OIDC auth implemented, tests amended

apache/freshrss.conf

@@ -1,3 +1,4 @@
+
 ServerName %{HTTP_HOST}
 
 <VirtualHost *:8000>
@@ -13,4 +14,41 @@ ServerName %{HTTP_HOST}
         AllowOverride All
         Require all granted
     </Directory>
+
+	<Directory /app/code/p/api>
+		Include /app/code/p/api/.htaccess
+	</Directory>
+
+	<Directory /app/code/p/i>
+		ExpiresActive Off
+
+		<IfDefine OIDC_ENABLED>
+			AuthType openid-connect
+			Require valid-user
+		</IfDefine>
+		IncludeOptional /app/code/p/i/.htaccess
+	</Directory>
+
+	<Directory /app/code/p/themes>
+		Include /app/code/p/themes/.htaccess
+	</Directory>
+
+
+	<IfDefine OIDC_ENABLED>
+		OIDCProviderMetadataURL ${CLOUDRON_OIDC_DISCOVERY_URL}
+		OIDCClientID ${CLOUDRON_OIDC_CLIENT_ID}
+		OIDCClientSecret ${CLOUDRON_OIDC_CLIENT_SECRET}
+
+		OIDCRedirectURI /i/oidc/
+
+		OIDCCryptoPassphrase ${OIDC_CRYPTO_PASSPHRASE}
+
+		OIDCRemoteUserClaim sub
+
+		OIDCScope "openid profile email"
+
+		OIDCRefreshAccessTokenBeforeExpiry 30
+		OIDCPassClaimsAs headers
+		OIDCXForwardedHeaders X-Forwarded-Proto
+    </IfDefine>
 </VirtualHost>