docs: make from source quickstart (#519)

- move building from so - remove dnsmasq instructions Signed-off-by: Bobby DeSimone <bobbydesimone@gmail.com>
2025-05-31 01:47:33 +02:00 · 2020-03-05 18:07:43 -08:00 · 2020-03-05 18:07:43 -08:00 · 27909f22ce
commit 27909f22ce
parent 3d211a8931
5 changed files with 99 additions and 152 deletions
--- a/docs/configuration/examples/config/config.minimal.yaml
+++ b/docs/configuration/examples/config/config.minimal.yaml
@ -1,16 +1,23 @@
 # See detailed configuration settings : https://www.pomerium.io/docs/reference/reference/
-authenticate_service_url: https://authenticate.corp.beyondperimeter.com
+
+# this is the domain the identity provider will callback after a user authenticates
+authenticate_service_url: https://authenticate.localhost.pomerium.io
+
+# certificate settings:  https://www.pomerium.io/docs/reference/certificates.html
+certificate_file: "./_wildcard.localhost.pomerium.io.pem"
+certificate_key_file: "./_wildcard.localhost.pomerium.io-key.pem"

 # identity provider settings : https://www.pomerium.io/docs/identity-providers.html
 idp_provider: google
 idp_client_id: REPLACE_ME
 idp_client_secret: REPLACE_ME

+# Generate 256 bit random keys  e.g. `head -c32 /dev/urandom | base64`
+cookie_secret: WwMtDXWaRDMBQCylle8OJ+w4kLIDIGd8W3cB4/zFFtg=
+
+# https://www.pomerium.io/configuration/#policy
 policy:
-  - from: https://httpbin.corp.beyondperimeter.com
-    to: http://httpbin
-    allowed_domains:
-      - pomerium.io
-  - from: https://external-httpbin.corp.beyondperimeter.com
+  - from: https://httpbin.localhost.pomerium.io
    to: https://httpbin.org
-    allow_public_unauthenticated_access: true
+    allowed_users:
+      - bdd@pomerium.io