From 3ea5ce0deb29d6329c845bde46a1c153c5f914ac Mon Sep 17 00:00:00 2001
From: Johan Wassberg <jocar@sunet.se>
Date: Thu, 29 Feb 2024 11:01:01 +0100
Subject: [PATCH] IDM configuraiton

---
 .../modules/eid/templates/idm/idm.yml.erb     | 29 +++++++++++++++++++
 1 file changed, 29 insertions(+)

diff --git a/global/overlay/etc/puppet/modules/eid/templates/idm/idm.yml.erb b/global/overlay/etc/puppet/modules/eid/templates/idm/idm.yml.erb
index 101f2323..8335d575 100644
--- a/global/overlay/etc/puppet/modules/eid/templates/idm/idm.yml.erb
+++ b/global/overlay/etc/puppet/modules/eid/templates/idm/idm.yml.erb
@@ -63,3 +63,32 @@ navet:
       authorization-server:
         client-id: d34f109e3a11d02d744394423a020023e9bab0cd3ff78d63
         client-secret: ebc8b00ca4b08e790b208dc0abd460273fa6c459bc2f0023e9bab0cd3ff78d63
+
+idm:
+  # XXX fix URL replacement
+  # XXX fix OAUTH
+  mrecord:
+    api:
+      connector-id: https://test.idm.eidas.swedenconnect.se/connector
+      check-scope: dismay-smitten-unfasten-dastardly/idrecord_check
+      get-scope: dismay-smitten-unfasten-dastardly/idrecord_get
+    db:
+      key-store-type: jceks
+      key-store: classpath:dbkey.jceks
+      key-store-password: secret
+      key-alias: dbkey
+      key-password: secret
+  auth:
+    destination-url: https://sandbox.swedenconnect.se/auth/be/auth # Id-Tjänsten
+    auth-return-url: https://test.idm.eidas.swedenconnect.se:443/idm/auth/sp/return
+    discover-return-url: https://test.idm.eidas.swedenconnect.se:443/idm/auth/sign/sp/return
+    client-id: digg-idm-dev
+    trusted-certificates:
+    - classpath:idp.cert
+    id-strategy: STATIC
+  email:
+    enabled: true
+    no-reply-email: noreply@swedenconnect.se
+  storage:
+    pending-relative-sign-time-to-live-in-hours: 336
+  oauth2-id: https://test.idm.swedenconnect.se/idm