radicale/config

# -*- mode: conf -*-
# vim:ft=cfg

# Config file for Radicale - A simple calendar server
#
# Place it into /etc/radicale/config (global)
# or ~/.config/radicale/config (user)
#
# The current values are the default ones


[server]

# CalDAV server hostnames separated by a comma
# IPv4 syntax: address:port
# IPv6 syntax: [address]:port
# For example: 0.0.0.0:9999, [::]:9999
#hosts = 127.0.0.1:5232

# Max parallel connections
#max_connections = 8

# Max size of request body (bytes)
#max_content_length = 100000000

# Socket timeout (seconds)
#timeout = 30

# SSL flag, enable HTTPS protocol
#ssl = False

# SSL certificate path
#certificate = /etc/ssl/radicale.cert.pem

# SSL private key
#key = /etc/ssl/radicale.key.pem

# CA certificate for validating clients. This can be used to secure
# TCP traffic between Radicale and a reverse proxy
#certificate_authority =

# SSL Protocol used. See python's ssl module for available values
#protocol = PROTOCOL_TLSv1_2

# Available ciphers. See python's ssl module for available ciphers
#ciphers =

# Reverse DNS to resolve client address in logs
#dns_lookup = True


[encoding]

# Encoding for responding requests
#request = utf-8

# Encoding for storing local collections
#stock = utf-8


[auth]

# Authentication method
# Value: none | htpasswd | remote_user | http_x_remote_user
#type = none

# Htpasswd filename
#htpasswd_filename = /etc/radicale/users

# Htpasswd encryption method
# Value: plain | sha1 | ssha | crypt | bcrypt | md5
# Only bcrypt can be considered secure.
# bcrypt requires the passlib[bcrypt] module and md5 requires
# the passlib module.
#htpasswd_encryption = bcrypt

# Incorrect authentication delay (seconds)
#delay = 1

# Message displayed in the client when a password is needed
#realm = Radicale - Password Required


[rights]

# Rights backend
# Value: none | authenticated | owner_only | owner_write | from_file
#type = owner_only

# File for rights management from_file
#file = /etc/radicale/rights


[storage]

# Storage backend
# Value: multifilesystem
#type = multifilesystem

# Folder for storing local collections, created if not present
#filesystem_folder = /var/lib/radicale/collections

# Delete sync token that are older (seconds)
#max_sync_token_age = 2592000

# Command that is run after changes to storage
# Example: ([ -d .git ] || git init) && git add -A && (git diff --cached --quiet || git commit -m "Changes by "%(user)s)
#hook =


[web]

# Web interface backend
# Value: none | internal
#type = internal


[logging]

# Threshold for the logger
# Value: debug | info | warning | error | critical
#level = warning

# Don't include passwords in logs
#mask_passwords = True


[headers]

# Additional HTTP headers
#Access-Control-Allow-Origin = *
Add a default logging configuration file, and small typo fixes 2011-05-07 12:52:54 +02:00			`# -- mode: conf --`
			`# vim:ft=cfg`

Minor typo fixes 2010-08-04 01:27:40 +02:00			`# Config file for Radicale - A simple calendar server`
Add a default config. The content of the default config is taken from the documentation. Do not forget to modify it to reflect the current state. 2010-08-04 00:08:08 +02:00			`#`
making radicale support authenticated user from apache 2013-08-27 10:55:30 +02:00			`# Place it into /etc/radicale/config (global)`
Add a default config. The content of the default config is taken from the documentation. Do not forget to modify it to reflect the current state. 2010-08-04 00:08:08 +02:00			`# or ~/.config/radicale/config (user)`
			`#`
			`# The current values are the default ones`

Add a default logging configuration file, and small typo fixes 2011-05-07 12:52:54 +02:00
Add a default config. The content of the default config is taken from the documentation. Do not forget to modify it to reflect the current state. 2010-08-04 00:08:08 +02:00			`[server]`
Comment all out in sample config (fix #155) 2014-10-22 14:33:29 +02:00
Clean IPv6 support 2011-04-02 21:45:45 +02:00			`# CalDAV server hostnames separated by a comma`
Disable IPv6 in default configuration 2011-04-02 21:49:48 +02:00			`# IPv4 syntax: address:port`
			`# IPv6 syntax: [address]:port`
Add an example for multiple IP addresses in the configuration file 2013-12-13 14:56:03 +01:00			`# For example: 0.0.0.0:9999, [::]:9999`
Change default values for the config Fix #346. 2017-03-04 14:06:09 +01:00			`#hosts = 127.0.0.1:5232`
Comment all out in sample config (fix #155) 2014-10-22 14:33:29 +02:00
Limit number of parallel connections 2016-06-10 14:36:44 +02:00			`# Max parallel connections`
reduce default parallel connections to 8 2018-08-28 16:19:48 +02:00			`#max_connections = 8`
Limit number of parallel connections 2016-06-10 14:36:44 +02:00
Limit size of request body 2016-06-10 14:34:52 +02:00			`# Max size of request body (bytes)`
Raise default limits 2018-04-29 21:20:23 +02:00			`#max_content_length = 100000000`
Limit size of request body 2016-06-10 14:34:52 +02:00
Add timeout to integrated sever 2016-06-10 14:33:25 +02:00			`# Socket timeout (seconds)`
Raise default limits 2018-04-29 21:20:23 +02:00			`#timeout = 30`
Add timeout to integrated sever 2016-06-10 14:33:25 +02:00
Add a default config. The content of the default config is taken from the documentation. Do not forget to modify it to reflect the current state. 2010-08-04 00:08:08 +02:00			`# SSL flag, enable HTTPS protocol`
Comment all out in sample config (fix #155) 2014-10-22 14:33:29 +02:00			`#ssl = False`

