2015-07-12 15:01:42 -04:00
|
|
|
<?php
|
|
|
|
|
2018-12-23 11:26:39 -05:00
|
|
|
/**
|
|
|
|
* Authentication configuration options.
|
|
|
|
*
|
|
|
|
* Changes to these config files are not supported by BookStack and may break upon updates.
|
|
|
|
* Configuration should be altered via the `.env` file or environment variables.
|
|
|
|
* Do not edit this file unless you're happy to maintain any changes yourself.
|
|
|
|
*/
|
2015-07-12 15:01:42 -04:00
|
|
|
|
2018-12-23 11:26:39 -05:00
|
|
|
return [
|
2016-01-09 14:23:35 -05:00
|
|
|
|
2021-10-06 18:05:26 -04:00
|
|
|
// Options: standard, ldap, saml2, oidc
|
2016-01-09 14:23:35 -05:00
|
|
|
'method' => env('AUTH_METHOD', 'standard'),
|
|
|
|
|
2022-06-21 10:32:18 -04:00
|
|
|
// Automatically initiate login via external auth system if it's the sole auth method.
|
|
|
|
// Works with saml2 or oidc auth methods.
|
|
|
|
'auto_initiate' => env('AUTH_AUTO_INITIATE', false),
|
2022-05-02 06:35:11 -04:00
|
|
|
|
2018-12-23 11:26:39 -05:00
|
|
|
// Authentication Defaults
|
|
|
|
// This option controls the default authentication "guard" and password
|
|
|
|
// reset options for your application.
|
2016-01-09 14:23:35 -05:00
|
|
|
'defaults' => [
|
2021-06-26 11:23:15 -04:00
|
|
|
'guard' => env('AUTH_METHOD', 'standard'),
|
2016-01-09 14:23:35 -05:00
|
|
|
'passwords' => 'users',
|
|
|
|
],
|
2015-07-12 15:01:42 -04:00
|
|
|
|
2018-12-23 11:26:39 -05:00
|
|
|
// Authentication Guards
|
|
|
|
// All authentication drivers have a user provider. This defines how the
|
|
|
|
// users are actually retrieved out of your database or other storage
|
|
|
|
// mechanisms used by this application to persist your user's data.
|
2021-10-06 18:05:26 -04:00
|
|
|
// Supported drivers: "session", "api-token", "ldap-session", "async-external-session"
|
2016-01-09 14:23:35 -05:00
|
|
|
'guards' => [
|
2020-02-02 08:10:21 -05:00
|
|
|
'standard' => [
|
2021-06-26 11:23:15 -04:00
|
|
|
'driver' => 'session',
|
2016-01-09 14:23:35 -05:00
|
|
|
'provider' => 'users',
|
|
|
|
],
|
2020-02-01 06:42:22 -05:00
|
|
|
'ldap' => [
|
2021-06-26 11:23:15 -04:00
|
|
|
'driver' => 'ldap-session',
|
2020-02-02 05:59:03 -05:00
|
|
|
'provider' => 'external',
|
|
|
|
],
|
|
|
|
'saml2' => [
|
2021-10-06 18:05:26 -04:00
|
|
|
'driver' => 'async-external-session',
|
2020-02-02 05:59:03 -05:00
|
|
|
'provider' => 'external',
|
2020-02-01 06:42:22 -05:00
|
|
|
],
|
2021-10-06 18:05:26 -04:00
|
|
|
'oidc' => [
|
2021-10-16 11:01:59 -04:00
|
|
|
'driver' => 'async-external-session',
|
2020-02-02 05:59:03 -05:00
|
|
|
'provider' => 'external',
|
2020-02-01 06:42:22 -05:00
|
|
|
],
|
2016-01-09 14:23:35 -05:00
|
|
|
'api' => [
|
2021-10-30 16:29:59 -04:00
|
|
|
'driver' => 'api-token',
|
2016-01-09 14:23:35 -05:00
|
|
|
],
|
|
|
|
],
|
2015-07-12 15:01:42 -04:00
|
|
|
|
2018-12-23 11:26:39 -05:00
|
|
|
// User Providers
|
|
|
|
// All authentication drivers have a user provider. This defines how the
|
|
|
|
// users are actually retrieved out of your database or other storage
|
|
|
|
// mechanisms used by this application to persist your user's data.
|
2016-01-09 14:23:35 -05:00
|
|
|
'providers' => [
|
|
|
|
'users' => [
|
2020-02-02 07:00:41 -05:00
|
|
|
'driver' => 'eloquent',
|
2023-05-17 12:56:55 -04:00
|
|
|
'model' => \BookStack\Users\Models\User::class,
|
2016-01-09 14:23:35 -05:00
|
|
|
],
|
2021-10-30 16:29:59 -04:00
|
|
|
|
2020-02-01 06:42:22 -05:00
|
|
|
'external' => [
|
|
|
|
'driver' => 'external-users',
|
2023-05-17 12:56:55 -04:00
|
|
|
'model' => \BookStack\Users\Models\User::class,
|
2020-02-01 06:42:22 -05:00
|
|
|
],
|
2021-10-30 16:29:59 -04:00
|
|
|
|
|
|
|
// 'users' => [
|
|
|
|
// 'driver' => 'database',
|
|
|
|
// 'table' => 'users',
|
|
|
|
// ],
|
2016-01-09 14:23:35 -05:00
|
|
|
],
|
2015-07-12 15:01:42 -04:00
|
|
|
|
2018-12-23 11:26:39 -05:00
|
|
|
// Resetting Passwords
|
|
|
|
// The expire time is the number of minutes that the reset token should be
|
|
|
|
// considered valid. This security feature keeps tokens short-lived so
|
|
|
|
// they have less time to be guessed. You may change this as needed.
|
2016-01-09 14:23:35 -05:00
|
|
|
'passwords' => [
|
|
|
|
'users' => [
|
|
|
|
'provider' => 'users',
|
2021-06-26 11:23:15 -04:00
|
|
|
'email' => 'emails.password',
|
|
|
|
'table' => 'password_resets',
|
|
|
|
'expire' => 60,
|
2021-10-08 18:19:37 -04:00
|
|
|
'throttle' => 60,
|
2016-01-09 14:23:35 -05:00
|
|
|
],
|
2015-07-12 15:01:42 -04:00
|
|
|
],
|
|
|
|
|
2021-10-30 16:29:59 -04:00
|
|
|
// Password Confirmation Timeout
|
|
|
|
// Here you may define the amount of seconds before a password confirmation
|
|
|
|
// times out and the user is prompted to re-enter their password via the
|
|
|
|
// confirmation screen. By default, the timeout lasts for three hours.
|
|
|
|
'password_timeout' => 10800,
|
|
|
|
|
2019-09-15 13:29:51 -04:00
|
|
|
];
|