-
-
Notifications
You must be signed in to change notification settings - Fork 0
/
http.conf
18 lines (15 loc) · 973 Bytes
/
http.conf
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
# This nginx snippet should be included into the http context.
# Associate the new access/id/refresh token with the request_id (which is then
# stored in the oidc_session_id cookie).
keyval $request_id $oidc_access_token_new zone=oidc_access_tokens;
keyval $request_id $oidc_id_token_new zone=oidc_id_tokens;
keyval $request_id $oidc_refresh_token_new zone=oidc_refresh_tokens;
# Get the access/id/refresh token associated with the oidc_session_id cookie.
keyval $cookie_oidc_session_id $oidc_access_token zone=oidc_access_tokens;
keyval $cookie_oidc_session_id $oidc_id_token zone=oidc_id_tokens;
keyval $cookie_oidc_session_id $oidc_refresh_token zone=oidc_refresh_tokens;
# Associate the new auth state with the request_id (which is then stored
# in the oidc_state_id cookie).
keyval $request_id $oidc_auth_state_new zone=oidc_auth_states;
# Get the nonce associated with the oidc_state_id cookie.
keyval $cookie_oidc_state_id $oidc_auth_state zone=oidc_auth_states;