2020-10-21 11:58:01 +02:00
|
|
|
|
|
|
|
# This is just Python which means you can inherit and tweak settings
|
|
|
|
|
|
|
|
import os
|
|
|
|
_basedir = os.path.abspath(os.path.dirname(__file__))
|
|
|
|
|
|
|
|
THREADS_PER_PAGE = 8
|
|
|
|
|
|
|
|
# General
|
|
|
|
|
|
|
|
# These will need to be set to `True` if you are developing locally
|
|
|
|
CORS = False
|
|
|
|
debug = False
|
|
|
|
|
|
|
|
# this is the secret key used by flask session management
|
|
|
|
SECRET_KEY = '%%lemur_secret'
|
|
|
|
|
|
|
|
# You should consider storing these separately from your config
|
|
|
|
LEMUR_TOKEN_SECRET = '%%lemur_token_secret'
|
|
|
|
LEMUR_ENCRYPTION_KEYS = '%%lemur_encrypt_keys'
|
|
|
|
|
|
|
|
# List of domain regular expressions that non-admin users can issue
|
|
|
|
LEMUR_ALLOWED_DOMAINS = []
|
|
|
|
|
|
|
|
# Mail Server
|
|
|
|
|
2020-11-14 09:59:42 +01:00
|
|
|
LEMUR_EMAIL = '%%lemur_admin_email'
|
2020-10-21 11:58:01 +02:00
|
|
|
LEMUR_SECURITY_TEAM_EMAIL = []
|
2021-05-22 16:38:47 +02:00
|
|
|
LEMUR_EMAIL_SENDER = 'smtp'
|
2020-10-21 11:58:01 +02:00
|
|
|
|
|
|
|
# Certificate Defaults
|
|
|
|
|
2020-11-14 09:59:42 +01:00
|
|
|
LEMUR_DEFAULT_COUNTRY = '%%lemur_default_country'
|
|
|
|
LEMUR_DEFAULT_STATE = '%%lemur_default_state'
|
|
|
|
LEMUR_DEFAULT_LOCATION = '%%lemur_default_location'
|
|
|
|
LEMUR_DEFAULT_ORGANIZATION = '%%lemur_default_organization'
|
|
|
|
LEMUR_DEFAULT_ORGANIZATIONAL_UNIT = '%%lemur_default_organization_unit'
|
|
|
|
|
|
|
|
# Default issuer
|
|
|
|
|
|
|
|
LEMUR_DEFAULT_ISSUER_PLUGIN = 'cryptography-issuer'
|
2020-10-21 11:58:01 +02:00
|
|
|
|
|
|
|
# Authentication Providers
|
|
|
|
ACTIVE_PROVIDERS = []
|
|
|
|
|
|
|
|
# Metrics Providers
|
|
|
|
METRIC_PROVIDERS = []
|
|
|
|
|
|
|
|
# Logging
|
|
|
|
|
|
|
|
LOG_LEVEL = "DEBUG"
|
|
|
|
LOG_FILE = "/var/log/lemur/lemur.log"
|
2020-11-14 09:59:42 +01:00
|
|
|
LOG_UPGRADE_FILE = '/var/log/lemur/db_upgrade.log'
|
2020-10-21 11:58:01 +02:00
|
|
|
|
|
|
|
|
|
|
|
# Database
|
|
|
|
|
|
|
|
# modify this if you are not using a local database
|
|
|
|
SQLALCHEMY_DATABASE_PASSWORD = 'replaceme'
|
|
|
|
SQLALCHEMY_DATABASE_URI = f'postgresql:///%%lemur_db_name?host=/var/run/postgresql&user=%%lemur_db_user&password={SQLALCHEMY_DATABASE_PASSWORD}'
|
|
|
|
|
|
|
|
# AWS
|
|
|
|
|
|
|
|
#LEMUR_INSTANCE_PROFILE = 'Lemur'
|
|
|
|
|
|
|
|
# Issuers
|
|
|
|
|
|
|
|
# These will be dependent on which 3rd party that Lemur is
|
|
|
|
# configured to use.
|
|
|
|
|
|
|
|
# VERISIGN_URL = ''
|
|
|
|
# VERISIGN_PEM_PATH = ''
|
|
|
|
# VERISIGN_FIRST_NAME = ''
|
|
|
|
# VERISIGN_LAST_NAME = ''
|
|
|
|
# VERSIGN_EMAIL = ''
|
|
|
|
|
|
|
|
#FIXME
|
|
|
|
DIGICERT_CIS_API_KEY = ""
|
|
|
|
DIGICERT_CIS_URL = ""
|
|
|
|
DIGICERT_CIS_ROOTS = ''
|
|
|
|
DIGICERT_API_KEY = ''
|
|
|
|
DIGICERT_CIS_PROFILE_NAMES = ''
|
|
|
|
DIGICERT_URL = ''
|
|
|
|
DIGICERT_ORG_ID = ''
|
|
|
|
DIGICERT_ORDER_TYPE = ''
|
|
|
|
DIGICERT_ROOT = ''
|
|
|
|
|
|
|
|
ENTRUST_API_CERT = ''
|
|
|
|
ENTRUST_API_KEY = ''
|
|
|
|
ENTRUST_API_USER = ''
|
|
|
|
ENTRUST_API_PASS = ''
|
|
|
|
ENTRUST_URL = ''
|
|
|
|
ENTRUST_ROOT = ''
|
|
|
|
ENTRUST_NAME = ''
|
|
|
|
ENTRUST_EMAIL = ''
|
|
|
|
ENTRUST_PHONE = ''
|