wind-explorer/friendolls-server
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

sign out

Browse Source
This commit is contained in:
Adam C
2025-12-31 21:24:26 +08:00
parent 3134737c11
commit 2f51a0498f
9 changed files with 207 additions and 40 deletions
Download Patch File Download Diff File Expand all files Collapse all files

9
.env.example
View File

@@ -11,12 +11,17 @@ REDIS_HOST=localhost
REDIS_PORT=6379
# JWT Configuration
# The expected issuer of the JWT token (usually {KEYCLOAK_AUTH_SERVER_URL}/realms/{KEYCLOAK_REALM})
# Keycloak realm URL (no trailing slash). Example: https://keycloak.example.com/realms/friendolls
JWT_ISSUER=https://your-keycloak-instance.com/auth/realms/your-realm-name
# The expected audience in the JWT token (usually the client ID)
# The expected audience in the JWT token (usually the client ID for this API)
JWT_AUDIENCE=friendolls-api
# Keycloak client used for access tokens
KEYCLOAK_CLIENT_ID=friendolls-api
# Optional: client secret for revoking refresh tokens (omit for public clients)
KEYCLOAK_CLIENT_SECRET=
# JWKS URI for fetching public keys to verify JWT signatures
# Format: {KEYCLOAK_AUTH_SERVER_URL}/realms/{KEYCLOAK_REALM}/protocol/openid-connect/certs
JWKS_URI=https://your-keycloak-instance.com/auth/realms/your-realm-name/protocol/openid-connect/certs