dev_env: true

storage:
  db:
    mongodb:
      uri:
      db_name: 
      collections:
        users: users
  kv:
    type: etcd
    etcd:
      endpoints: etcd:2379
      prefix: mobilityaccounts/
services:
  grpc:
    enable: true
    port: 8080
  oidc_provider:
    enable: true
    csrf_key: 32-byte-long-auth-key-----------
    port:     80
    namespaces: 
      parcoursmob:
        namespace: parcoursmob
        secret_key: some-cool-secret-that-is-32bytes
        templates_dir: oidc-provider/templates/parcoursmob
        match_claims: 
          groups: groups
          first_name: first_name
          last_name: last_name
          email: email
          display_name: display_name
          "urn:cms:personal-informations:read": personal_information
          "urn:cms:civil-status:read": civil_status
          "urn:cms:favorites:read": favorites
          "urn:cms:driving-licence:read": driving_licence
          "urn:cms:ice-contacts:read": ice
          # "urn:cms:fr-caf-information:read": fr_caf_information
          # "urn:cms:fr-dgfip-information:read": fr_dgfip_information
          # "urn:cms:fr-mesri-information:read": fr_mesri_information
        clients: 
          - id: abcdef 
            oidc: true
            secret: $2y$10$0GwBc17u9HjZnVlFjhIv2u.Jq..5NyzdUENpGa8jUtok2zHj/STmm
            token_endpoint_auth_method: client_secret_post
            response_types: 
              - code
            grant_types:
              - authorization_code
            redirect_uris: 
              - https://openidconnect.net/callback
              - https://psteniusubi.github.io/oidc-tester/authorization-code-flow.html
              - http://localhost:9000/api/oauth2/callback
            scopes: 
              - openid 
              - profile 
              - groups
              - first_name
              - last_name
              - display_name
              - email
              - urn:cms:personal-informations:read