javier/Stirling-PDF
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Merge pull request #2427 from Stirling-Tools/testStuff

Browse Source 
X-API-key to X-API-KEY and enable CSRF protection for all users
This commit is contained in:
Anthony Stirling
2024-12-11 21:52:57 +00:00
committed by GitHub
parent 93e190fdeb 58c7d7b9a8
commit 026fe8150d
24 changed files with 540 additions and 287 deletions
Download Patch File Download Diff File Expand all files Collapse all files

5
src/main/resources/settings.yml.template
View File

@@ -13,7 +13,7 @@
security:
enableLogin: false # set to 'true' to enable login
csrfDisabled: true # set to 'true' to disable CSRF protection (not recommended for production)
csrfDisabled: false # set to 'true' to disable CSRF protection (not recommended for production)
loginAttemptCount: 5 # lock user account after 5 tries; when using e.g. Fail2Ban you can deactivate the function with -1
loginResetTimeMinutes: 120 # lock account for 2 hours after x attempts
loginMethod: all # Accepts values like 'all' and 'normal'(only Login with Username/Password), 'oauth2'(only Login with OAuth2) or 'saml2'(only Login with SAML2)
@@ -102,7 +102,8 @@ metrics:
AutomaticallyGenerated:
key: example
UUID: example
appVersion: 0.35.0
processExecutor:
sessionLimit: # Process executor instances limits
libreOfficeSessionLimit: 1