server:
      addr: ":5001"
      certificate: "/le/live/remote.repository.com/cert.pem"
      key: "/le/live/remote.repository.com/privkey.pem"
token:
      issuer: "MyRepository auth server" # muss mit Registry-Config ubereinstimmen!
      expiration: 900
users:
      # Password is specified as a BCrypt hash. Use `htpasswd -nB USERNAME` to generate.
      "oliver":
         password: "$2y$05$4dIrCZLpgSYDClrS6pN2BOxVm.rkPy/4IgnurlHbukOxOJldlhJM."
acl:
      - match: {account: "admin"}
        actions: ["*"]
        comment: "Admin has full access to everything."
      - match: {account: "user"}
        actions: ["pull"]
        comment: "User \"user\" can pull stuff."