feat(server)!: oauth encryption algorithm setting (#6818)

* feat: add oauth signing algorithm setting * chore: open api * chore: change default to RS256 * feat: test and clean up --------- Co-authored-by: Jason Rasmussen <jrasm91@gmail.com>
2025-11-14 17:36:12 +00:00 · 2024-02-02 06:27:54 +01:00 · 2024-02-02 06:27:54 +01:00 · d3404f927c
commit d3404f927c
parent 8a643e5e48
15 changed files with 189 additions and 127 deletions
--- a/server/src/domain/system-config/system-config.core.ts
+++ b/server/src/domain/system-config/system-config.core.ts
@ -88,17 +88,18 @@ export const defaults = Object.freeze<SystemConfig>({
    enabled: true,
  },
  oauth: {
-    enabled: false,
-    issuerUrl: '',
+    autoLaunch: false,
+    autoRegister: true,
+    buttonText: 'Login with OAuth',
    clientId: '',
    clientSecret: '',
+    enabled: false,
+    issuerUrl: '',
    mobileOverrideEnabled: false,
    mobileRedirectUri: '',
    scope: 'openid email profile',
+    signingAlgorithm: 'RS256',
    storageLabelClaim: 'preferred_username',
-    buttonText: 'Login with OAuth',
-    autoRegister: true,
-    autoLaunch: false,
  },
  passwordLogin: {
    enabled: true,