---
onelab:
  domain: https://localhost
  logs:
 #  path: "/path/to/onelab/logs"
    level: info
  assets:
 #  path: "/path/to/onelab/data"
    purge: 1d
  shared:
    inputs:
      path: "./data/shared/inputs"
      archive_path: "./data/shared/archived"
  security:
    cors: '*'
    auth:
      token:
        expiration: 5m
        key: TokenAuthPlaceholder
      password:
        expiration: 90d
        min_length: 8
        prevent_reuse: 5
      allow_list: []
      block_list: []
      authentifier: "email"
    ratelimit:
      ip:
        max: 1000
        duration: 1d
      auth:
        max: 5
        duration: 5m
        delay_after: 2
        delay_ms: 1000
    devices:
        cors: '*'
    monitoring:
        token: TokenMonitoringPlaceholder
  params:
    session:
      idle: 45m
      remember_me: true
    lab:
      creation_policy: many
    # compliance:
    #   require_electronic_signature: true
    #   execution_operator_restriction_policy: 'reviewed'
    #   execution_admin_expert_restriction_policy: 'reviewed'
    #   prevent_csv_import: true
    #   prevent_manual_metadata_edit: true
    # device_restart: true
    signup: false
    # Google Analytics
    # ga: XXXXX   
    # Intercom Andrew Alliance
    intercom:
      appid: zxvgsagz
      secret: QUw2jEV8utIpe9DeYjOqBjhBY9VxjXddKUCISUNu
    # Recaptcha Andrew Alliance
    # recaptcha:
    #  client: XXXXXXXXXXXX
    #  secret: XXXXXXXXXXXX
    #links:
    #  terms: https://www.andrewalliance.com/onelab-service-agreement.pdf
    #  privacy: https://www.andrewalliance.com/onelab-privacy-policy.pdf
    #  cookies: https://www.andrewalliance.com/onelab-cookie-policy.pdf
  mailer:
    #
    # SMTP
    # smtp:
    #   host: XXX    (optional)
    #   port: XXX    (optional)
    #   auth:    (optional)
    #     user: XXX
    #     pass: XXX
    #     type: custom | login | oauth2    (optional)
    #     method: XXX    (optional)
    #   secure: true | false    (optional)
    #
    # Amazon SES
    # ses:
    #   accessKeyId: XXXX
    #   secretAccessKey: XXXX
    #
    # MailGun
    # mailgun:
    #   auth:
    #     api: XXXX
    #     domain: XXXX
    #
    # Debug
    # debug:
    #   type: file | mail
    #   path: XXXX
    #   redirect: XXX@andrewalliance.com
    #
    noreply: no-reply@andrewalliance.com
    queue:
      scheduling: 15
      maxsize: 50
    error:
      maxtries: 3
      timeout: 60
  ldap:
    enabled: false
    # timeout: 10
    # encryption: plain | tls | start_tls
    # policy: all | changes_only
    # verify_certificates: true | false
    # tls:
    #  ca: file_path
    #  cert: file_path
    #  key: file_path
    #  ciphers: string
    #  ssl_version: string
  services:
    db:
      # host: db
      # Note: port 5432 is the standard port for postgres however a custom port can be used if 5432 is occupied already
      # port: 5432
      database: postgres
      username: postgres
      password: DBPasswordPlaceholder
      schema: onelab
      # replicas: 1
    # redis:
    #   host: redis
    #   port: '6379'
    #   replicas: 1
    rabbit:
      # url: rabbitmq
      # port: 5671
      token: TokenRabbitPlaceholder
      # replicas: 1
    api:
      replicas: 2
    # apidevice:
    #   replicas: 1
    # apirabbit:
    #   replicas: 1
    # devices:
    #   replicas: 1
    # experiments:
    #   replicas: 1
    # images:
    #   replicas: 1
    # manual:
    #   replicas: 1
    # website:
    #   ssr: false
    # ws:
    #   replicas: 1