From f019b1c685bd8fd71ccd0a06cae66de17fca7925 Mon Sep 17 00:00:00 2001
From: devydave <bittedanke@tutanota.com>
Date: Fri, 8 May 2026 14:25:26 +0200
Subject: [PATCH] feat: adds v5 upgrade

---
 .env.sample  |  2 ++
 compose.yml  | 22 ++++++++++++----------
 release/next |  1 +
 3 files changed, 15 insertions(+), 10 deletions(-)
 create mode 100644 release/next

diff --git a/.env.sample b/.env.sample
index 840f6d8..e68cd60 100644
--- a/.env.sample
+++ b/.env.sample
@@ -9,8 +9,10 @@ LETS_ENCRYPT_ENV=production
 
 SECRET_CLIENT_SECRET_VERSION=v1
 
+NAME=SSO
 AUTH_URL=https://example.com/auth/v1/oidc/authorize
 CLIENT_ID=tinyauth_id
 SCOPES=openid,profile,email
 TOKEN_URL=https://example.com/auth/v1/oidc/token
 USER_INFO_URL=https://example.com/auth/v1/oidc/userinfo
+SESSION_EXPIRY=86400
diff --git a/compose.yml b/compose.yml
index 581e01a..2dbe4d0 100644
--- a/compose.yml
+++ b/compose.yml
@@ -1,7 +1,7 @@
 ---
 services:
   app:
-    image: ghcr.io/steveiliop56/tinyauth:v4
+    image: ghcr.io/steveiliop56/tinyauth:v5.0.7
     networks:
       - proxy
     deploy:
@@ -17,15 +17,17 @@ services:
         ## When you're ready for release, run "abra recipe sync <name>" to set this
         - "coop-cloud.${STACK_NAME}.version=1.0.0+v4"
     environment:
-      APP_URL: "https://${DOMAIN}"
-      DISABLE_ANALYTICS: "true"
-      PROVIDERS_SSO_AUTH_URL: ${AUTH_URL}
-      PROVIDERS_SSO_CLIENT_ID: ${CLIENT_ID}
-      PROVIDERS_SSO_CLIENT_SECRET_FILE: /run/secrets/client_secret
-      PROVIDERS_SSO_REDIRECT_URL: https://${DOMAIN}/api/oauth/callback/sso
-      PROVIDERS_SSO_SCOPES: ${SCOPES}
-      PROVIDERS_SSO_TOKEN_URL: ${TOKEN_URL}
-      PROVIDERS_SSO_USER_INFO_URL: ${USER_INFO_URL}
+      TINYAUTH_APPURL: "https://${DOMAIN}"
+      TINYAUTH_ANALYTICS_ENABLED: "true"
+      TINYAUTH_OAUTH_PROVIDERS_SSO_AUTHURL: ${AUTH_URL}
+      TINYAUTH_OAUTH_PROVIDERS_SSO_CLIENTID: ${CLIENT_ID}
+      TINYAUTH_OAUTH_PROVIDERS_SSO_CLIENTSECRETFILE: /run/secrets/client_secret
+      TINYAUTH_OAUTH_PROVIDERS_SSO_REDIRECTURL: https://${DOMAIN}/api/oauth/callback/sso
+      TINYAUTH_OAUTH_PROVIDERS_SSO_SCOPES: ${SCOPES}
+      TINYAUTH_OAUTH_PROVIDERS_SSO_TOKENURL: ${TOKEN_URL}
+      TINYAUTH_OAUTH_PROVIDERS_SSO_USERINFOURL: ${USER_INFO_URL}
+      TINYAUTH_OAUTH_PROVIDERS_SSO_NAME: ${NAME:-SSO}
+      TINYAUTH_AUTH_SESSIONEXPIRY: ${SESSION_EXPIRY:-86400}
     secrets:
       - client_secret
     healthcheck:
diff --git a/release/next b/release/next
new file mode 100644
index 0000000..b211bd8
--- /dev/null
+++ b/release/next
@@ -0,0 +1 @@
+Added variables NAME(Provider name in UI) and SESSION_EXPIRY(Session expiry time in seconds). The defaults are "SSO" and one day.