2018-09-08 13:29:35 +02:00
service:
2018-09-08 13:50:05 +02:00
# This token is used to verify issued JWT tokens.
# Default is a random token which will be generated at each startup of vikunja.
# (This means all already issued tokens will be invalid once you restart vikunja)
2019-01-21 22:52:26 +01:00
JWTSecret: "<jwt-secret>"
2021-10-09 13:02:28 +02:00
# The duration of the issed JWT tokens in seconds.
# The default is 259200 seconds (3 Days).
jwtttl: 259200
2022-02-06 14:18:08 +01:00
# The duration of the "remember me" time in seconds. When the login request is made with
# the long param set, the token returned will be valid for this period.
# The default is 2592000 seconds (30 Days).
jwtttllong: 2592000
2018-09-08 13:29:35 +02:00
# The interface on which to run the webserver
2018-09-08 13:50:05 +02:00
interface: ":3456"
2021-07-08 10:13:01 +02:00
# Path to Unix socket. If set, it will be created and used instead of tcp
unixsocket:
# Permission bits for the Unix socket. Note that octal values must be prefixed by "0o", e.g. 0o660
unixsocketmode:
2018-10-27 11:33:28 +02:00
# The URL of the frontend, used to send password reset emails.
frontendurl: ""
2018-12-18 17:01:46 +01:00
# The base path on the file system where the binary and assets are.
# Vikunja will also look in this path for a config file, so you could provide only this variable to point to a folder
# with a config file which will then be used.
2019-01-21 22:52:26 +01:00
rootpath: <rootpath>
2022-05-23 22:49:28 +02:00
# Path on the file system to serve static files from. Set to the path of the frontend files to host frontend alongside the api.
staticpath: ""
2019-10-23 23:11:40 +02:00
# The max number of items which can be returned per page
maxitemsperpage: 50
2019-05-22 19:48:48 +02:00
# Enable the caldav endpoint, see the docs for more details
enablecaldav: true
2019-12-25 17:27:10 +01:00
# Set the motd message, available from the /info endpoint
motd: ""
2019-08-31 22:56:41 +02:00
# Enable sharing of lists via a link
enablelinksharing: true
2019-12-31 00:27:02 +01:00
# Whether to let new users registering themselves or not
enableregistration: true
2020-01-26 20:10:31 +01:00
# Whether to enable task attachments or not
enabletaskattachments: true
2021-05-07 12:18:21 +02:00
# The time zone all timestamps are in. Please note that time zones have to use [the official tz database names](https://en.wikipedia.org/wiki/List_of_tz_database_time_zones). UTC or GMT offsets won't work.
2020-02-08 13:48:49 +01:00
timezone: GMT
2020-02-19 22:57:56 +01:00
# Whether task comments should be enabled or not
enabletaskcomments: true
2020-05-29 17:15:59 +02:00
# Whether totp is enabled. In most cases you want to leave that enabled.
enabletotp: true
2020-06-19 20:47:15 +02:00
# If not empty, enables logging of crashes and unhandled errors in sentry.
sentrydsn: ''
2020-11-29 00:08:30 +01:00
# If not empty, this will enable `/test/{table}` endpoints which allow to put any content in the database.
# Used to reset the db before frontend tests. Because this is quite a dangerous feature allowing for lots of harm,
# each request made to this endpoint neefs to provide an `Authorization: <token>` header with the token from below. <br/>
# **You should never use this unless you know exactly what you're doing**
testingtoken: ''
2020-12-19 00:21:17 +01:00
# If enabled, vikunja will send an email to everyone who is either assigned to a task or created it when a task reminder
# is due.
enableemailreminders: true
2021-08-11 21:08:10 +02:00
# If true, will allow users to request the complete deletion of their account. When using external authentication methods
# it may be required to coordinate with them in order to delete the account. This setting will not affect the cli commands
# for user deletion.
enableuserdeletion: true
2022-06-12 18:29:12 +02:00
# The maximum size clients will be able to request for user avatars.
# If clients request a size bigger than this, it will be changed on the fly.
maxavatarsize: 1024
2018-09-08 13:29:35 +02:00
database:
2020-02-16 22:42:04 +01:00
# Database type to use. Supported types are mysql, postgres and sqlite.
2018-09-08 13:29:35 +02:00
type: "sqlite"
2018-09-08 13:50:05 +02:00
# Database user which is used to connect to the database.
user: "vikunja"
2022-04-23 17:46:00 +02:00
# Database password
2018-09-08 13:50:05 +02:00
password: ""
2022-04-23 17:46:00 +02:00
# Database host
2018-09-08 13:50:05 +02:00
host: "localhost"
2022-04-23 17:46:00 +02:00
# Database to use
2018-09-08 13:29:35 +02:00
database: "vikunja"
# When using sqlite, this is the path where to store the data
2020-06-22 23:13:41 +02:00
path: "./vikunja.db"
