diff --git a/conf/.env.example b/conf/.env.example index 56fff24..320b72b 100644 --- a/conf/.env.example +++ b/conf/.env.example @@ -25,6 +25,16 @@ APP_URL=https://__DOMAIN____PATH__ # May be overridden by user-preference or visitor browser settings. APP_LANG=__LANGUAGE__ +# Auto-detect language for public visitors. +# Uses browser-sent headers to infer a language. +# APP_LANG will be used if such a header is not provided. +APP_AUTO_LANG_PUBLIC=true + +# Application timezone +# Used where dates are displayed such as on exported content. +# Valid timezone values can be found here: https://www.php.net/manual/en/timezones.php +APP_TIMEZONE=UTC + # Database details DB_HOST=localhost DB_DATABASE=__DB_NAME__ @@ -51,45 +61,17 @@ MAIL_ENCRYPTION=null # General auth AUTH_METHOD=standard -# The LDAP host, Adding a port is optional +# LDAP authentication configuration +# Refer to https://www.bookstackapp.com/docs/admin/ldap-auth/ LDAP_SERVER=ldap://127.0.0.1:389 -# If using LDAP over SSL you should also define the protocol: -# LDAP_SERVER=ldaps://example.com:636 - -# The base DN from where users will be searched within LDAP_BASE_DN=ou=users,dc=yunohost,dc=org - -# The full DN and password of the user used to search the server -# Can both be left as false to bind anonymously LDAP_DN=false LDAP_PASS=false - -# A filter to use when searching for users -# The user-provided user-name used to replace any occurrences of '${user}' -# If you're setting this option via other means, such as within a docker-compose.yml, -# you may need escape the $, often using $$ or \$ instead. LDAP_USER_FILTER=(&(|(objectclass=posixAccount))(uid={{username}})(permission=cn=__APP__.main,ou=permission,dc=yunohost,dc=org)) - -# Set the LDAP version to use when connecting to the server LDAP_VERSION=false - -# Set the property to use as a unique identifier for this user. -# Stored and used to match LDAP users with existing BookStack users. -# Prefixing the value with 'BIN;' will assume the LDAP service provides the attribute value as -# binary data and BookStack will convert the value to a hexidecimal representation. -# Defaults to 'uid'. +LDAP_TLS_INSECURE=false LDAP_ID_ATTRIBUTE=uid - -# Set the default 'email' attribute. Defaults to 'mail' LDAP_EMAIL_ATTRIBUTE=mail - -# Set the property to use for a user's display name. Defaults to 'cn' LDAP_DISPLAY_NAME_ATTRIBUTE=cn - -# If you need to allow untrusted LDAPS certificates, add the below and uncomment (remove the #) -# Only set this option if debugging or you're absolutely sure it's required for your setup. -#LDAP_TLS_INSECURE=true - -# If you need to debug the details coming from your LDAP server, add the below and uncomment (remove the #) -# Only set this option if debugging since it will block logins and potentially show private details. -#LDAP_DUMP_USER_DETAILS=true +LDAP_FOLLOW_REFERRALS=true +LDAP_DUMP_USER_DETAILS=false