Configure Docker Compose environment variables
Before you can start the Token Server some base properties need to be configured. Set the following properties in the docker-compose file. Please make sure you edit the values to your own needs. Properties are described in the properties section.
# HTTP
TOKEN_SERVER_HTTP_ENABLED=false
TOKEN_SERVER_PROXY_PROXY_ENABLED=true
TOKEN_SERVER_PROXY_PROXY_PORT=443
TOKEN_SERVER_PROXY_PROXY_NAME=token-server.6634464.com
TOKEN_SERVER_PROXY_PROXY_SCHEME=http
TOKEN_SERVER_PROXY_PROXY_SECURE=false
TOKEN_SERVER_HTTPS_ENABLED=true
# Truststore
TOKEN_SERVER_TRUSTSTORE_ENABLED=true
TOKEN_SERVER_TRUSTSTORE_PASSWORD=onegini
# Keystore
TOKEN_SERVER_KEYSTORE_PASSWORD=onegini
TOKEN_SERVER_KEYSTORE_ALIAS=onegini
# DB
TOKEN_SERVER_COMMON_PROPERTY_ENCRYPTION_PASSWORD=onegini
TOKEN_SERVER_COMMON_DB_PLATFORM=com.innovation_district.common.jdbc.MySQL5BitBooleanInnoDBDialect
TOKEN_SERVER_COMMON_DB_MIGRATION_FOLDER=/db/scripts/mysql
TOKEN_SERVER_COMMON_DB_ENCRYPTION_POOLSIZE=10
TOKEN_SERVER_COMMON_DB_DATABASE_TYPE=MYSQL
TOKEN_SERVER_COMMON_DB_DRIVER_CLASS=org.mariadb.jdbc.Driver
TOKEN_SERVER_COMMON_DB_PASSWORD=onegini
TOKEN_SERVER_COMMON_DB_USER=onegini
TOKEN_SERVER_COMMON_DB_VALIDATION_QUERY=SELECT 1
TOKEN_SERVER_COMMON_DB_CONNECTIONS_INITIAL_SIZE=8
TOKEN_SERVER_COMMON_DB_CONNECTIONS_MAX_ACTIVE=100
TOKEN_SERVER_COMMON_DB_CONNECTIONS_MAX_IDLE=8
TOKEN_SERVER_COMMON_DB_CONNECTIONS_MAX_WAIT=500
TOKEN_SERVER_COMMON_DB_JDBC_URL=jdbc:mysql://mysql.6634464.com:3306/token_server_onegini
TOKEN_SERVER_COMMON_DB_ENCRYPTION_PASSWORD=password
# Client
TOKEN_SERVER_CLIENT_DYNAMIC_REGISTER_CHALLENGE_URI=https://token-server.6634464.com/oauth/client/challenge
TOKEN_SERVER_CLIENT_DYNAMIC_REGISTER_RESPONSE_URI=https://token-server.6634464.com/oauth/client/response
TOKEN_SERVER_CLIENT_DYNAMIC_REGISTER_SHARED_SECRET=secret
TOKEN_SERVER_CLIENT_APP_PLATFORM=ios
TOKEN_SERVER_CLIENT_APP_IDENTIFIER=TestClient
TOKEN_SERVER_CLIENT_APP_VERSION=0.0
TOKEN_SERVER_CLIENT_REDIRECT_URI=https://token-server.6634464.com/client/redirect
TOKEN_SERVER_CLIENT_TOKEN_URI=https://token-server.6634464.com/oauth/token
TOKEN_SERVER_CLIENT_TOKEN_VALIDATION_URI=https://token-server.6634464.com/oauth/token
TOKEN_SERVER_CLIENT_TOKEN_REVOCATION_URI=https://token-server.6634464.com/oauth/revoke
TOKEN_SERVER_CLIENT_CLIENT_ID=client
TOKEN_SERVER_CLIENT_CLIENT_SECRET=secret
TOKEN_SERVER_CLIENT_VALIDATION_CLIENT_ID=validation
TOKEN_SERVER_CLIENT_VALIDATION_CLIENT_SECRET=secret
TOKEN_SERVER_CLIENT_CLIENTCREDENTIALS_URI=https://token-server.6634464.com/oauth/token
TOKEN_SERVER_CLIENT_CLIENTCREDENTIALS_CLIENT_ID=clientcredentials
TOKEN_SERVER_CLIENT_CLIENTCREDENTIALS_CLIENT_SECRET=secret
TOKEN_SERVER_CLIENT_VALIDATEDCR_URI=https://token-server.6634464.com/oauth/client/validate
TOKEN_SERVER_CLIENT_VALIDATEDCR_CLIENT_ID=validatedcr
TOKEN_SERVER_CLIENT_VALIDATEDCR_CLIENT_SECRET=secret
TOKEN_SERVER_CLIENT_MOBILE_ENROLLMENT_INIT_URI=https://token-server.6634464.com/oauth/enrollment/init
TOKEN_SERVER_CLIENT_MOBILE_ENROLLMENT_APP_PLATFORM=ios
TOKEN_SERVER_CLIENT_MOBILE_ENROLLMENT_PUB_KEY_URI=https://token-server.6634464.com/oauth/enrollment/publickey
TOKEN_SERVER_CLIENT_MOBILE_ENROLLMENT_ACK_URI=https://token-server.6634464.com/oauth/enrollment/acknowledge
TOKEN_SERVER_CLIENT_AUTHORIZE_URI=https://token-server.6634464.com/oauth/authorize
TOKEN_SERVER_CLIENT_RESOURCE_SERVER_API_URI=https://token-server.6634464.com/client/resource/token
# Admin
TOKEN_SERVER_ADMIN_LDAP_SERVER_URLS=ldap://127.0.0.1:10389
TOKEN_SERVER_ADMIN_LDAP_USER_DNS=uid={0},ou=users
TOKEN_SERVER_ADMIN_LDAP_BASE_DN=dc=onegini,dc=com
TOKEN_SERVER_ADMIN_LDAP_BIND_DN=
TOKEN_SERVER_ADMIN_LDAP_BIND_PWD=
TOKEN_SERVER_ADMIN_LDAP_GROUPS_ADMIN_GROUP_NAME=admin
TOKEN_SERVER_ADMIN_LDAP_GROUPS_OPERATOR_GROUP_NAME=operator
TOKEN_SERVER_ADMIN_LDAP_GROUPS_HELPDESK_GROUP_NAME=helpdesk
TOKEN_SERVER_ADMIN_LDAP_GROUP_SEARCH_GROUP_NAME_ATTRIBUTE=cn
TOKEN_SERVER_ADMIN_LDAP_GROUP_SEARCH_SUBTREE=true
TOKEN_SERVER_ADMIN_LDAP_GROUP_SEARCH_BASE=ou=groups
TOKEN_SERVER_ADMIN_LDAP_GROUP_SEARCH_FILTER=uniqueMember={0}