2020-02-16 22:42:04 +01:00
# Sets the max open connections to the database. Only used when using mysql and postgres.
2019-05-25 07:49:52 +02:00
maxopenconnections: 100
# Sets the maximum number of idle connections to the db.
maxidleconnections: 50
# The maximum lifetime of a single db connection in miliseconds.
maxconnectionlifetime: 10000
2020-02-16 22:42:04 +01:00
# Secure connection mode. Only used with postgres.
# (see https://pkg.go.dev/github.com/lib/pq?tab=doc#hdr-Connection_String_Parameters)
sslmode: disable
2022-04-23 17:46:00 +02:00
# The path to the client cert. Only used with postgres.
sslcert: ""
# The path to the client key. Only used with postgres.
sslkey: ""
# The path to the ca cert. Only used with postgres.
sslrootcert: ""
2021-05-08 16:54:55 +02:00
# Enable SSL/TLS for mysql connections. Options: false, true, skip-verify, preferred
tls: false
2018-12-12 23:50:35 +01:00
2018-12-18 17:01:46 +01:00
cache:
# If cache is enabled or not
enabled: false
2020-10-10 18:53:59 +02:00
# Cache type. Possible values are "keyvalue", "memory" or "redis".
# When choosing "keyvalue" this setting follows the one configured in the "keyvalue" section.
# When choosing "redis" you will need to configure the redis connection seperately.
type: keyvalue
2018-12-18 17:01:46 +01:00
# When using memory this defines the maximum size an element can take
maxelementsize: 1000
2018-12-12 23:50:35 +01:00
redis:
# Whether to enable redis or not
enabled: false
# The host of the redis server including its port.
2019-02-17 20:53:04 +01:00
host: 'localhost:6379'
2018-12-12 23:50:35 +01:00
# The password used to authenicate against the redis server
2019-02-17 20:53:04 +01:00
password: ''
2018-12-12 23:50:35 +01:00
# 0 means default database
db: 0
2020-01-26 20:09:54 +01:00
cors:
# Whether to enable or disable cors headers.
2020-05-12 11:10:07 +02:00
# Note: If you want to put the frontend and the api on seperate domains or ports, you will need to enable this.
# Otherwise the frontend won't be able to make requests to the api through the browser.
2020-01-26 20:09:54 +01:00
enable: true
2020-12-16 13:23:26 +01:00
# A list of origins which may access the api. These need to include the protocol (`http://` or `https://`) and port, if any.
2020-01-26 20:09:54 +01:00
origins:
2020-03-20 22:21:44 +01:00
- "*"
2020-01-26 20:09:54 +01:00
# How long (in seconds) the results of a preflight request can be cached.
maxage: 0
2018-09-13 19:53:03 +02:00
2018-10-27 11:33:28 +02:00
mailer:
2018-12-19 22:05:25 +01:00
# Whether to enable the mailer or not. If it is disabled, all users are enabled right away and password reset is not possible.
enabled: false
2018-10-27 11:33:28 +02:00
# SMTP Host
2018-12-18 17:01:46 +01:00
host: ""
2018-10-27 11:33:28 +02:00
# SMTP Host port
port: 587
2022-06-19 16:26:17 +02:00
# SMTP Auth Type. Can be either `plain`, `login` or `cram-md5`.
authtype: "plain"
2018-10-27 11:33:28 +02:00
# SMTP username
2018-12-18 17:01:46 +01:00
username: "user"
2018-10-27 11:33:28 +02:00
# SMTP password
2018-12-18 17:01:46 +01:00
password: ""
2018-10-27 11:33:28 +02:00
# Wether to skip verification of the tls certificate on the server
skiptlsverify: false
# The default from address when sending emails
2018-12-18 17:01:46 +01:00
fromemail: "mail@vikunja"
# The length of the mail queue.
queuelength: 100
# The timeout in seconds after which the current open connection to the mailserver will be closed.
2019-01-25 12:40:54 +01:00
queuetimeout: 30
2020-07-14 17:30:39 +02:00
# By default, vikunja will try to connect with starttls, use this option to force it to use ssl.
forcessl: false
2019-01-25 12:40:54 +01:00
log:
# A folder where all the logfiles should go.
path: <rootpath>logs
# Whether to show any logging at all or none
enabled: true
2019-01-25 21:09:24 +01:00
# Where the normal log should go. Possible values are stdout, stderr, file or off to disable standard logging.
2019-01-25 12:40:54 +01:00
standard: "stdout"
2020-04-12 22:32:21 +02:00
# Change the log level. Possible values (case-insensitive) are CRITICAL, ERROR, WARNING, NOTICE, INFO, DEBUG.
level: "INFO"
2019-01-25 21:09:24 +01:00
# Whether or not to log database queries. Useful for debugging. Possible values are stdout, stderr, file or off to disable database logging.