Clean LDAP support 2011-04-25 16:47:42 +02:00			`# SSL certificate path`
Change default values for the config Fix #346. 2017-03-04 14:06:09 +01:00			`#certificate = /etc/ssl/radicale.cert.pem`
Comment all out in sample config (fix #155) 2014-10-22 14:33:29 +02:00
Clean LDAP support 2011-04-25 16:47:42 +02:00			`# SSL private key`
Change default values for the config Fix #346. 2017-03-04 14:06:09 +01:00			`#key = /etc/ssl/radicale.key.pem`
Comment all out in sample config (fix #155) 2014-10-22 14:33:29 +02:00
Add option for CA certificate for validating clients This can be used to secure TCP traffic between Radicale and a reverse proxy 2017-06-02 12:41:03 +02:00			`# CA certificate for validating clients. This can be used to secure`
			`# TCP traffic between Radicale and a reverse proxy`
			`#certificate_authority =`

Add ssl protocol and ciphers in config 2013-12-13 14:31:09 +01:00			`# SSL Protocol used. See python's ssl module for available values`
Change default values for the config Fix #346. 2017-03-04 14:06:09 +01:00			`#protocol = PROTOCOL_TLSv1_2`
Comment all out in sample config (fix #155) 2014-10-22 14:33:29 +02:00
Use argparse to parse command arguments This commit also allows users to specify all the config values through the command line. Fix #154. 2016-10-12 14:30:18 +02:00			`# Available ciphers. See python's ssl module for available ciphers`
Comment all out in sample config (fix #155) 2014-10-22 14:33:29 +02:00			`#ciphers =`

Add a config key to ignore reverse DNS (fixes #779) 2012-03-13 09:35:01 +01:00			`# Reverse DNS to resolve client address in logs`
Comment all out in sample config (fix #155) 2014-10-22 14:33:29 +02:00			`#dns_lookup = True`

Clean the config file 2011-10-03 00:31:15 +02:00
Add a default config. The content of the default config is taken from the documentation. Do not forget to modify it to reflect the current state. 2010-08-04 00:08:08 +02:00			`[encoding]`
Comment all out in sample config (fix #155) 2014-10-22 14:33:29 +02:00
Add a default config. The content of the default config is taken from the documentation. Do not forget to modify it to reflect the current state. 2010-08-04 00:08:08 +02:00			`# Encoding for responding requests`
Comment all out in sample config (fix #155) 2014-10-22 14:33:29 +02:00			`#request = utf-8`

Change "calendar" into "collection" when needed. WARNING: the default folders storing calendars/addressbooks have been changed 2012-01-25 14:53:46 +01:00			`# Encoding for storing local collections`
Comment all out in sample config (fix #155) 2014-10-22 14:33:29 +02:00			`#stock = utf-8`

Add a default config. The content of the default config is taken from the documentation. Do not forget to modify it to reflect the current state. 2010-08-04 00:08:08 +02:00
Code cleaned and modules renamed Radicale is probably broken now 2012-08-08 18:29:09 +02:00			`[auth]`
Comment all out in sample config (fix #155) 2014-10-22 14:33:29 +02:00
Code cleaned and modules renamed Radicale is probably broken now 2012-08-08 18:29:09 +02:00			`# Authentication method`
Rename backends from None to none All other backend names are lower case. 2017-05-31 12:01:39 +02:00			`# Value: none \| htpasswd \| remote_user \| http_x_remote_user`
			`#type = none`
Clean the config file 2011-10-03 00:31:15 +02:00
Clean LDAP support 2011-04-25 16:47:42 +02:00			`# Htpasswd filename`
Comment all out in sample config (fix #155) 2014-10-22 14:33:29 +02:00			`#htpasswd_filename = /etc/radicale/users`

Clean LDAP support 2011-04-25 16:47:42 +02:00			`# Htpasswd encryption method`
Add md5 and bcrypt as available encryptions methods for htpasswd in config file 2015-10-21 02:09:11 +02:00			`# Value: plain \| sha1 \| ssha \| crypt \| bcrypt \| md5`
Change default values for the config Fix #346. 2017-03-04 14:06:09 +01:00			`# Only bcrypt can be considered secure.`
Switch from md5 to sha256 for UIDs and tokens 2020-01-15 11:20:48 +01:00			`# bcrypt requires the passlib[bcrypt] module and md5 requires`
			`# the passlib module.`
Change default values for the config Fix #346. 2017-03-04 14:06:09 +01:00			`#htpasswd_encryption = bcrypt`
Clean the config file 2011-10-03 00:31:15 +02:00
Move authentication delay into __init__.py and add config Use the delay for all backends (not only htpasswd). Add configuration option to configure the delay. 2017-05-23 03:11:41 +02:00			`# Incorrect authentication delay (seconds)`
			`#delay = 1`

