authentik/passbook/lib/default.yml

60 lines
1.7 KiB
YAML
Raw Normal View History

2018-11-14 18:14:14 +00:00
# This is the default configuration file
2019-09-30 17:04:04 +01:00
postgresql:
2018-11-14 18:14:14 +00:00
host: localhost
2019-09-30 17:04:04 +01:00
name: passbook
user: passbook
password: 'env://POSTGRES_PASSWORD'
2019-09-30 17:04:04 +01:00
redis:
host: localhost
password: ''
cache_db: 0
message_queue_db: 1
debug: false
2019-09-30 17:04:04 +01:00
2018-11-14 18:14:14 +00:00
# Error reporting, sends stacktrace to sentry.services.beryju.org
error_report_enabled: true
domain: localhost
2018-11-14 18:14:14 +00:00
passbook:
sign_up:
# Enables signup, created users are stored in internal Database and created in LDAP if ldap.create_users is true
enabled: true
password_reset:
# Enable password reset, passwords are reset in internal Database and in LDAP if ldap.reset_password is true
enabled: true
# Verification the user has to provide in order to be able to reset passwords. Can be any combination of `email`, `2fa`, `security_questions`
verification:
- email
# Text used in title, on login page and multiple other places
branding: passbook
login:
# Override URL used for logo
logo_url: null
# Override URL used for Background on Login page
bg_url: null
# Optionally add a subtext, placed below logo on the login page
2018-11-16 09:08:15 +00:00
subtext: null
2018-11-14 18:14:14 +00:00
footer:
links:
# Optionally add links to the footer on the login page
# - name: test
# href: https://test
# Specify which fields can be used to authenticate. Can be any combination of `username` and `email`
uid_fields:
- username
- email
2018-11-14 18:14:14 +00:00
# Provider-specific settings
ldap:
# Which field from `uid_fields` maps to which LDAP Attribute
login_field_map:
username: sAMAccountName
email: mail # or userPrincipalName
user_attribute_map:
active_directory:
username: "%(sAMAccountName)s"
email: "%(mail)s"
name: "%(displayName)"