From cae78bb2cde1722ff910cf71fa7aa3c1d8f0f775 Mon Sep 17 00:00:00 2001
From: Sebastian Hugentobler <sebastian@vanwa.ch>
Date: Mon, 23 Aug 2021 00:01:37 +0200
Subject: [PATCH] oauth proxy auth

---
 rootfs/etc/confd/templates/dovecot-oauth2.conf.ext.tmpl | 6 +++++-
 1 file changed, 5 insertions(+), 1 deletion(-)

diff --git a/rootfs/etc/confd/templates/dovecot-oauth2.conf.ext.tmpl b/rootfs/etc/confd/templates/dovecot-oauth2.conf.ext.tmpl
index e20b014..ac41235 100644
--- a/rootfs/etc/confd/templates/dovecot-oauth2.conf.ext.tmpl
+++ b/rootfs/etc/confd/templates/dovecot-oauth2.conf.ext.tmpl
@@ -1,7 +1,11 @@
+grant_url = {{ getenv "GRANT_URL" }}
+client_id = {{ getenv "CLIENT_ID" }}
+client_secret = {{ getenv "CLIENT_SECRET" }}
 tokeninfo_url = {{ getenv "TOKENINFO_URL" }}
 introspection_url = {{ getenv "INTROSPECTION_URL" }}
 introspection_mode = {{ getenv "INTROSPECTION_MODE" "post" }}
 #force_introspection = yes
 username_attribute = email
 tls_ca_cert_file = /etc/ssl/certs/ca-certificates.crt
-
+use_grant_password = no
+pass_attrs = pass=%{oauth2:access_token}