Move `realm` config from `server` to `auth` 2018-08-16 08:00:01 +02:00			`# Message displayed in the client when a password is needed`
			`#realm = Radicale - Password Required`

Adds the committer in the config + python3 support 2013-09-13 17:21:50 +02:00
Code cleaned and modules renamed Radicale is probably broken now 2012-08-08 18:29:09 +02:00			`[rights]`
Comment all out in sample config (fix #155) 2014-10-22 14:33:29 +02:00
Different rights management backends Initially only one backend - regular expressions based 2013-12-25 00:13:56 +01:00			`# Rights backend`
Rename backends from None to none All other backend names are lower case. 2017-05-31 12:01:39 +02:00			`# Value: none \| authenticated \| owner_only \| owner_write \| from_file`
Change default values for the config Fix #346. 2017-03-04 14:06:09 +01:00			`#type = owner_only`
Code cleaned and modules renamed Radicale is probably broken now 2012-08-08 18:29:09 +02:00
Use a more simple rights manager 2013-08-14 10:50:59 +02:00			`# File for rights management from_file`
Change default values for the config Fix #346. 2017-03-04 14:06:09 +01:00			`#file = /etc/radicale/rights`
Added file-based rights management 2012-08-11 00:56:45 +02:00
Code cleaned and modules renamed Radicale is probably broken now 2012-08-08 18:29:09 +02:00
Add a default config. The content of the default config is taken from the documentation. Do not forget to modify it to reflect the current state. 2010-08-04 00:08:08 +02:00			`[storage]`
Comment all out in sample config (fix #155) 2014-10-22 14:33:29 +02:00
Split the storage filesystem backend into another file 2012-01-12 02:18:06 +01:00			`# Storage backend`
Remove extra auth, rights and storage modules 2016-04-07 19:02:52 +02:00			`# Value: multifilesystem`
Update and fix some config values 2017-03-08 15:50:24 +01:00			`#type = multifilesystem`
Split the storage filesystem backend into another file 2012-01-12 02:18:06 +01:00
Change "calendar" into "collection" when needed. WARNING: the default folders storing calendars/addressbooks have been changed 2012-01-25 14:53:46 +01:00			`# Folder for storing local collections, created if not present`
Update and fix some config values 2017-03-08 15:50:24 +01:00			`#filesystem_folder = /var/lib/radicale/collections`
Split the storage filesystem backend into another file 2012-01-12 02:18:06 +01:00
Real sync-collection support for the multifilesystem backend 2017-06-02 12:44:39 +02:00			`# Delete sync token that are older (seconds)`
			`#max_sync_token_age = 2592000`

Add hook for storage changes 2016-06-11 10:34:18 +02:00			`# Command that is run after changes to storage`
Add git init to config hook example The example code previously required to manually create a git repo first. Above change automates this. 2017-04-22 17:40:29 +02:00			`# Example: ([ -d .git ] \|\| git init) && git add -A && (git diff --cached --quiet \|\| git commit -m "Changes by "%(user)s)`
Use argparse to parse command arguments This commit also allows users to specify all the config values through the command line. Fix #154. 2016-10-12 14:30:18 +02:00			`#hook =`
Add hook for storage changes 2016-06-11 10:34:18 +02:00
Clean the config file 2011-10-03 00:31:15 +02:00
Add web interface module 2017-05-31 13:18:40 +02:00			`[web]`

			`# Web interface backend`
Web interface for managing calendars and addressbooks 2017-05-31 13:18:42 +02:00			`# Value: none \| internal`
			`#type = internal`
Add web interface module 2017-05-31 13:18:40 +02:00

Add logs (fixes #162) 2011-04-10 18:17:06 +02:00			`[logging]`
Comment all out in sample config (fix #155) 2014-10-22 14:33:29 +02:00
Replace option "debug" with "level" in "logging" 2018-08-16 08:00:02 +02:00			`# Threshold for the logger`
			`# Value: debug \| info \| warning \| error \| critical`
			`#level = warning`
Use argparse to parse command arguments This commit also allows users to specify all the config values through the command line. Fix #154. 2016-10-12 14:30:18 +02:00
Don't include passwords in logs 2016-06-11 12:53:58 +02:00			`# Don't include passwords in logs`
			`#mask_passwords = True`

Allow additional HTTP headers in configuration file Best ratio coolness/sloc ever! 2013-05-13 18:15:08 +02:00
Comment all out in sample config (fix #155) 2014-10-22 14:33:29 +02:00			`[headers]`
Allow additional HTTP headers in configuration file Best ratio coolness/sloc ever! 2013-05-13 18:15:08 +02:00
			`# Additional HTTP headers`
			`#Access-Control-Allow-Origin = *`