This repository has been archived by the owner on Nov 24, 2023. It is now read-only.
-
Notifications
You must be signed in to change notification settings - Fork 5
/
config.ini
60 lines (45 loc) · 2.29 KB
/
config.ini
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
[Server]
# The HTTP(S) server listening on this address. Default is '127.0.0.1'.
listen_address = 127.0.0.1
# The HTTP server is going to be running on this port. Choose an unused TCP port between 0 and 65535.
# Default is 17397.
listen_port = 17397
# Domain used to set the authentication cookie and as issuer for TOTP. E.g. 'example.org'. Defaults to "localhost".
domain = "localhost"
[TLS]
# Enable HTTPS/TLS encryption for the webserver. The unencrypted HTTP server will be disabled. Default is false.
enabled = false
# The https server is going to be running on this port. Choose an unused TCP port between 0 and 65535.
# Default is 17760.
listen_port = 17760
# Path of the SSL certificate. Example: /etc/letsencrypt/live/kavak.dev/fullchain.pem
cert_path =
# Path of the SSL certificate key. Example: /etc/letsencrypt/live/kavak.dev/privkey.pem
key_path =
[Cookies]
# Cookie lifetime in days. After the cookie expires, the user has to re-authenticate. Defaults to 7 (days).
lifetime = 7
# Set secure attribute for cookie. The browser will only send the auth cookie in a HTTPS context.
# Refer to https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Set-Cookie. Defaults to true.
secure = true
[LDAP]
# Enable/disable LDAP support. The application will prioritize local authentication data first. Default is false.
enabled = false
# LDAP url. Example for TLS connection: "ldaps://ldap.example.com:636".
# Example for non-TLS connection: "ldap://ldap.example.com:389".
# If you use SSL/ldaps with a custom/self-signed CA certificate, you can override it when running
# the application using the environment variables 'SSL_CERT_FILE' or 'SSL_CERT_DIR' respectively.
# Example: SSL_CERT_FILE=~/certs/myCA.pem nginx-auth-server-linux-amd64 run
# Alternatively you can add your custom root CA to your local certificate store.
url = ""
# LDAP organizational unit (OU) that is used to search the user. Default is "users".
organizational_unit = "users"
# LDAP baseDN (DC) of the LDAP tree. Example: "dc=example,dc=org".
domain_components = ""
[Recaptcha]
# Enable/disable Google reCAPTCHA v2 (invisible) support for the login form. Default is false.
enabled = false
# reCAPTCHA site key that is provided by Google upon site creation.
site_key =
# reCAPTCHA secret key that is provided by Google upon site creation.
secret_key =