nils
/
ispmail-buster-ansible
mirror of http://git.workaround.org/ispmail/ispmail-buster-ansible.git
1
0
Fork 0
Code Issues 0 Releases 0 Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
94 Commits
1 Branch
380 KiB
 
 
 
 
 
 
Tree: 4c6d399c0b
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from '4c6d399c0b'
${ noResults }
ispmail-buster-ansible/ansible/roles/ispmail-webmail/templates/roundcube-password-config.i...

104 lines
4.5 KiB
Raw Blame History 

  1. <?php

  2. 

  3. // Password Plugin options

  4. // -----------------------

  5. // A driver to use for password change. Default: "sql".

  6. // See README file for list of supported driver names.

  7. $config['password_driver'] = 'sql';

  8. 

  9. // Determine whether current password is required to change password.

  10. // Default: false.

  11. $config['password_confirm_current'] = true;

  12. 

  13. // Require the new password to be a certain length.

  14. // set to blank to allow passwords of any length

  15. $config['password_minimum_length'] = 10;

  16. 

  17. // Require the new password to contain a letter and punctuation character

  18. // Change to false to remove this check.

  19. $config['password_require_nonalpha'] = false;

  20. 

  21. // Enables logging of password changes into logs/password

  22. $config['password_log'] = false;

  23. 

  24. // Comma-separated list of login exceptions for which password change

  25. // will be not available (no Password tab in Settings)

  26. $config['password_login_exceptions'] = null;

  27. 

  28. // Array of hosts that support password changing. Default is NULL.

  29. // Listed hosts will feature a Password option in Settings; others will not.

  30. // Example:

  31. //$config['password_hosts'] = array('mail.example.com', 'mail2.example.org');

  32. $config['password_hosts'] = null;

  33. 

  34. // Enables saving the new password even if it matches the old password. Useful

  35. // for upgrading the stored passwords after the encryption scheme has changed.

  36. $config['password_force_save'] = true;

  37. 

  38. // Enables forcing new users to change their password at their first login.

  39. $config['password_force_new_user'] = false;

  40. 

  41. 

  42. // SQL Driver options

  43. // ------------------

  44. // PEAR database DSN for performing the query. By default

  45. // Roundcube DB settings are used.

  46. $config['password_db_dsn'] = 'mysql://mailuser:{{ispmail_mysql_mailuser_password}}@127.0.0.1/mailserver';

  47. 

  48. // The SQL query used to change the password.

  49. // The query can contain the following macros that will be expanded as follows:

  50. //      %p is replaced with the plaintext new password

  51. //      %c is replaced with the crypt version of the new password, MD5 if available

  52. //         otherwise DES. More hash function can be enabled using the password_crypt_hash

  53. //         configuration parameter.

  54. //      %D is replaced with the dovecotpw-crypted version of the new password

  55. //      %o is replaced with the password before the change

  56. //      %n is replaced with the hashed version of the new password

  57. //      %q is replaced with the hashed password before the change

  58. //      %h is replaced with the imap host (from the session info)

  59. //      %u is replaced with the username (from the session info)

  60. //      %l is replaced with the local part of the username

  61. //         (in case the username is an email address)

  62. //      %d is replaced with the domain part of the username

  63. //         (in case the username is an email address)

  64. // Escaping of macros is handled by this module.

  65. // Default: "SELECT update_passwd(%c, %u)"

  66. //$config['password_query'] = 'SELECT update_passwd(%D, %u)';

  67. $config['password_query'] = "UPDATE virtual_users SET password=CONCAT('{SHA256-CRYPT}', ENCRYPT (%p, CONCAT('$5$', SUBSTRING(SHA(RAND()), -16)))) WHERE email=%u;";

  68. 

  69. // By default the crypt() function which is used to create the '%c'

  70. // parameter uses the md5 algorithm. To use different algorithms

  71. // you can choose between: des, md5, blowfish, sha256, sha512.

  72. // Before using other hash functions than des or md5 please make sure

  73. // your operating system supports the other hash functions.

  74. //$config['password_crypt_hash'] = 'sha256';

  75. 

  76. // By default domains in variables are using unicode.

  77. // Enable this option to use punycoded names

  78. $config['password_idn_ascii'] = false;

  79. 

  80. // Path for dovecotpw (if not in $PATH)

  81. //$config['password_dovecotpw'] = '/usr/sbin/dovecot pw';

  82. 

  83. // Dovecot method (dovecotpw -s 'method')

  84. //$config['password_dovecotpw_method'] = 'SHA256-CRYPT';

  85. 

  86. // Enables use of password with crypt method prefix in %D, e.g. {MD5}$1$LUiMYWqx$fEkg/ggr/L6Mb2X7be4i1/

  87. //$config['password_dovecotpw_with_method'] = true;

  88. 

  89. // Using a password hash for %n and %q variables.

  90. // Determine which hashing algorithm should be used to generate

  91. // the hashed new and current password for using them within the

  92. // SQL query. Requires PHP's 'hash' extension.

  93. //$config['password_hash_algorithm'] = 'sha1';

  94. 

  95. // You can also decide whether the hash should be provided

  96. // as hex string or in base64 encoded format.

  97. //$config['password_hash_base64'] = false;

  98. 

  99. // Iteration count parameter for Blowfish-based hashing algo.

  100. // It must be between 4 and 31. Default: 12.

  101. // Be aware, the higher the value, the longer it takes to generate the password hashes.

  102. //$config['password_blowfish_cost'] = 12;