move config to separate file

   also move references to top of file

1 files changed, 27 insertions, 0 deletions

diff --git a/example.cfg b/example.cfg
new file mode 100644
index 0000000..c7c7bd2
--- /dev/null
+++ b/example.cfg
@@ -0,0 +1,27 @@
+# SESSION_CONFIG file
+# Run with:
+#    SESSION_CONFIG=example.cfg FLASK_APP=session_app.py FLASK_DEBUG=1 flask run --host 0.0.0.0 --port 5000
+HOSTNAME = "d2-03a.ipa.internal.com"
+# These don't seem to work when running "flask run", so they might only be used by uwsgi.
+LISTEN_HOST = "0.0.0.0"
+LISTEN_PORT = "5000"
+
+DEBUG=True
+
+LDAP_URI = "ldaps://ipa.internal.com:636"
+LDAP_USER_BASE = "cn=users,cn=accounts,dc=ipa,dc=internal,dc=com"
+LDAP_GROUP_BASE = "cn=groups,cn=accounts,dc=ipa,dc=internal,dc=com"
+LDAP_USER_MATCH_ATTRIB = "uid"
+LDAP_USER_DISPLAY_ATTRIB = "uid"
+LDAP_USER_ATTRIB_MEMBEROF = "memberof"
+LDAP_GROUP_DISPLAY_ATTRIB = "cn"
+LDAP_BIND_DN = "uid=domainjoin,cn=users,cn=accounts,dc=ipa,dc=internal,dc=com"
+LDAP_BIND_PASSWORD = "examplepassword"
+LDAP_USER_KERBEROS_PRINCIPAL_ATTRIB = "krbPrincipalName"
+SESSION_DURATION_MINUTES = 2
+
+KRB5_SERVICE = "HTTP"
+# keytab from `/usr/sbin/ipa-getkeytab -p HTTP/d2-03a.ipa.example.com -k session.keytab`
+KRB5_KTNAME = "./session.keytab"
+# Define this variable if you want it to be used.
+KRB5_TRACE = "./kerberos.log"