// CryptPad SSO configuration — generated from environment variables
// See https://github.com/cryptpad/sso for documentation

module.exports = {
    enabled: "{{ env "SSO_ENABLED" }}" === "true",
    enforced: "{{ env "SSO_ENFORCED" }}" === "true",
    cpPassword: true,
    forceCpPassword: false,
    list: [
        {
            name: "{{ env "SSO_PROVIDER_NAME" }}",
            type: "oidc",
            url: "{{ env "SSO_OIDC_URL" }}",
            client_id: "{{ env "SSO_CLIENT_ID" }}",
            client_secret: "{{ secret "sso_client_s" }}",
            id_token_alg: "{{ env "SSO_JWT_ALG" }}",
            use_pkce: true,
            use_nonce: true
        }
    ]
};