2019-01-25 12:40:54 +01:00
database: "off"
2020-04-12 22:32:21 +02:00
# The log level for database log messages. Possible values (case-insensitive) are CRITICAL, ERROR, WARNING, NOTICE, INFO, DEBUG.
databaselevel: "WARNING"
2019-01-25 21:09:24 +01:00
# Whether to log http requests or not. Possible values are stdout, stderr, file or off to disable http logging.
2019-01-25 12:40:54 +01:00
http: "stdout"
2019-01-25 21:09:24 +01:00
# Echo has its own logging which usually is unnessecary, which is why it is disabled by default. Possible values are stdout, stderr, file or off to disable standard logging.
2019-07-21 23:27:30 +02:00
echo: "off"
2021-02-02 23:48:37 +01:00
# Whether or not to log events. Useful for debugging. Possible values are stdout, stderr, file or off to disable events logging.
events: "stdout"
# The log level for event log messages. Possible values (case-insensitive) are ERROR, INFO, DEBUG.
eventslevel: "info"
2019-07-21 23:27:30 +02:00
ratelimit:
# whether or not to enable the rate limit
enabled: false
# The kind on which rates are based. Can be either "user" for a rate limit per user or "ip" for an ip-based rate limit.
kind: user
# The time period in seconds for the limit
period: 60
# The max number of requests a user is allowed to do in the configured time period
limit: 100
2020-10-10 18:53:59 +02:00
# The store where the limit counter for each user is stored.
# Possible values are "keyvalue", "memory" or "redis".
# When choosing "keyvalue" this setting follows the one configured in the "keyvalue" section.
store: keyvalue
2019-10-16 22:52:29 +02:00
files:
# The path where files are stored
basepath: ./files # relative to the binary
2019-10-18 17:30:25 +02:00
# The maximum size of a file, as a human-readable string.
# Warning: The max size is limited 2^64-1 bytes due to the underlying datatype
maxsize: 20MB
2020-01-19 17:52:16 +01:00
migration:
# These are the settings for the wunderlist migrator
wunderlist:
# Wheter to enable the wunderlist migrator or not
2020-02-17 18:29:17 +01:00
enable: false
2020-01-19 17:52:16 +01:00
# The client id, required for making requests to the wunderlist api
# You need to register your vikunja instance at https://developer.wunderlist.com/apps/new to get this
clientid:
# The client secret, also required for making requests to the wunderlist api
clientsecret:
# The url where clients are redirected after they authorized Vikunja to access their wunderlist stuff.
# This needs to match the url you entered when registering your Vikunja instance at wunderlist.
2020-02-17 19:52:26 +01:00
# This is usually the frontend url where the frontend then makes a request to /migration/wunderlist/migrate
2020-01-19 17:52:16 +01:00
# with the code obtained from the wunderlist api.
2020-02-17 19:52:26 +01:00
# Note that the vikunja frontend expects this to be /migrate/wunderlist
2020-01-19 17:52:16 +01:00
redirecturl:
2020-05-23 22:50:54 +02:00
todoist:
# Wheter to enable the todoist migrator or not
enable: false
2020-12-17 14:44:04 +01:00
# The client id, required for making requests to the todoist api
2020-05-23 22:50:54 +02:00
# You need to register your vikunja instance at https://developer.todoist.com/appconsole.html to get this
clientid:
# The client secret, also required for making requests to the todoist api
clientsecret:
# The url where clients are redirected after they authorized Vikunja to access their todoist items.
# This needs to match the url you entered when registering your Vikunja instance at todoist.
# This is usually the frontend url where the frontend then makes a request to /migration/todoist/migrate
# with the code obtained from the todoist api.
# Note that the vikunja frontend expects this to be /migrate/todoist
2021-08-14 18:27:29 +02:00
redirecturl: <frontend url>/migrate/todoist
2020-12-17 14:44:04 +01:00
trello:
# Wheter to enable the trello migrator or not
enable: false
# The client id, required for making requests to the trello api
# You need to register your vikunja instance at https://trello.com/app-key (log in before you visit that link) to get this
key:
# The url where clients are redirected after they authorized Vikunja to access their trello cards.
# This needs to match the url you entered when registering your Vikunja instance at trello.
# This is usually the frontend url where the frontend then makes a request to /migration/trello/migrate
# with the code obtained from the trello api.
# Note that the vikunja frontend expects this to end on /migrate/trello.
redirecturl: <frontend url>/migrate/trello
2020-12-18 12:12:05 +01:00
microsofttodo:
# Wheter to enable the microsoft todo migrator or not
enable: false
# The client id, required for making requests to the microsoft graph api
# See https://docs.microsoft.com/en-us/azure/active-directory/develop/quickstart-register-app#register-an-application
# for information about how to register your vikuinja instance.
clientid:
# The client secret, also required for making requests to the microsoft graph api
clientsecret:
# The url where clients are redirected after they authorized Vikunja to access their microsoft todo tasks.
# This needs to match the url you entered when registering your Vikunja instance at microsoft.
# This is usually the frontend url where the frontend then makes a request to /migration/microsoft-todo/migrate
# with the code obtained from the microsoft graph api.
# Note that the vikunja frontend expects this to be /migrate/microsoft-todo
redirecturl: <frontend url>/migrate/microsoft-todo
2020-03-01 22:10:25 +01:00
avatar:
# When using gravatar, this is the duration in seconds until a cached gravatar user avatar expires
gravatarexpiration: 3600
2020-05-26 22:07:55 +02:00
backgrounds:
# Whether to enable backgrounds for lists at all.
2020-06-23 22:53:23 +02:00
enabled: true
2020-05-26 22:07:55 +02:00
providers:
2020-06-11 19:31:37 +02:00
upload:
# Whethere to enable uploaded list backgrounds
2020-06-23 22:53:23 +02:00
enabled: true
2020-05-26 22:07:55 +02:00
unsplash:
# Whether to enable setting backgrounds from unsplash as list backgrounds
enabled: false
# You need to create an application for your installation at https://unsplash.com/oauth/applications/new
# and set the access token below.
accesstoken:
# The unsplash application id is only used for pingback and required as per their api guidelines.
# You can find the Application ID in the dashboard for your API application. It should be a numeric ID.
# It will only show in the UI if your application has been approved for Enterprise usage, therefore if
# you’ re in Demo mode, you can also find the ID in the URL at the end: https://unsplash.com/oauth/applications/:application_id
applicationid:
2020-07-18 18:53:56 +02:00
# Legal urls
# Will be shown in the frontend if configured here
legal:
imprinturl:
privacyurl:
2020-10-10 18:53:59 +02:00
# Key Value Storage settings
# The Key Value Storage is used for different kinds of things like metrics and a few cache systems.
keyvalue:
# The type of the storage backend. Can be either "memory" or "redis". If "redis" is chosen it needs to be configured seperately.
type: "memory"
2020-11-21 17:38:58 +01:00
auth:
# Local authentication will let users log in and register (if enabled) through the db.
# This is the default auth mechanism and does not require any additional configuration.
local:
# Enable or disable local authentication
enabled: true
# OpenID configuration will allow users to authenticate through a third-party OpenID Connect compatible provider.<br/>
# The provider needs to support the `openid`, `profile` and `email` scopes.<br/>
2021-05-16 13:23:10 +02:00
# **Note:** Some openid providers (like gitlab) only make the email of the user available through openid claims if they have set it to be publicly visible.
# If the email is not public in those cases, authenticating will fail.
# **Note 2:** The frontend expects to be redirected after authentication by the third party
2020-11-21 17:38:58 +01:00
# to <frontend-url>/auth/openid/<auth key>. Please make sure to configure the redirect url with your third party
# auth service accordingy if you're using the default vikunja frontend.
2021-05-16 13:23:10 +02:00
# Take a look at the [default config file](https://kolaente.dev/vikunja/api/src/branch/main/config.yml.sample) for more information about how to configure openid authentication.
2020-11-21 17:38:58 +01:00
openid:
# Enable or disable OpenID Connect authentication
enabled: false
# The url to redirect clients to. Defaults to the configured frontend url. If you're using Vikunja with the official
# frontend, you don't need to change this value.
2022-08-09 10:48:38 +02:00
# **Note:** The redirect url must exactly match the configured redirect url with the third party provider.
# This includes all slashes at the end or protocols.
2020-11-21 17:38:58 +01:00
redirecturl: <frontend url>
# A list of enabled providers
providers:
# The name of the provider as it will appear in the frontend.
- name:
# The auth url to send users to if they want to authenticate using OpenID Connect.
authurl:
# The client ID used to authenticate Vikunja at the OpenID Connect provider.
clientid:
# The client secret used to authenticate Vikunja at the OpenID Connect provider.
clientsecret:
2021-02-28 11:29:53 +01:00
# Prometheus metrics endpoint
metrics:
# If set to true, enables a /metrics endpoint for prometheus to collect metrics about Vikunja.
enabled: false
# If set to a non-empty value the /metrics endpoint will require this as a username via basic auth in combination with the password below.
username:
# If set to a non-empty value the /metrics endpoint will require this as a password via basic auth in combination with the username below.
password: