config.adoc 9.9 KB

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133
  1. [#config]
  2. = Configuration
  3. OliveTin is controlled by a `config.yaml` file. On startup, it looks for this
  4. file in the following locations;
  5. 1. The value specified by the `--configdir` argument, which defaults to the current working directory (`./`)
  6. 2. `/config/` - Mostly used for containers
  7. 3. `/etc/OliveTin/` - this is the recommended directory on Linux for your `config.yaml`.
  8. The most simple `config.yaml` would be something like this;
  9. .The most simple `config.yaml` file.
  10. [source,yaml]
  11. ----
  12. actions:
  13. - title: "Hello world!"
  14. shell: echo 'Hello World!'
  15. ----
  16. The configuration does not really get more complicated than that. You can of course add more actions, and customize more, but the syntax otherwise extremely simple.
  17. For building up from here, look at the following resources;
  18. * See the xref:action_examples/intro.adoc[action examples] section for extra examples of what OliveTin could be configured to do.
  19. * See the xref:action_customization/intro.adoc[action customization] documentation to customize how those actions work.
  20. * See the xref:solutions/intro.adoc[Solutions] documentation for just the essential configuration to achieve popular use cases.
  21. All configuration options are covered in the solution sections
  22. [#config-list]
  23. == Core functionality
  24. |===
  25. | Option | Description | Default | Live Reloadable | Documentation
  26. | `actions` | The list of available actions. | `-` | Live Reloadable, but refreshing the web browser is recommended. | xref:action_examples/intro.adoc[Action examples]
  27. | `entities` | A list of "things" you can attach actions to. | `-` | Live Reloadable, but restart is recommended. | xref:entities/intro.adoc[Entities]
  28. | `dashboards` | A grouping of actions, with optional displays, or actions generated from entities. | `-` | Live Reloadable | xref:dashboards/intro.adoc[Dashboards]
  29. |===
  30. == UI Customization
  31. |===
  32. | Option | Description | Default | Live Reloadable | Documentation
  33. | `pageTitle` | A custom title for the OliveTin page. | `OliveTin` | Live reloadable | xref:advanced_configuration/webui.adoc[Customize the web UI].
  34. | `showFooter` | Show (or hide) the footer. | `true` | Live reloadable | xref:advanced_configuration/webui.adoc[Customize the web UI].
  35. | `showNewVersions` | Show (or hide) new versions in the footer. | `true` | Live reloadable | xref:advanced_configuration/webui.adoc[Customize the web UI].
  36. | `defaultPolicy.showVersionNumber` | Show (or hide) the application version in the footer. Can be overridden per user/group in ACLs. | `true` | Requires restart | xref:reference/version_display.adoc[Version display]
  37. | `showNavigation` | Show (or hide) the sidebar/topbar section navigation. | `true` | Live reloadable | xref:advanced_configuration/webui.adoc[Customize the web UI].
  38. | `showNavigateOnStartIcons` | Show (or hide) the small icons on action buttons that indicate popup/argument/background behavior on start. | `true` | Live reloadable | xref:advanced_configuration/webui.adoc[Customize the web UI].
  39. | `sectionNavigationStyle` | The style of the section navigation. `sidebar`, `topbar` | `sidebar` | Live reloadable | xref:advanced_configuration/webui.adoc[Customize the web UI].
  40. | `defaultPopupOnStart` | The default popup to show on start. | `none` | Live reloadable | xref:action_customization/popuponstart.adoc[Popup On Start].
  41. | `defaultIconForActions` | The default icon to use for actions. | `smile` | Requires Restart | -
  42. | `defaultIconForDirectories` | The default icon to use for directories. | `directory` | Requires Restart | -
  43. | `defaultIconForBack` | The default icon to use for back (from directories). | `«` | Requires Restart | -
  44. | `enableCustomJs` | Enable custom JavaScript. | `false` | Live Reloadable, but refreshing the web browser is required. | xref:advanced_configuration/webui.adoc[Custom JS].
  45. | `themeName` | The theme to use. | `` | Restart recommended | xref:reference/reference_themes_for_users.adoc[Themes].
