[broker] # log level; can be error, warn, info, debug, trace log_level = "debug" [graphql] # path and file name to GraphQL schema file schema_file = "todo5_schema.graphql" [proxy] # host name or IP of basebox DB proxy host = "localhost" port = 8081 # Whether to use http or https to connect to the proxy tls = false [server] # Host name of the broker (GraphQL server) host = "127.0.0.1" # Port number; default is 80 for http, 443 for https port = 8080 # number of HTTP server threads to spawn; default is one per CPU core workers = 2 # Path and file name of TLS/SSL key file # cert_key_file = "/path/to/key.pem" # Path and file name of TLS certificate (chain) file # cert_file = "/path/to/cert.pem" [oauth2] # OAuth2 client id client_id = "todo-app" # Oauth2 Realm realm = "todo" # OAuth2 client secret client_secret = "SLnMUb4JArLs5LtzoqcQu0rg9PpgLtsN" # Base URL to the identity provider (OAuth2/OpenID Connect server, e.g. Keycloak) idp_url = "https://kcdev.basebox.health:8443" # OpenID Connect scope; default is "openid profile email" scope = "openid profile email" # Optional base URL for OAuth2 URLs, e.g. "https://domain.tld/auth" # If omitted, it will be derived from the fields in the [server] section. # base_url = "http://localhost:8080" # Will be appended to `base_url` to form the OAuth2 callback URL redirect_path = "/oauth/callback" # Set to true to get a user's additional claims from OAuth2 user_info_additional_claims_required = true # On successful login (auth code flow complete), the browser can optionally # be redirected to the application URL. # If this is unset, the browser gets an empty 200 response on successful # authorization code flow completion. client_app_url = "http://127.0.0.1:8080/_test/ping/" [business_logic_layer] business_logic_layer_enabled = false python_module_path = "/path/to/python/module" python_module_name = "mymodule" [business_logic_layer.pre_definition] all = ["query"] query = ["getExercises", "getExercise"] mutation = ["createExercise", "updateExercise", "deleteExercise"] fragment = []