Configuration reference
Actual configuration file in examples
logging
Configures application logging settings.
logging:
level: -4Supported log levels (from slog package):
| Level | Value |
|---|---|
| Debug | -4 |
| Info | 0 |
| Warn | 4 |
| Error | 8 |
server
Main server configuration block.
address
Defines the network address and port the server listens on.
address: ":8080"read_header_timeout
Specifies maximum time to read request headers for security.
read_header_timeout: 3sauth
More info about auth
Authentication configuration using JWT and static tokens.
jwt
JWT authentication using RSA256 asymmetric cryptography.
private_key
RSA private key for token signing (PEM format).
private_key: |
-----BEGIN PRIVATE KEY-----
...
-----END PRIVATE KEY-----public_key
RSA public key for token verification (PEM format).
public_key: |
-----BEGIN PUBLIC KEY-----
...
-----END PUBLIC KEY-----ttl
Token time-to-live duration.
ttl: 24htokens
Static token authentication with role-based access.
tokens:
TOKEN_UUID:
username: token_user
roles: ["admin"]authorizer
Authorization system configuration.
kind
Authorization implementation type:
noop: Allow all operationsrego: Open Policy Agent Rego-based authorization example policy
kind: regorego
Open Policy Agent configuration (required when kind=rego).
query
Rego policy decision query.
query: data.authz.allowpolicy_path
Path to Rego policy file.
policy_path: examples/authz.regostorage
PostgreSQL database connection configuration.
dsn: postgres://user:password@host:port/database?sslmode=disablevalues_storage
Etcd key-value storage configuration.
endpoints
Etcd cluster connection endpoints.
endpoints:
- 127.0.0.1:2379dial_timeout
Connection establishment timeout.
dial_timeout: 3spath
Root path for all keys in etcd.
path: rtc