· 6 years ago · Nov 18, 2019, 02:48 PM
1# This file is an example file for the environment settings used for this application.
2# The defaults are based on local development settings. Change these to your local
3# machine paths and settings. After copying and changing the file run:
4#
5# $ php bin/requirements check
6#
7# on the command line to check the contents of your .env.yml file.
8#
9# Non-required values can be commented out. The command line tool will give you
10# a warning but application should work normally.
11
12# Application
13app:
14 env: testing
15 debug: false
16 key: PxhizstZzUG4Noas5GGjPGuxr5PFNtn2
17 name: LOCAL
18 secure: false
19 timezone: Europe/Amsterdam
20 version:
21
22# Application urls
23url:
24 base: https://apache:44300/
25 upload: https://apache:44300/
26
27# Application paths
28path:
29 base: /app/
30 log: /app/storage/logs/
31 upload: /app/public_html/uploads/
32 # Used for uploading organisation logos
33 logos: /app/public_html/uploads/logos/
34
35# Email address to receive support email
36support_email:
37
38# Database
39db:
40 connection: mysql
41 host: mysql
42 name: passport_testing
43 user: root
44 pass: toor
45 migrate:
46 user: root
47 pass: toor
48 # The database used for unit and integration tests
49 test: testing
50 # Used to verify the database version compatibility
51 mysql:
52 version: 8
53
54# Session
55session:
56 # For local development set this to false (unless you use https)
57 secure: false
58 # Possible values: database, redis, native, file, apc, memcached, wincached, cookie, array
59 driver: array
60 keep_alive_interval: 360000
61
62# Cache
63cache:
64 # Possible values: file, redis, memcached, database, array, apc
65 driver: file
66
67# Broadcasting, used to broadcast events to the browser
68broadcast:
69 # Possible values: redis, pusher, log
70 # When using Pusher you need to define the pusher settings yourself by adding new env variables
71 driver: log
72
73# Redis
74redis:
75 host: passport-redis
76 port: 6379
77
78# Storage
79storage:
80 # Path to the local storage directory
81 local_root_dir: storage/
82 # Maximum filename length for the local storage system
83 filename_maxlength: 255
84 # Storage Encryption key
85 encryption_key: foobar
86 # Storage drivers: objectstore|local|temp
87 # Should never be shared
88 driver: local
89 # Should always be shared
90 shared_driver: shared
91
92# Object Store
93object_store:
94 endpoint: https://identity.stack.cloudvps.com/v2.0
95 tenant:
96 user:
97 pass:
98 # Should be an unique name for this environment. Is local for local development.
99 container:
100 region: NL
101
102# GBR API
103gbr:
104 soap_api:
105 # Should be prodws.kyckr.eu for production environments. Use testws.kyckr.eu for local or staging.
106 wsdl: http://testws.kyckr.eu/GBRRemediationServices.asmx?wsdl
107 username:
108 password:
109 lang: EN_EBR
110 # GBR Product Search cache expiration time (in minutes)
111 product_search_cache_time: 240
112 # The amount of time (in seconds) to wait between consecutive checks while an order is not available
113 order_check_interval: 60
114
115# For exception handling
116errors:
117 # By default we want to log all errors.
118 log_all: false
119 # By default we do not send (all) errors to New Relic
120 new_relic_enabled: false
121
122# Risk calculator
123risk:
124 # On cluster environments the risk calculator is installed in a versioned directory
125 # for maximum compatibility. Hence the suffix v1.
126 calculation_api: http://risk.dev/v1
127 # Selectable risk validity range in months
128 validity:
129 min: 1
130 max: 60
131
132# Mail parsing
133inbox_mail:
134 # Set to true when emails should be removed when they cannot be parsed
135 remove_syntax_incorrect_mail: false
136 # Set to true to remove the email after it has been successfully processed
137 remove_processed: false
138
139# Mails
140mail:
141 # For sending mails without ssl certificate verification
142 no_ssl_verification: true
143 # Email debugging information (0 : off, 1-4 : verbosity level)
144 debug_level: 0
145 # Set to true for multi-tenant environments where there could be multiple organisational domains in use
146 multiple_domains: false
147 from:
148 domain: passport.dev
149 default: info@passport.dev
150 name: Equiniti KYC Solutions - LOCAL
151 host:
152 imap:
153 user:
154 password:
155 smtp:
156 port:
157 encryption:
158
159# Xlsx document decryption service
160documentdecrypter:
161 url: http://some.other.url # https://document-decrypter.apache:44300
162 timeout: 60
163 file_support:
164 # Accept (non password protected) .xls files
165 xls: true
166 # Accept non password protected .xlsx files
167 xlsx_insecure: true
168
169# RabbitMQ
170rabbitmq:
171 host: passport-rabbitmq
172 port: 5672
173 vhost: /
174 login: guest
175 password: guest
176 queue: passport
177
178# Queue
179queue:
180 # The queue driver should be set to sync for integration tests to work.
