injectResponseHeaders:
  - name: X-Auth-Request-User
    values:
      - claim: access_token
metricsServer:
  BindAddress: ":5000"
  SecureBindAddress: ""
  TLS: null
providers:
  - provider: keycloak-oidc
    backendLogoutURL: /doesn't-matter
    clientID: oauth2-proxy
    clientSecret: oauth2-proxy
    code_challenge_method: S256
    id: keycloak-oidc=oauth2-proxy
    loginURLParameters:
      - default:
          - force
        name: approval_prompt
    oidcConfig:
      audienceClaims:
        - aud
      emailClaim: email
      extraAudiences:
        - account
      groupsClaim: groups
      insecureSkipNonce: true
      issuerURL: http://localhost:8080/realms/test
      userIDClaim: email

server:
  BindAddress: ":4180"
  SecureBindAddress: ""
  TLS: null

awsIam:
  serviceName: elasticache
  clusterName: test
  userName: test