  46. |===
  47. == Security Configuration
  48. |===
  49. | Option | Description | Default | Live Reloadable | Documentation
  50. | `AuthJwtCookieName` | The name of the cookie to use for JWT authentication. | `` | Requires restart | xref:security/jwt_hmac.adoc[JWT with HMAC], xref:security/jwt_keys.adoc[JWT with Keys]
  51. | `AuthJwtAud` | The audience to use for JWT authentication. | `` | Requires restart | xref:security/jwt_keys.adoc[JWT with Keys]
  52. | `AuthJwtDomain` | The domain to use for JWT authentication. | `` | Requires restart | xref:security/jwt_hmac.adoc[JWT with HMAC], xref:security/jwt_keys.adoc[JWT with Keys]
  53. | `AuthJwtCertsURL` | The URL to fetch the public keys from with JWKS | `` | Requires restart | xref:security/jwt_keys.adoc[JWT with Keys]
  54. | `AuthJwtClaimUsername` | The claim to use for the username. | `sub` | Requires restart | xref:security/jwt_hmac.adoc[JWT with HMAC], xref:security/jwt_keys.adoc[JWT with Keys]
  55. | `AuthJwtClaimUserGroup` | The claim to use for the usergroup. | `sub` | Requires restart | xref:security/jwt_hmac.adoc[JWT with HMAC], xref:security/jwt_keys.adoc[JWT with Keys]
  56. | `AuthJwtHeader` | The HTTP header to use for JWT authentication. | `` | Requires restart | xref:security/jwt_keys.adoc[JWT with Keys]
  57. | `AuthJwtPubKeyPath` | The path to the public key to use for JWT authentication. | `` | Requires restart | xref:security/jwt_keys.adoc[JWT with Keys]
  58. | `AuthHttpHeaderUsername` | The HTTP header to use for the username. | `` | Requires restart | xref:security/trusted_header.adoc[Trusted Headers]
  59. | `AuthHttpHeaderUserGroup` | The HTTP header to use for the usergroup. | `` | Requires restart | xref:security/trusted_header.adoc[Trusted Headers]
  60. | `AuthLocalUsers` | The list of local users. | `[]` | Requires restart | xref:security/local.adoc[Local Users]
  61. | `AuthLoginUrl` | The URL to redirect to for login. | `` | Requires restart | xref:security/local.adoc[Login URL]
  62. | `AuthRequireGuestsToLogin` | Basically disables all functionality for guests. It sets all default permissions to false. | `false` | Requires restart | xref:security/acl.adoc[Access Control Lists]
  63. | `DefaultPermissions` | The default permissions to use. | `[]` | Requires restart | xref:security/acl.adoc[Access Control Lists]
  64. | `AccessControlLists` | The list of access control lists. | `[]` | Requires restart | xref:security/acl.adoc[Access Control Lists]
  65. | `security.headerContentSecurityPolicy` | Whether to send a `Content-Security-Policy` header from the single HTTP frontend. | `true` | Live reloadable | xref:security/content_security_policy.adoc[Content Security Policy headers]
  66. | `security.contentSecurityPolicy` | CSP header value when `security.headerContentSecurityPolicy` is enabled. If empty, a built-in default is used. | (built-in default) | Live reloadable | xref:security/content_security_policy.adoc[Content Security Policy headers]
  67. |===
  68. == Networking Configuration
  69. |===
  70. | Option | Description | Default | Live Reloadable | Documentation
  71. | `UseSingleHttpFrontend` | Whether or not to start the internal "microproxy" frontend. Disabling this is highly unusual and is only really useful for power users. | true | Requires Restart | xref:reference/network-ports.adoc[Network Ports]
  72. | `ListenAddressSingleHTTPFrontend` | The address to listen on for the internal "microproxy" frontend. | `0.0.0.0:1337` | Requires Restart | xref:reference/network-ports.adoc[Network Ports]
  73. | `ListenAddressWebUI` | The address to listen on for the web UI. | `localhost:1340` | Requires Restart | xref:reference/network-ports.adoc[Network Ports]
  74. | `ListenAddressRestActions` | The address for the API | `localhost:1338` | Requires Restart | xref:reference/network-ports.adoc[Network Ports]
  75. | `ListenAddressGrpcActions` | The address for the gRPC API | `localhost:1339` | Requires Restart | xref:reference/network-ports.adoc[Network Ports]
  76. | `ListenAddressPrometheus` | The address for the Prometheus metrics | `localhost:1341` | Requires Restart | xref:reference/network-ports.adoc[Network Ports], xref:advanced_configuration/prometheus.adoc[Prometheus]
  77. | `ExternalRestAddress` | The address the web browser should use to connect to the API. | `.` | Requires Restart | xref:reference/network-ports.adoc[Network Ports]
  78. |===
  79. == Debugging Configuration
  80. |===
  81. | Option | Description | Default | Live Reloadable | Documentation
  82. | `LogLevel` | The log level to use. `INFO`, `DEBUG`, `WARN` | `INFO` | Requires Restart | -
  83. | `LogDebugOptions` | Enable various debug logs. | `-` | Requires Restart | xref:troubleshooting/advanced.adoc[Advanced Troubleshooting]
  84. | `Insecure*` | Various options to disable security features. | `false` | Restart recommended | xref:troubleshooting/advanced.adoc[Advanced Troubleshooting]
  85. |===
  86. == Miscellaneous Configuration
  87. |===
  88. | Option | Description | Default | Live Reloadable | Documentation
  89. | `WebUIDir` | The directory to serve the web UI from. | Calculated at runtime. | Requires Restart | -
  90. | `CronSupportForSeconds` | Whether or not to support seconds in cron expressions. | `false` | Requires Restart | xref:action_execution/oncron.adoc[Cron]
  91. | `SaveLogs` | Whether or not to save logs to disk. | `[]` | Requires Restart | xref:action_customization/savelogs.adoc[Save Logs]
  92. | `Prometheus` | Prometheus configuration. | `-` | Requires Restart | xref:advanced_configuration/prometheus.adoc[Prometheus]
  93. |===
  94. == What's Next?
  95. Now that you understand the configuration structure, here are the next steps:
  96. * xref:action_execution/create_your_first.adoc[Create your first action] - Start building actions for your use case
  97. * xref:action_examples/intro.adoc[Browse action examples] - Get inspiration from real-world configurations
  98. * xref:args/intro.adoc[Add arguments to actions] - Make actions interactive with user input
  99. * xref:dashboards/intro.adoc[Organize with dashboards] - Create custom views to organize your actions
  100. * xref:entities/intro.adoc[Use entities] - Dynamically generate actions from entity files
  101. * xref:security/concepts.adoc[Configure security] - Set up authentication and authorization
  102. * xref:solutions/intro.adoc[Explore solutions] - Find complete configurations for common scenarios