BookStack/app/Config/auth.php

<?php

/**
 * Authentication configuration options.
 *
 * Changes to these config files are not supported by BookStack and may break upon updates.
 * Configuration should be altered via the `.env` file or environment variables.
 * Do not edit this file unless you're happy to maintain any changes yourself.
 */

return [

    // Method of authentication to use
    // Options: standard, ldap
    'method' => env('AUTH_METHOD', 'standard'),

    // Authentication Defaults
    // This option controls the default authentication "guard" and password
    // reset options for your application.
    'defaults' => [
        'guard' => env('AUTH_METHOD', 'standard') === 'standard' ? 'web' : env('AUTH_METHOD'),
        'passwords' => 'users',
    ],

    // Authentication Guards
    // All authentication drivers have a user provider. This defines how the
    // users are actually retrieved out of your database or other storage
    // mechanisms used by this application to persist your user's data.
    // Supported drivers: "session", "api-token", "ldap-session"
    'guards' => [
        'web' => [
            'driver' => 'session',
            'provider' => 'users',
        ],
        'ldap' => [
            'driver' => 'ldap-session',
            'provider' => 'external'
        ],
        'api' => [
            'driver' => 'api-token',
        ],
    ],

    // User Providers
    // All authentication drivers have a user provider. This defines how the
    // users are actually retrieved out of your database or other storage
    // mechanisms used by this application to persist your user's data.
    'providers' => [
        'users' => [
            'driver' => env('AUTH_METHOD', 'standard') === 'standard' ? 'eloquent' : env('AUTH_METHOD'),
            'model' => \BookStack\Auth\User::class,
        ],
        'external' => [
            'driver' => 'external-users',
            'model' => \BookStack\Auth\User::class,
        ],
    ],

    // Resetting Passwords
    // The expire time is the number of minutes that the reset token should be
    // considered valid. This security feature keeps tokens short-lived so
    // they have less time to be guessed. You may change this as needed.
    'passwords' => [
        'users' => [
            'provider' => 'users',
            'email' => 'emails.password',
            'table' => 'password_resets',
            'expire' => 60,
        ],
    ],

];
Initial commit 2015-07-12 19:01:42 +00:00			`<?php`

Updated configuration files Added a notice to the top of each to explain they should not be normally modified. Standardised comment format used for each item. Better aligned some files with laravel 5.5 options. 2018-12-23 16:26:39 +00:00			`/**`
			`* Authentication configuration options.`
			`*`
			`* Changes to these config files are not supported by BookStack and may break upon updates.`
			* Configuration should be altered via the `.env` file or environment variables.
			`* Do not edit this file unless you're happy to maintain any changes yourself.`
			`*/`
Initial commit 2015-07-12 19:01:42 +00:00
Updated configuration files Added a notice to the top of each to explain they should not be normally modified. Standardised comment format used for each item. Better aligned some files with laravel 5.5 options. 2018-12-23 16:26:39 +00:00			`return [`
Updated laravel to 5.2 and started ldap implementation 2016-01-09 19:23:35 +00:00
Updated configuration files Added a notice to the top of each to explain they should not be normally modified. Standardised comment format used for each item. Better aligned some files with laravel 5.5 options. 2018-12-23 16:26:39 +00:00			`// Method of authentication to use`
			`// Options: standard, ldap`
Updated laravel to 5.2 and started ldap implementation 2016-01-09 19:23:35 +00:00			`'method' => env('AUTH_METHOD', 'standard'),`

