
			`web:`
			`external_url: http://localhost:8888`
			`request_logging: true`

			`auth:`
			`callback_url_prefix: http://localhost:8888/api/v0`
			`ldap:`
			`- id: ldap1`
			`provider_name: company ldap`
			`display_name: Login with</br>LDAP`
			`url: ldap://ldap.yourcompany.local:389`
			`bind_user: ldap_wireguard@yourcompany.local`
			`bind_pass: super_Secret_PASSWORD`
			`base_dn: DC=YOURCOMPANY,DC=LOCAL`
			`login_filter: (&(objectClass=organizationalPerson)(mail={{login_identifier}})(!userAccountControl:1.2.840.113556.1.4.803:=2))`
			`admin_group: CN=WireGuardAdmins,OU=it,DC=YOURCOMPANY,DC=LOCAL`
			`synchronize: false`
			`sync_filter: (&(objectClass=organizationalPerson)(!userAccountControl:1.2.840.113556.1.4.803:=2)(mail=*))`
			`registration_enabled: true`
			`oidc:`
			`- id: oidc1`
			`provider_name: google`
			`display_name: Login with</br>Google`
			`base_url: https://accounts.google.com`
			`client_id: the-client-id-1234.apps.googleusercontent.com`
			`client_secret: A_CLIENT_SECRET`
			`extra_scopes:`
			`- https://www.googleapis.com/auth/userinfo.email`
			`- https://www.googleapis.com/auth/userinfo.profile`
			`registration_enabled: true`
			`- id: oidc2`
			`provider_name: google2`
			`display_name: Login with</br>Google2`
			`base_url: https://accounts.google.com`
			`client_id: another-client-id-1234.apps.googleusercontent.com`
			`client_secret: A_CLIENT_SECRET`
			`extra_scopes:`
			`- https://www.googleapis.com/auth/userinfo.email`
			`- https://www.googleapis.com/auth/userinfo.profile`
			`registration_enabled: true`