[generic]
# log level; can be error, warn, info, debug, trace
log_level = "debug"

[idp_config]
# URL of IdP's discovery endpoint. If not set, the URL is made up by appending
# ".well-known/openid-configuration" to the id_token_validation.iss field.
discovery_url = "https://kcdev.basebox.health:8443/realms/todo/.well-known/openid-configuration"
# URL of IdP's public keystore. If set, the discovery endpoint is not used at all.
jwks_url = "https://kcdev.basebox.health:8443/realms/todo/protocol/openid-connect/certs"

[id_token_validation]
# Incoming ID tokens are validated using, among other, the following fields.
# Contents of 'iss' field, usually the URL of the authetnication realm
iss = "https://kcdev.basebox.health:8443/realms/todo"
# Contents of 'aud' field, aka the OpenID connect client ID
aud = "todo-app"

[graphql]
# path and file name to GraphQL schema file
schema_file = "todo5_schema.graphql"
# Path and file name of the resolver map file
resolver_map_file = "bb_todo_resolvers.toml"
# Path and file name of the type map file
type_map_file = "bb_todo_typemap.json"

[database]
# Type of database; currently, only "postgres" is suppoerted
db_type = "postgres"
# The host where the DB server is runnung
host = "localhost"
# Port the DB server is listening at
port = 5432
# Database name
db_name = "bb_todo"
username = "bb_todo"
password = "basebox"

[server]
# Host name of (this) proxy server
host = "localhost"

# Port number; default is 80 for http, 443 for https
port = 8081

# number of HTTP server threads to spawn; default is one per CPU core
workers = 2

# Path and file name of TLS/SSL key file
# cert_key_file = "/path/to/key.pem"

# Path and file name of TLS certificate (chain) file
# cert_file = "/path/to/cert.pem"