{"id":21163499,"url":"https://github.com/punktde/ansible-proserver-oauth2-proxy","last_synced_at":"2025-09-19T18:09:12.027Z","repository":{"id":139102574,"uuid":"145306000","full_name":"punktDe/ansible-proserver-oauth2-proxy","owner":"punktDe","description":null,"archived":false,"fork":false,"pushed_at":"2025-01-16T10:16:02.000Z","size":9098,"stargazers_count":0,"open_issues_count":0,"forks_count":0,"subscribers_count":6,"default_branch":"master","last_synced_at":"2025-03-14T16:34:49.197Z","etag":null,"topics":["ansible","proserver"],"latest_commit_sha":null,"homepage":"","language":"Jinja","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":null,"status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/punktDe.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":null,"license":null,"code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null}},"created_at":"2018-08-19T13:33:13.000Z","updated_at":"2025-01-16T10:15:45.000Z","dependencies_parsed_at":null,"dependency_job_id":"91e0cf7f-af5e-41af-98d4-d0800d94d6a0","html_url":"https://github.com/punktDe/ansible-proserver-oauth2-proxy","commit_stats":null,"previous_names":[],"tags_count":8,"template":false,"template_full_name":null,"purl":"pkg:github/punktDe/ansible-proserver-oauth2-proxy","repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/punktDe%2Fansible-proserver-oauth2-proxy","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/punktDe%2Fansible-proserver-oauth2-proxy/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/punktDe%2Fansible-proserver-oauth2-proxy/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/punktDe%2Fansible-proserver-oauth2-proxy/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/punktDe","download_url":"https://codeload.github.com/punktDe/ansible-proserver-oauth2-proxy/tar.gz/refs/heads/master","sbom_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/punktDe%2Fansible-proserver-oauth2-proxy/sbom","scorecard":null,"host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":275981894,"owners_count":25564143,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","status":"online","status_checked_at":"2025-09-19T02:00:09.700Z","response_time":108,"last_error":null,"robots_txt_status":"success","robots_txt_updated_at":"2025-07-24T06:49:26.215Z","robots_txt_url":"https://github.com/robots.txt","online":true,"can_crawl_api":true,"host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["ansible","proserver"],"created_at":"2024-11-20T13:48:07.128Z","updated_at":"2025-09-19T18:09:11.741Z","avatar_url":"https://github.com/punktDe.png","language":"Jinja","funding_links":[],"categories":[],"sub_categories":[],"readme":"# ansible-proserver-oauth2-proxy\nAn Ansible role that sets up [oauth2-proxy](https://github.com/oauth2-proxy/oauth2-proxy) on a Proserver.\n\n## Dependencies\n[ansible-proserver-supervisord](https://github.com/punktDe/ansible-proserver-supervisord) is required to manage the service on FreeBSD\n\n## FAQ\nQ: Ansible crashes on macOS when trying to use the role\n\nA: Add the following environment variable to your shell: `OBJC_DISABLE_INITIALIZE_FORK_SAFETY=YES`\n\n## Configuration options\n### version\nThe oauth2-proxy version to be installed. You can see the available verions [here](https://github.com/oauth2-proxy/oauth2-proxy/tags)\n\n**Default:**\n```yaml\noauth2_proxy:\n  version: 7.5.1\n```\n\n### install\nWhether the oauth2-proxy binary should actually be installed. Change to `no` or `false` if you'd like to manage the binary yourself.\n\n**Default:**\n```yaml\noauth2_proxy:\n  install: true\n```\n\n### prefix\nManages the location of the oauth2-proxy binary and configuration files, as well as the name of the binary file.\n\n**Default:**\n```yaml\noauth2_proxy:\n  prefix:\n    opt: /var/opt/oauth2_proxy\n    binary: oauth2_proxy\n```\n\n\n### http_proxy\nThe address of the HTTP proxy to be used to access the Internet. Only supported on Linux installations\n\n**Default:**\n```yaml\noauth2_proxy:\n  http_proxy:\n```\n\n### defaults\nThe default options for the oauth2-proxy config file (oauth2_proxy.ini). Most of the time, you'll probably want to use the `config` dict to configure your services instead.\n\n**Default:**\n```yaml\noauth2_proxy:\n  defaults:\n    upstreams: [\"http://[::]:0/\"]\n    request_logging: no\n    email_domains: []\n    htpasswd_file:\n    cookie_expire: \"672h\"\n    cookie_refresh: \"1h\"\n    cookie_secure: yes\n    cookie_httponly: yes\n    set_xauthrequest: yes\n    proxy_prefix: /proserver/iap\n    templates:\n      oauth2_proxy.ini: \"{{ role_path + '/templates/oauth2_proxy/oauth2_proxy.ini.j2' }}\"\n      sign_in.html: \"{{ role_path + '/templates/oauth2_proxy/sign_in.html.j2' }}\"\n      error.html: \"{{ role_path + '/templates/oauth2_proxy/error.html.j2' }}\"\n      htpasswd: \"{{ role_path + '/templates/oauth2_proxy/htpasswd.j2' }}\"\n```\n\n### config\nA dictionary that consists of server configurations in the following format:\n\n```yaml\noauth2_proxy:\n  config:\n    oidc:\n      upstreams: [\"http://[::]:4019\"]\n      provider: oidc\n    gitlab:\n      upstreams: [\"http://[::]:4018\"]\n      provider: gitlab\n```\n\nPlease consult the [official documentation](https://oauth2-proxy.github.io/oauth2-proxy/docs/configuration/overview#command-line-options) for a full list of options (the \"Command Line Options\" section). The CLI options can be converted to config file options by removing the two leading dashes and replacing any dashes in the option name with underscores. For example, `--acr-values` -\u003e `acr_values`.\n\nFor each configuration, a separate oauth2-proxy instance will be launched, so make sure that the upstream addresses don't overlap.\n\nLikewise, each configuration is managed by its own separate supervisord/systemd service. For systemd, the service name is `oauth2-proxy@\u003cconfig-name\u003e.service`. whereas for supervisord, the name is `OAuth2Proxy\u003cCapitalizedConfigName\u003e`.\n\n**Default:**\n```yaml\noauth2_proxy:\n  config: {}\n```\n\n\n### branding\n\nAllows you to add custom HTML to the header and the footer of the oauth2-proxy sign-in page. For example:\n\n```yaml\noauth2_proxy:\n  branding:\n    sign_in_header: \u003e\n      \u003cimg src=\"https://example.com/your-company-logo.png\" width=\"200px\"/\u003e\n    footer: \u003e\n      \u003ca href=\"https://punkt.de\"\u003epunkt.de\u003c/a\u003e OAuth2 Proxy v{% raw %}{{.Version}}{% endraw %}\n```\n\n**Default:**\n```yaml\noauth2_proxy:\n  branding:\n    sign_in_header:\n    footer:\n```\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fpunktde%2Fansible-proserver-oauth2-proxy","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fpunktde%2Fansible-proserver-oauth2-proxy","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fpunktde%2Fansible-proserver-oauth2-proxy/lists"}