Updated JWT authentication settings for Credentials Service (#3659)

This brings the service inline with our other services. ECOM-6938

Updated JWT authentication settings for Credentials Service (#3659)
This brings the service inline with our other services. ECOM-6938
6ca051fa · Clinton Blackburn · GitHub · 38156281 · 6ca051fa
Commit 6ca051fa authored Feb 01, 2017 by Clinton Blackburn Committed by GitHub Feb 01, 2017
Hide whitespace changes
Inline Side-by-side

Showing with 12 additions and 0 deletions

playbooks/roles/credentials/defaults/main.yml
+12 -0

No files found.
--- a/playbooks/roles/credentials/defaults/main.yml
+++ b/playbooks/roles/credentials/defaults/main.yml
@@ -154,6 +154,16 @@ NGINX_CREDENTIALS_GUNICORN_HOSTS:

 CREDENTIALS_EXTRA_APPS: []

+CREDENTIALS_JWT_AUDIENCE: '{{ EDXAPP_JWT_AUDIENCE | default("SET-ME-PLEASE") }}'
+CREDENTIALS_JWT_ISSUER: '{{ CREDENTIALS_OAUTH_URL_ROOT }}'
+CREDENTIALS_JWT_SECRET_KEY: '{{ EDXAPP_JWT_SECRET_KEY | default("lms-secret") }}'
+
+CREDENTIALS_JWT_AUTH:
+  JWT_ISSUERS:
+    - AUDIENCE: '{{ CREDENTIALS_JWT_AUDIENCE }}'
+      ISSUER: '{{ CREDENTIALS_JWT_ISSUER }}'
+      SECRET_KEY: '{{ CREDENTIALS_JWT_SECRET_KEY }}'
+
 CREDENTIALS_SERVICE_CONFIG:
  SECRET_KEY: '{{ CREDENTIALS_SECRET_KEY }}'
  TIME_ZONE: '{{ CREDENTIALS_TIME_ZONE }}'
@@ -198,6 +208,8 @@ CREDENTIALS_SERVICE_CONFIG:
  USER_JWT_AUDIENCE: '{{ CREDENTIALS_USER_API_JWT_AUDIENCE }}'
  USER_JWT_SECRET_KEY: '{{ CREDENTIALS_USER_API_JWT_SECRET_KEY }}'

+  JWT_AUTH: '{{ CREDENTIALS_JWT_AUTH }}'
+
 #
 # vars are namespace with the module name.
 #