---
identity_providers:
  oidc:
    clients:
      # https://www.authelia.com/integration/openid-connect/clients/vikunja/
      - client_id: 'vikunja'
        client_name: 'Vikunja'
        client_secret: 'hash'
        public: false
        authorization_policy: 'one_factor'
        require_pkce: false
        pkce_challenge_method: ''
        redirect_uris:
          - 'https://vikunja.example.com/auth/openid/authelia'
        scopes:
          - 'openid'
          - 'profile'
          - 'email'
        response_types:
          - 'code'
        grant_types:
          - 'authorization_code'
        access_token_signed_response_alg: 'none'
        userinfo_signed_response_alg: 'none'
        token_endpoint_auth_method: 'client_secret_basic'