From 2818a00548eb72c322fde944ca11ed2c4ab833ef Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Rafael=20Eppl=C3=A9e?= <hello@rafa.ee>
Date: Thu, 17 Jul 2025 14:48:17 +0200
Subject: [PATCH 1/2] docs: Add .env.example file

---
 .env.example | 1 +
 1 file changed, 1 insertion(+)
 create mode 100644 .env.example

diff --git a/.env.example b/.env.example
new file mode 100644
index 0000000..ccbd6ed
--- /dev/null
+++ b/.env.example
@@ -0,0 +1 @@
+OIDC_CLIENT_SECRET=

From 1782210950787e1991461b857a67f4223a82054a Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Rafael=20Eppl=C3=A9e?= <hello@rafa.ee>
Date: Thu, 17 Jul 2025 14:48:17 +0200
Subject: [PATCH 2/2] docs: Add docs for testing SSO

---
 README.md | 16 ++++++++++++++++
 1 file changed, 16 insertions(+)

diff --git a/README.md b/README.md
index 24419c7..38013f4 100644
--- a/README.md
+++ b/README.md
@@ -1,2 +1,18 @@
 # mitgliederverwaltung
 
+## Testing SSO with rauthy
+
+1. `just run`
+1. go to [localhost:8080](http://localhost:8080), go to the Admin area
+1. Login with "admin@localhost" and password from `BOOTSTRAP_ADMIN_PASSWORD_PLAIN` in docker-compose.yml
+1. add client from the admin panel
+    - Client ID: mv
+    - redirect uris: http://localhost:4000/auth/user/rauthy/callback
+    - Authorization Flows: authorization_code
+    - allowed origins: http://localhost:4000
+    - access/id token algortihm: RS256 (EDDSA did not work for me, found just few infos in the ashauthentication docs)
+1. copy client secret to `.env` file
+1. abort and run `just run` again
+
+
+