-
Notifications
You must be signed in to change notification settings - Fork 67
/
.env.example.aad
97 lines (90 loc) · 3.06 KB
/
.env.example.aad
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
#########################
## GitHub App Settings ##
#########################
## Webhook Secret
WEBHOOK_SECRET=development
## GitHub App ID
APP_ID=12345
## Private Key Path
PRIVATE_KEY_PATH=.ssh/team-sync.pem
## Uncomment the following line and use your own GitHub Enterprise
## instance if this will not be used on https://github.com
#GHE_HOST=github.example.com
## Uncomment if you are using a self-signed certificate on GitHub Enterprise.
## Defaults to False.
#VERIFY_SSL=False
## User directory to sync GitHub teams from
## Azure AD = AAD
## Active Directory = LDAP
## OpenLDAP = LDAP
USER_DIRECTORY=AAD
## Attribute to compare users with
## username or email
USER_SYNC_ATTRIBUTE=username
#######################
## Azure AD Settings ##
#######################
## Azure Tenant ID
AZURE_TENANT_ID="<tenant_id>"
## Azure Service Principal Client ID
AZURE_CLIENT_ID="<client_id>"
## Azure Service Principal Client Secret
AZURE_CLIENT_SECRET="<client_secret>"
## Azure AD directory scopes. If you have multiple directories, separate them by spaces
## i.e. "Group.Read Directory.Read User.read"
## Default: .default (all permissions scoped to this service principal)
AZURE_APP_SCOPE=".default"
## API endpoint for Azure AD (Graph) group member queries
AZURE_API_ENDPOINT="https://graph.microsoft.com/v1.0"
## Custom attribute for usernames
## When using an extensionAttribute it will automatically
## pick it from the nested onPremisesExtensionAttributes.
AZURE_USERNAME_ATTRIBUTE=userPrincipalName
## If we don't have a custom username attribute, we'll
## need to make sure the username matches what's in
## GitHub. This will take the UPN and split the
## string on "@", making [email protected] just "user"
## in order to match GitHub.
## This should not be necessary if you add a new
## attribute for user mapping
## Default: false
#AZURE_USER_IS_UPN=true
## If we want to support nested group memberships
## this will use transitive members apis instead of
## direct member apis
## Default: false
#AZURE_USE_TRANSITIVE_GROUP_MEMBERS=true
#########################
## Additional settings ##
#########################
## Stop if number of changes exceeds this number
## Default: 25
#CHANGE_THRESHOLD=25
## Create an issue if the sync fails for any reason
## Default: false
#OPEN_ISSUE_ON_FAILURE=true
## Where to open the issue upon sync failure
#REPO_FOR_ISSUES=github-demo/demo-repo
## Who to assign the issues to
#ISSUE_ASSIGNEE=githubber
## Sync schedule, cron style schedule
## Default (hourly): 0 * * * *
SYNC_SCHEDULE=0 * * * *
## Show the changes, but do not make any changes
## Default: false
#TEST_MODE=false
## Automatically add users missing from the organization
ADD_MEMBER=false
## Automatically remove users from the organisation that are not part of a team
REMOVE_ORG_MEMBERS_WITHOUT_TEAM=false
####################
## Flask Settings ##
####################
## Default: app
FLASK_APP=app
## Default: production
FLASK_ENV=development
## Default: 5000
FLASK_RUN_PORT=5000
## Default: 127.0.0.1
FLASK_RUN_HOST=0.0.0.0