Updated configuration files Added a notice to the top of each to explain they should not be normally modified. Standardised comment format used for each item. Better aligned some files with laravel 5.5 options. 2018-12-23 16:26:39 +00:00			`// Authentication Defaults`
			`// This option controls the default authentication "guard" and password`
			`// reset options for your application.`
Updated laravel to 5.2 and started ldap implementation 2016-01-09 19:23:35 +00:00			`'defaults' => [`
Started alignment of auth services - Removed LDAP specific logic from login controller, placed in Guard. - Created safer base user provider for ldap login, to be used for SAML soon. - Moved LDAP auth work from user provider to guard. 2020-02-01 11:42:22 +00:00			`'guard' => env('AUTH_METHOD', 'standard') === 'standard' ? 'web' : env('AUTH_METHOD'),`
Updated laravel to 5.2 and started ldap implementation 2016-01-09 19:23:35 +00:00			`'passwords' => 'users',`
			`],`
Initial commit 2015-07-12 19:01:42 +00:00
Updated configuration files Added a notice to the top of each to explain they should not be normally modified. Standardised comment format used for each item. Better aligned some files with laravel 5.5 options. 2018-12-23 16:26:39 +00:00			`// Authentication Guards`
			`// All authentication drivers have a user provider. This defines how the`
			`// users are actually retrieved out of your database or other storage`
			`// mechanisms used by this application to persist your user's data.`
Started alignment of auth services - Removed LDAP specific logic from login controller, placed in Guard. - Created safer base user provider for ldap login, to be used for SAML soon. - Moved LDAP auth work from user provider to guard. 2020-02-01 11:42:22 +00:00			`// Supported drivers: "session", "api-token", "ldap-session"`
Updated laravel to 5.2 and started ldap implementation 2016-01-09 19:23:35 +00:00			`'guards' => [`
			`'web' => [`
			`'driver' => 'session',`
			`'provider' => 'users',`
			`],`
Started alignment of auth services - Removed LDAP specific logic from login controller, placed in Guard. - Created safer base user provider for ldap login, to be used for SAML soon. - Moved LDAP auth work from user provider to guard. 2020-02-01 11:42:22 +00:00			`'ldap' => [`
			`'driver' => 'ldap-session',`
			`'provider' => 'external'`
			`],`
Updated laravel to 5.2 and started ldap implementation 2016-01-09 19:23:35 +00:00			`'api' => [`
Extracted API auth into guard Also implemented more elegant solution to allowing session auth for API routes; A new 'StartSessionIfCookieExists' middleware, which wraps the default 'StartSession' middleware will run for API routes which only sets up the session if a session cookie is found on the request. Also decrypts only the session cookie. Also cleaned some TokenController codeclimate warnings. 2019-12-30 14:51:28 +00:00			`'driver' => 'api-token',`
Updated laravel to 5.2 and started ldap implementation 2016-01-09 19:23:35 +00:00			`],`
			`],`
Initial commit 2015-07-12 19:01:42 +00:00
Updated configuration files Added a notice to the top of each to explain they should not be normally modified. Standardised comment format used for each item. Better aligned some files with laravel 5.5 options. 2018-12-23 16:26:39 +00:00			`// User Providers`
			`// All authentication drivers have a user provider. This defines how the`
			`// users are actually retrieved out of your database or other storage`
			`// mechanisms used by this application to persist your user's data.`
Updated laravel to 5.2 and started ldap implementation 2016-01-09 19:23:35 +00:00			`'providers' => [`
			`'users' => [`
Updated user interfaces for LDAP and added email from LDAP 2016-01-13 22:22:30 +00:00			`'driver' => env('AUTH_METHOD', 'standard') === 'standard' ? 'eloquent' : env('AUTH_METHOD'),`
Re-structured the app code to be feature based rather than code type based 2018-09-25 11:30:50 +00:00			`'model' => \BookStack\Auth\User::class,`
Updated laravel to 5.2 and started ldap implementation 2016-01-09 19:23:35 +00:00			`],`
Started alignment of auth services - Removed LDAP specific logic from login controller, placed in Guard. - Created safer base user provider for ldap login, to be used for SAML soon. - Moved LDAP auth work from user provider to guard. 2020-02-01 11:42:22 +00:00			`'external' => [`
			`'driver' => 'external-users',`
			`'model' => \BookStack\Auth\User::class,`
			`],`
Updated laravel to 5.2 and started ldap implementation 2016-01-09 19:23:35 +00:00			`],`
Initial commit 2015-07-12 19:01:42 +00:00
Updated configuration files Added a notice to the top of each to explain they should not be normally modified. Standardised comment format used for each item. Better aligned some files with laravel 5.5 options. 2018-12-23 16:26:39 +00:00			`// Resetting Passwords`
			`// The expire time is the number of minutes that the reset token should be`
			`// considered valid. This security feature keeps tokens short-lived so`
			`// they have less time to be guessed. You may change this as needed.`
Updated laravel to 5.2 and started ldap implementation 2016-01-09 19:23:35 +00:00			`'passwords' => [`
			`'users' => [`
			`'provider' => 'users',`
			`'email' => 'emails.password',`
			`'table' => 'password_resets',`
			`'expire' => 60,`
			`],`
Initial commit 2015-07-12 19:01:42 +00:00			`],`

Ran phpcbf and updated helpers typehinting 2019-09-15 17:29:51 +00:00			`];`