eole-lemur/tmpl/lemur.conf.py


# This is just Python which means you can inherit and tweak settings

import os
_basedir = os.path.abspath(os.path.dirname(__file__))

THREADS_PER_PAGE = 8

# General

# These will need to be set to `True` if you are developing locally
CORS = False
debug = False

# this is the secret key used by flask session management
SECRET_KEY = '%%lemur_secret'

# You should consider storing these separately from your config
LEMUR_TOKEN_SECRET = '%%lemur_token_secret'
LEMUR_ENCRYPTION_KEYS = '%%lemur_encrypt_keys'

# List of domain regular expressions that non-admin users can issue
LEMUR_ALLOWED_DOMAINS = []

# Mail Server

LEMUR_EMAIL = ''
LEMUR_SECURITY_TEAM_EMAIL = []

# Certificate Defaults

LEMUR_DEFAULT_COUNTRY = ''
LEMUR_DEFAULT_STATE = ''
LEMUR_DEFAULT_LOCATION = ''
LEMUR_DEFAULT_ORGANIZATION = ''
LEMUR_DEFAULT_ORGANIZATIONAL_UNIT = ''

# Authentication Providers
ACTIVE_PROVIDERS = []

# Metrics Providers
METRIC_PROVIDERS = []

# Logging

LOG_LEVEL = "DEBUG"
LOG_FILE = "/var/log/lemur/lemur.log"


# Database

# modify this if you are not using a local database
SQLALCHEMY_DATABASE_PASSWORD = 'replaceme'
SQLALCHEMY_DATABASE_URI = f'postgresql:///%%lemur_db_name?host=/var/run/postgresql&user=%%lemur_db_user&password={SQLALCHEMY_DATABASE_PASSWORD}'

# AWS

#LEMUR_INSTANCE_PROFILE = 'Lemur'

# Issuers

# These will be dependent on which 3rd party that Lemur is
# configured to use.

# VERISIGN_URL = ''
# VERISIGN_PEM_PATH = ''
# VERISIGN_FIRST_NAME = ''
# VERISIGN_LAST_NAME = ''
# VERSIGN_EMAIL = ''

#FIXME
DIGICERT_CIS_API_KEY = ""
DIGICERT_CIS_URL = ""
DIGICERT_CIS_ROOTS = ''
DIGICERT_API_KEY = ''
DIGICERT_CIS_PROFILE_NAMES = ''
DIGICERT_URL = ''
DIGICERT_ORG_ID = ''
DIGICERT_ORDER_TYPE = ''
DIGICERT_ROOT = ''

ENTRUST_API_CERT = ''
ENTRUST_API_KEY = ''
ENTRUST_API_USER = ''
ENTRUST_API_PASS = ''
ENTRUST_URL = ''
ENTRUST_ROOT = ''
ENTRUST_NAME = ''
ENTRUST_EMAIL = ''
ENTRUST_PHONE = ''
eolisation 2020-10-21 11:58:01 +02:00
			`# This is just Python which means you can inherit and tweak settings`

			`import os`
			`_basedir = os.path.abspath(os.path.dirname(__file__))`

			`THREADS_PER_PAGE = 8`

			`# General`

			# These will need to be set to `True` if you are developing locally
			`CORS = False`
			`debug = False`

			`# this is the secret key used by flask session management`
			`SECRET_KEY = '%%lemur_secret'`

			`# You should consider storing these separately from your config`
			`LEMUR_TOKEN_SECRET = '%%lemur_token_secret'`
			`LEMUR_ENCRYPTION_KEYS = '%%lemur_encrypt_keys'`

			`# List of domain regular expressions that non-admin users can issue`
			`LEMUR_ALLOWED_DOMAINS = []`

			`# Mail Server`

			`LEMUR_EMAIL = ''`
			`LEMUR_SECURITY_TEAM_EMAIL = []`

			`# Certificate Defaults`

			`LEMUR_DEFAULT_COUNTRY = ''`
			`LEMUR_DEFAULT_STATE = ''`
			`LEMUR_DEFAULT_LOCATION = ''`
			`LEMUR_DEFAULT_ORGANIZATION = ''`
			`LEMUR_DEFAULT_ORGANIZATIONAL_UNIT = ''`

			`# Authentication Providers`
			`ACTIVE_PROVIDERS = []`

			`# Metrics Providers`
			`METRIC_PROVIDERS = []`

			`# Logging`

			`LOG_LEVEL = "DEBUG"`
			`LOG_FILE = "/var/log/lemur/lemur.log"`


			`# Database`

			`# modify this if you are not using a local database`
			`SQLALCHEMY_DATABASE_PASSWORD = 'replaceme'`
			`SQLALCHEMY_DATABASE_URI = f'postgresql:///%%lemur_db_name?host=/var/run/postgresql&user=%%lemur_db_user&password={SQLALCHEMY_DATABASE_PASSWORD}'`

			`# AWS`

			`#LEMUR_INSTANCE_PROFILE = 'Lemur'`

			`# Issuers`

			`# These will be dependent on which 3rd party that Lemur is`
			`# configured to use.`

			`# VERISIGN_URL = ''`
			`# VERISIGN_PEM_PATH = ''`
			`# VERISIGN_FIRST_NAME = ''`
			`# VERISIGN_LAST_NAME = ''`
			`# VERSIGN_EMAIL = ''`

			`#FIXME`
			`DIGICERT_CIS_API_KEY = ""`
			`DIGICERT_CIS_URL = ""`
			`DIGICERT_CIS_ROOTS = ''`
			`DIGICERT_API_KEY = ''`
			`DIGICERT_CIS_PROFILE_NAMES = ''`
			`DIGICERT_URL = ''`
			`DIGICERT_ORG_ID = ''`
			`DIGICERT_ORDER_TYPE = ''`
			`DIGICERT_ROOT = ''`

			`ENTRUST_API_CERT = ''`
			`ENTRUST_API_KEY = ''`
			`ENTRUST_API_USER = ''`
			`ENTRUST_API_PASS = ''`
			`ENTRUST_URL = ''`
			`ENTRUST_ROOT = ''`
			`ENTRUST_NAME = ''`
			`ENTRUST_EMAIL = ''`
			`ENTRUST_PHONE = ''`