mirror/phylum
1
0
Fork 0
mirror of https://codeberg.org/shroff/phylum.git synced 2026-01-27 06:29:53 -06:00
Code Issues Packages Projects Releases Wiki Activity
Files
c8ea9aa698310fc5fc0eb29a09fd59cb38f8371c
phylum/server/internal/command/config.defaults.yml
Abhishek Shroff 6b21b32619 [server][preview] Serve resource previews
2025-07-31 23:43:25 +05:30

115 lines
2.9 KiB
YAML
Raw Blame History

db:
host: localhost
port: 5432
name: phylum
user: phylum
password: phylum # Probably need to change this
nomigrate: false # Do not auto-migrate schema (dev)
trace: false # Trace queries (dev)
storage:
root: storage
temp: tmp # relative to root, or absolute
core:
user: # Config for new users
basedir: /home
permission: 0x10 # Invite users
publinks:
password:
# hash is either argon2 or pbkdf2
kdf: pbkdf2
pbkdf2:
function: sha-256
iterations: 100000
salt: 32
key: 32
preview:
dir: previews # relative to storage.root, or absolute
quality: 80
## Warning: it is recommended to avoid using a combination of email-based
## (password/magic links) and oidc login providers, or more than one
## OIDC provider, as it can lead to impersonation if the email addresses
## across all of these providers are not verified or are not guaranteed
## to belong to the same user. Take a look at
## https://pushsecurity.com/blog/cross-idp-impersonation/ for more details.
auth:
auto_create:
# - "*@example.com"
# - "user@example.com"
# - "user*@example.com"
suppress_multi_provider_warning: false
magic_links: true
password:
backend: crypt # one of crypt, ldap, none
reset_enabled: true
crypt:
# kdf is either argon2 or pbkdf2
kdf: argon2
argon2:
memory: 16 # 2 ^ 16 = 64M
iterations: 4
parallelism: 2
salt: 32 # 32 Bytes = 256-bit
key: 32 # 32 Bytes = 256-bit
pbkdf2:
function: sha-256
iterations: 5000000
salt: 32 # 32 Bytes = 256-bit
key: 32 # 32 Bytes = 256-bit
requirements:
length: 8
lower: 0
upper: 0
numeric: 0
symbols: 0
ldap:
debug: false
url: ldap://ldap.example.com:1389
starttls: false
connect_timeout: 30s
request_timeout: 30s
# dn_template: cn={email},ou=people,dc=example,dc=com
# search:
# bind_dn: cn=phylumbind,ou=people,dc=example,dc=com
# bind_password: ldap_password_for_phylumbind_user
# base_dn: dc=example,dc=com
# filter_template: (mail={email})
# openid:
# clients:
# - id: authelia # internal ID, prefer lower-kebab-case or lower_camel_case
# name: Authelia # to be displayed to the user as 'Log In with <name>'
# issuer_url: https://auth.example.com
# client_id:
# client_secret:
# allow_unverified_emails: false
jobs:
workers: 5
timeout: 0 # In seconds
server:
host:
port: 2448
publinkpath: /pub
webdav:
enabled: true
path: /webdav
cors:
enabled: false
origins:
- "*"
mail:
smtp:
host:
port: 587
username:
password:
from:
name: Phylum Drive
email: phylum@example.com
instance: https://phylum.example.com # No trailing slash
Reference in New Issue View Git Blame Copy Permalink