Chris Coutinho
656214b162
Configure Astroglobe as a confidential OAuth client with client_secret to support token refresh for long-lived sessions. Changes: - Update install-astroglobe-app hook to: - Create confidential client instead of public - Add offline_access scope for refresh tokens - Extract and store client_secret in system config - Display secret (truncated) for verification - Update trusted-domains hook (formatting) Benefits: - Enables automatic token refresh without re-authentication - Supports long-lived backend operations - Better security for server-side OAuth flows 🤖 Generated with [Claude Code](https://claude.com/claude-code) Co-Authored-By: Claude Sonnet 4.5 <noreply@anthropic.com>
12 lines
536 B
Bash
Executable File
12 lines
536 B
Bash
Executable File
#!/bin/bash
|
|
|
|
set -euox pipefail
|
|
|
|
php /var/www/html/occ config:system:set trusted_domains 2 --value=host.docker.internal
|
|
|
|
# Set overwrite settings for URL generation (needed for OIDC discovery to return correct URLs)
|
|
# These ensure that URLs generated by Nextcloud include the correct host:port
|
|
php /var/www/html/occ config:system:set overwritehost --value="localhost:8080"
|
|
php /var/www/html/occ config:system:set overwriteprotocol --value="http"
|
|
php /var/www/html/occ config:system:set overwrite.cli.url --value="http://localhost:8080"
|