From 39b007c398ca81b30b9c35e6b2a2be3a0ce328a3 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Rafael=20Eppl=C3=A9e?= <hello@rafa.ee>
Date: Thu, 17 Jul 2025 14:48:17 +0200
Subject: [PATCH 1/2] Add docs for testing SSO

---
 .env.example |  1 +
 README.md    | 16 ++++++++++++++++
 2 files changed, 17 insertions(+)
 create mode 100644 .env.example

diff --git a/.env.example b/.env.example
new file mode 100644
index 0000000..ccbd6ed
--- /dev/null
+++ b/.env.example
@@ -0,0 +1 @@
+OIDC_CLIENT_SECRET=
diff --git a/README.md b/README.md
index 24419c7..73251a0 100644
--- a/README.md
+++ b/README.md
@@ -1,2 +1,18 @@
 # mitgliederverwaltung
 
+## Testing SSO with rauthy
+
+1. `just run`
+1. go to [localhost:8080], go to the Admin area
+1. Login with "admin@localhost" and password from `dev/rauthy/config.toml`
+1. add client from the admin panel
+    - Client ID: mv
+    - redirect uris: http://localhost:4000/auth/user/rauthy/callback
+    - Authorization Flows: authorization_code
+    - allowed origins: http://localhost:4000
+    - access/id token algortihm: RS256 (EDDSA did not work for me, found just few infos in the ashauthentication docs)
+1. copy client secret to `.env` file
+1. abort and run `just run` again
+
+
+

From 04700af46a4e1e4ab418ec0db0a4e6219abef8ca Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Rafael=20Eppl=C3=A9e?= <hello@rafa.ee>
Date: Thu, 17 Jul 2025 14:48:17 +0200
Subject: [PATCH 2/2] docs: Add docs for testing SSO

---
 .env.example |  1 +
 README.md    | 16 ++++++++++++++++
 2 files changed, 17 insertions(+)
 create mode 100644 .env.example

diff --git a/.env.example b/.env.example
new file mode 100644
index 0000000..ccbd6ed
--- /dev/null
+++ b/.env.example
@@ -0,0 +1 @@
+OIDC_CLIENT_SECRET=
diff --git a/README.md b/README.md
index 24419c7..73251a0 100644
--- a/README.md
+++ b/README.md
@@ -1,2 +1,18 @@
 # mitgliederverwaltung
 
+## Testing SSO with rauthy
+
+1. `just run`
+1. go to [localhost:8080], go to the Admin area
+1. Login with "admin@localhost" and password from `dev/rauthy/config.toml`
+1. add client from the admin panel
+    - Client ID: mv
+    - redirect uris: http://localhost:4000/auth/user/rauthy/callback
+    - Authorization Flows: authorization_code
+    - allowed origins: http://localhost:4000
+    - access/id token algortihm: RS256 (EDDSA did not work for me, found just few infos in the ashauthentication docs)
+1. copy client secret to `.env` file
+1. abort and run `just run` again
+
+
+