Configure Docker Compose environment variables

Before you can start the Token Server some base properties need to be configured. Set the following properties in the docker-compose file. Please make sure you edit the values to your own needs. Properties are described in the properties section.

    # HTTP
    TOKEN_SERVER_HTTP_ENABLED=false
    TOKEN_SERVER_PROXY_PROXY_ENABLED=true
    TOKEN_SERVER_PROXY_PROXY_PORT=443
    TOKEN_SERVER_PROXY_PROXY_NAME=token-server.6634464.com
    TOKEN_SERVER_PROXY_PROXY_SCHEME=http
    TOKEN_SERVER_PROXY_PROXY_SECURE=false
    TOKEN_SERVER_HTTPS_ENABLED=true

    # Truststore
    TOKEN_SERVER_TRUSTSTORE_ENABLED=true
    TOKEN_SERVER_TRUSTSTORE_PASSWORD=onegini

    # Keystore
    TOKEN_SERVER_KEYSTORE_PASSWORD=onegini
    TOKEN_SERVER_KEYSTORE_ALIAS=onegini

    # DB
    TOKEN_SERVER_COMMON_PROPERTY_ENCRYPTION_PASSWORD=onegini
    TOKEN_SERVER_COMMON_DB_PLATFORM=com.innovation_district.common.jdbc.MySQL5BitBooleanInnoDBDialect
    TOKEN_SERVER_COMMON_DB_MIGRATION_FOLDER=/db/scripts/mysql
    TOKEN_SERVER_COMMON_DB_ENCRYPTION_POOLSIZE=10
    TOKEN_SERVER_COMMON_DB_DATABASE_TYPE=MYSQL
    TOKEN_SERVER_COMMON_DB_DRIVER_CLASS=org.mariadb.jdbc.Driver
    TOKEN_SERVER_COMMON_DB_PASSWORD=onegini
    TOKEN_SERVER_COMMON_DB_USER=onegini
    TOKEN_SERVER_COMMON_DB_VALIDATION_QUERY=SELECT 1
    TOKEN_SERVER_COMMON_DB_CONNECTIONS_INITIAL_SIZE=8
    TOKEN_SERVER_COMMON_DB_CONNECTIONS_MAX_ACTIVE=100
    TOKEN_SERVER_COMMON_DB_CONNECTIONS_MAX_IDLE=8
    TOKEN_SERVER_COMMON_DB_CONNECTIONS_MAX_WAIT=500
    TOKEN_SERVER_COMMON_DB_JDBC_URL=jdbc:mysql://mysql.6634464.com:3306/token_server_onegini
    TOKEN_SERVER_COMMON_DB_ENCRYPTION_PASSWORD=password

    # Client
    TOKEN_SERVER_CLIENT_DYNAMIC_REGISTER_CHALLENGE_URI=https://token-server.6634464.com/oauth/client/challenge
    TOKEN_SERVER_CLIENT_DYNAMIC_REGISTER_RESPONSE_URI=https://token-server.6634464.com/oauth/client/response
    TOKEN_SERVER_CLIENT_DYNAMIC_REGISTER_SHARED_SECRET=secret
    TOKEN_SERVER_CLIENT_APP_PLATFORM=ios
    TOKEN_SERVER_CLIENT_APP_IDENTIFIER=TestClient
    TOKEN_SERVER_CLIENT_APP_VERSION=0.0
    TOKEN_SERVER_CLIENT_REDIRECT_URI=https://token-server.6634464.com/client/redirect
    TOKEN_SERVER_CLIENT_TOKEN_URI=https://token-server.6634464.com/oauth/token
    TOKEN_SERVER_CLIENT_TOKEN_VALIDATION_URI=https://token-server.6634464.com/oauth/token
    TOKEN_SERVER_CLIENT_TOKEN_REVOCATION_URI=https://token-server.6634464.com/oauth/revoke
    TOKEN_SERVER_CLIENT_CLIENT_ID=client
    TOKEN_SERVER_CLIENT_CLIENT_SECRET=secret
    TOKEN_SERVER_CLIENT_VALIDATION_CLIENT_ID=validation
    TOKEN_SERVER_CLIENT_VALIDATION_CLIENT_SECRET=secret
    TOKEN_SERVER_CLIENT_CLIENTCREDENTIALS_URI=https://token-server.6634464.com/oauth/token
    TOKEN_SERVER_CLIENT_CLIENTCREDENTIALS_CLIENT_ID=clientcredentials
    TOKEN_SERVER_CLIENT_CLIENTCREDENTIALS_CLIENT_SECRET=secret
    TOKEN_SERVER_CLIENT_VALIDATEDCR_URI=https://token-server.6634464.com/oauth/client/validate
    TOKEN_SERVER_CLIENT_VALIDATEDCR_CLIENT_ID=validatedcr
    TOKEN_SERVER_CLIENT_VALIDATEDCR_CLIENT_SECRET=secret
    TOKEN_SERVER_CLIENT_MOBILE_ENROLLMENT_INIT_URI=https://token-server.6634464.com/oauth/enrollment/init
    TOKEN_SERVER_CLIENT_MOBILE_ENROLLMENT_APP_PLATFORM=ios
    TOKEN_SERVER_CLIENT_MOBILE_ENROLLMENT_PUB_KEY_URI=https://token-server.6634464.com/oauth/enrollment/publickey
    TOKEN_SERVER_CLIENT_MOBILE_ENROLLMENT_ACK_URI=https://token-server.6634464.com/oauth/enrollment/acknowledge
    TOKEN_SERVER_CLIENT_AUTHORIZE_URI=https://token-server.6634464.com/oauth/authorize
    TOKEN_SERVER_CLIENT_RESOURCE_SERVER_API_URI=https://token-server.6634464.com/client/resource/token

    # Admin
    TOKEN_SERVER_ADMIN_LDAP_SERVER_URLS=ldap://127.0.0.1:10389
    TOKEN_SERVER_ADMIN_LDAP_USER_DNS=uid={0},ou=users
    TOKEN_SERVER_ADMIN_LDAP_BASE_DN=dc=onegini,dc=com
    TOKEN_SERVER_ADMIN_LDAP_BIND_DN=
    TOKEN_SERVER_ADMIN_LDAP_BIND_PWD=
    TOKEN_SERVER_ADMIN_LDAP_GROUPS_ADMIN_GROUP_NAME=admin
    TOKEN_SERVER_ADMIN_LDAP_GROUPS_OPERATOR_GROUP_NAME=operator
    TOKEN_SERVER_ADMIN_LDAP_GROUPS_HELPDESK_GROUP_NAME=helpdesk
    TOKEN_SERVER_ADMIN_LDAP_GROUP_SEARCH_GROUP_NAME_ATTRIBUTE=cn
    TOKEN_SERVER_ADMIN_LDAP_GROUP_SEARCH_SUBTREE=true
    TOKEN_SERVER_ADMIN_LDAP_GROUP_SEARCH_BASE=ou=groups
    TOKEN_SERVER_ADMIN_LDAP_GROUP_SEARCH_FILTER=uniqueMember={0}