From c3caf7e65bfc4635e86287426a9e82fb436e0333 Mon Sep 17 00:00:00 2001
From: MannixTT <timsilasherrmann@gmail.com>
Date: Sun, 26 Apr 2026 20:53:30 +0200
Subject: [PATCH] Update .env.example

Changes made based on the comments in the pull request following the reviews
---
 .env.example | 16 +++++++---------
 1 file changed, 7 insertions(+), 9 deletions(-)

diff --git a/.env.example b/.env.example
index 515816c..eadda8b 100644
--- a/.env.example
+++ b/.env.example
@@ -313,16 +313,14 @@ IDP_DOMAIN=
 IDP_ISSUER_URL=
 # Url of the account edit page from your Identity Provider.
 IDP_ACCOUNT_URL=
-# Global Client ID, you can overwrite it by defining a client specific client id
-OC_OIDC_CLIENT_ID="{{ item.oc_oidc_client_id }}"
+# Global Client ID: You can override this by specifying a custom client ID, or leave it blank to use the OC defaults, as described in the documentation
+#OC_OIDC_CLIENT_ID=
 # Declares which property should be used for the oidc claim
-PROXY_ROLE_ASSIGNMENT_OIDC_CLAIM="roles"
-# claim_role to opencloud mapping
-OC_OIDC_CLIENT_SCOPES="openid profile email roles offline_access"
-# Unfortunetely needed at the moment (be careful to set it to none in prod)
-# PROXY_OIDC_ACCESS_TOKEN_VERIFY_METHOD=none
-# Allow OpenCloud, to show Authentik Login-Frame
-PROXY_CSP_CONFIG_FILE_LOCATION="/etc/ocis/csp.yaml"
+# Example: "roles"
+PROXY_ROLE_ASSIGNMENT_OIDC_CLAIM=
+# Defines the OIDC client scope
+# Example: "openid profile email roles"
+OC_OIDC_CLIENT_SCOPES=
 # Client specific environment vars
 #WEBFINGER_WEB_OIDC_CLIENT_ID=
 #WEBFINGER_WEB_OIDC_CLIENT_SCOPES=