181 driver: sync
182
183# LexisNexis API
184lexisnexis:
185 wsdl:
186 clientid:
187 userid:
188 password:
189 mail:
190 # In case APP_ENV is local this should be set to false
191 notification: true
192 jurisdiction:
193 value:
194 assignment:
195 # Currently, the system only supports roles (not users)
196 # ROI: Level 1 Personal, CDDUK: UK_NCOB_BPO_L1
197 roles:
198 predefined_search_names:
199 # Valid action_categories are PEP and SANCTION
200 - name: Example Predefined Search name
201 action_category: PEP
202 # Do NOT remove names that are not used anymore but disable them, to display previously configured values correctly.
203 # Not setting enabled: false will assume the predefined search name is enabled.
204 - name: Another Predefined Search name
205 action_category: SANCTION
206 enabled: false
207 api:
208 lookup:
209 # Possible Values: externalapi.requestdispatcher.lexisnexis_sync, externalapi.requestdispatcher.lexisnexis_async
210 dispatcher: externalapi.requestdispatcher.lexisnexis_async
211
212# External api
213external_api:
214 broadcast_driver: log
215 # Deletes the response data older then given days.
216 clean_up_request_older_then_days: 365
217
218# Evidence
219evidence:
220 extraction:
221 max_tries: null
222 retry_interval_minutes: 5
223 # Evidence considered "detached" will be automatically deleted based on the schedule
224 deletion:
225 # Monolog levels: 100, 200, 250, 300, 400, 500, 550, 600
226 log_level: 200
227 schedule: 0 3 ? * SUN#1 *
228
229# Notifications
230notification:
231 purge:
232 older_than_days: 30
233 read_older_than_days: 7
234 retrieval_interval: 60
235
236# Custom logo used for the login screen
237# Should be a path to the file.
238custom_logo:
239
240# Debug bar
241debugbar:
242 enabled: true
243
244# Export encryption
245export_encryption:
246 # When set to true the exports will be zipped and secured with a password
247 enabled: false
248
249# System exports
250system_exports:
251 # Monolog levels: 100, 200, 250, 300, 400, 500, 550, 600
252 log_level: 200
253 # Export chunk data fetching retry handling
254 retry:
255 # Maximum time to spend retying (in seconds) or 0 to disable retrying. (Development value: 0)
256 max_retry_time: 0
257 # Time to wait before retrying (in seconds)
258 delay: 10.0
259 # a list of e-mail addresses that receives a daily export monitor status e-mail
260 monitor_emails:
261 - support@example.com
262 - infra@example.com
263
264# Input API
265input_api:
266 # Set to true to include the fields in the JSON response for the Input JSON API
267 response_include_fields: false
268 # Set to true to include the relations in the JSON response for the Input JSON API
269 response_include_relations: false
270 # Input API connections
271 connections:
272 connection_one:
273 incoming: input-api.incoming
274 outgoing: input-api.%s.outgoing
275 dataset_as_id: false
276 connection_two:
277 incoming: two.input-api.incoming
278 outgoing: two.input_api.%s.outgoing
279 dataset_as_id: true
280
281# Setup
282setup:
283 enabled: true
284
285# Attribute identification ids
286attribute_identification:
287 legal_name: 1
288 personal_name: 52
289 first_name: 53
290 last_name: 54
291 name: 49
292
293# Json API
294json_api:
295 mq:
296 host: rabbitmq
297 port: 5672
298 user: guest
299 pass: guest
300 vhost: /
301
302# Internal api
303internal_api:
304 authentication_token: your-authentication-token
305
306# Authentication
307auth:
308 max_login_attempts: 5
309 # Enable or disable the cooldown period functionality
310 cooldown_enabled: false
311 # The length of the cooldown period in minutes
312 cooldown_period: 30
313 # Enable or disable strict one session per user
314 strict_sessions: false
315 # The length of the password validity period in months. Use null for an unlimited password validity period.
316 password_validity_period: null
317
318
319# Grids
320grids:
321 flatfile:
322 refresh_rate: 5
323 drilldown:
324 show_export_buttons: true
325
326# User settings
327users:
328 inactive_deletion_interval: 5 years
329 inactive_deletion_schedule: 0 22 ? * SAT#1 *
330 time_before_inactive_suspension: 6 months
331 suspend_inactive_schedule: 0 23 ? * SAT#1 *
332 password_reset:
333 enabled: false
334 cleanup_schedule: 0 1 ? * SUN#1 *
335
336# Print API
337print_api: http://review-pdf-service-apache
338
339# Review deletion
340reviews:
341 deletion:
342 schedule: 0 2 ? * SUN#1 *
343
344
345# Logging
346logging:
347 security:
348 # Number of characters of a password that needs to match for it to be masked.
349 minimal_sensitive_phrase_length: 6
350 # Log performance measurements. Should only be enable on loadtest.
351 performance:
352 enabled: false
353 application:
354 # The name of the system logger
355 logger_name: application.logger
356 # The ident to use for logging to the syslog
357 syslog_ident: application
358 # The minimum level to log
359 level: debug
360 # The maximum number of log files to keep, 0 is unlimited
361 max_files: 30
362
363# Conditionality
364conditionality:
365 # Possible values: query, collection
366 validator: query
367
368data_providers:
369 uk_companies_house:
370 api_key: ''
371 url: 'https://api.companieshouse.gov.uk'
372 graydon:
373 url: ''
374 client_id: ''
375 client_secret: ''
376
377powerbi:
378 app_id:
379 app_secret:
380 group_id:
381 username:
382 password: