-
Notifications
You must be signed in to change notification settings - Fork 1
/
Copy pathconfig.json
126 lines (126 loc) · 2.98 KB
/
config.json
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
{
"service": {
"name": "microservice-user",
"port": 8080,
"paths": [
"/users"
],
"virtual_host": "microservice-user.service.consul",
"weight": 10,
"slots": 100
},
"gatewayUrl": "http://kong:8000",
"gatewayAdminUrl": "http://kong:8001",
"version": "v1.1.0-beta",
"security": {
"keysDir": "/run/secrets",
"ignorePatterns": [
"/users/verify",
"/users/password/forgot"
],
"jwt": {
"name": "JWTSecurity",
"description": "JWT security middleware",
"tokenUrl": "http://kong:8000/jwt"
},
"saml": {
"certFile": "/run/secrets/service.cert",
"keyFile": "/run/secrets/service.key",
"identityProviderUrl": "http://kong:8000/saml/idp",
"userServiceUrl": "http://kong:8000/users",
"registrationServiceUrl": "http://kong:8000/users/register",
"rootURL": "http://localhost:8000/users"
},
"oauth2": {
"description": "OAuth2 security middleware",
"tokenUrl": "https://kong:8000/oauth2/token",
"authorizeUrl": "https://kong:8000/oauth2/authorize"
},
"acl": {
"policies": [
{
"id": "users-allow-admin-access",
"description": "Allows access to everything to an admin user",
"resources": [
"<.+>"
],
"actions": [
"api:read",
"api:write"
],
"effect": "allow",
"subjects": [
"<.+>"
],
"conditions": {
"roles": {
"type": "RolesCondition",
"options": {
"values": [
"admin",
"system"
]
}
}
}
},
{
"id": "users-allow-read-access",
"description": "Allows access to user's own profile",
"resources": [
"/users/me"
],
"actions": [
"api:read"
],
"effect": "allow",
"subjects": [
"<.+>"
],
"conditions": {
"roles": {
"type": "RolesCondition",
"options": {
"values": [
"user"
]
}
}
}
},
{
"id": "read-swagger",
"description": "Allows to service swagger.",
"resources": [
"/swagger<.+>"
],
"actions": [
"api:read"
],
"effect": "allow",
"subjects": [
"<.+>"
]
}
]
}
},
"database": {
"dbName": "mongodb",
"dbInfo": {
"credentials": "/run/secrets/aws-credentials",
"endpoint": "http://dynamo:8000",
"awsRegion": "us-east-1",
"host": "mongo:27017",
"database": "users",
"user": "restapi",
"pass": "restapi"
}
},
"rabbitmq": {
"username": "guest",
"password": "guest",
"host": "rabbitmq",
"port": "5672"
}
}