# {{ ansible_managed }}
# https://docs.alerta.io/configuration.html#authentication-settings

DEBUG = True
SECRET_KEY = "{{ secret__alerta_secret_key }}"
BASE_URL = "https://alerta.hamburg.ccc.de"
USE_PROXYFIX = True

AUTH_REQUIRED = True
USER_DEFAULT_SCOPES = ['read', 'write']
OAUTH2_CLIENT_ID = "alerta"
OAUTH2_CLIENT_SECRET = "{{ secret__alerta_oauth_client_secret }}"

# AUTH_PROVIDER = "keycloak"
# KEYCLOAK_URL = "https://id.hamburg.ccc.de"
# KEYCLOAK_REALM = "ccchh"
# ALLOWED_KEYCLOAK_ROLES = "*"

AUTH_PROVIDER = "openid"
OIDC_ISSUER_URL = "https://id.hamburg.ccc.de/realms/ccchh"
OIDC_VERIFY_TOKEN = True
ALLOWED_OIDC_ROLES = "*"

# AUTH_REQUIRED = True
# ADMIN_USERS = ['admin@alerta.io', 'devops@example.com']
# DEFAULT_ADMIN_ROLE = 'ops'
# ADMIN_ROLES = ['ops', 'devops', 'coolkids']
# USER_DEFAULT_SCOPES = ['read', 'write:alerts']
# CUSTOMER_VIEWS = True