version: v1.3.0 serve: public: base_url: http://localhost:4433/ cors: enabled: true allowed_origins: - http://localhost - http://localhost:3000 - http://localhost:8000 - http://127.0.0.1 allowed_methods: [GET, POST, PUT, PATCH, DELETE, OPTIONS] allowed_headers: [Authorization, Content-Type, X-Session-Token, Cookie] exposed_headers: [Content-Type, Set-Cookie] allow_credentials: true admin: base_url: http://kratos:4434/ selfservice: default_browser_return_url: http://localhost:8000/ allowed_return_urls: - http://localhost:8000 - honeydue://callback methods: password: enabled: true config: min_password_length: 8 identifier_similarity_check_enabled: false code: enabled: true oidc: enabled: false flows: error: ui_url: http://localhost:8000/auth/error login: ui_url: http://localhost:8000/auth/login lifespan: 10m registration: ui_url: http://localhost:8000/auth/registration lifespan: 10m after: password: hooks: - hook: session verification: enabled: true ui_url: http://localhost:8000/auth/verification use: code after: default_browser_return_url: http://localhost:8000/ recovery: enabled: true ui_url: http://localhost:8000/auth/recovery use: code settings: ui_url: http://localhost:8000/auth/settings privileged_session_max_age: 15m logout: after: default_browser_return_url: http://localhost:8000/ log: level: debug format: text leak_sensitive_values: true secrets: cookie: - local-dev-cookie-secret-please-change-this-32chars cipher: - 0123456789abcdef0123456789abcdef ciphers: algorithm: xchacha20-poly1305 hashers: algorithm: bcrypt bcrypt: cost: 8 identity: default_schema_id: honeydue schemas: - id: honeydue url: file:///etc/config/kratos/identity.schema.json courier: smtp: connection_uri: smtp://mailpit:1025/?disable_starttls=true from_address: noreply@localhost from_name: honeyDue Local session: lifespan: 720h cookie: same_site: Lax