About config.ini

12min
The config.ini configuration file is located in the following directories:
Linux — /var/www/app/config/config.ini
Windows Server — C:\inetpub\wwwroot\passwork\app\config\config.ini
Docker — /<passwork>/conf/keys/config.ini
If you did not find the parameter you are interested in, then it is configured directly through the web interface or is deprecated.
[crypt] section
Lists your database encryption key:
Shell
secret = ********************************
secret = ********************************
﻿
[application] section
Hostname that is used in automatically generated links:
Shell
domain = [http://passwork.local](http://passwork.local/)
domain = [http://passwork.local](http://passwork.local/)
﻿
An email address from which notifications are sent:
Shell
noreplyEmail = [[email protected]](mailto:[email protected])
noreplyEmail = [noreply@passwork.me](mailto:noreply@passwork.me)
﻿
Interface language selector (deprecated, configured via web-interface):
Shell
lang = en
lang = en
﻿
Toggle CSRF checks:
Shell
csrf = Off
csrf = Off
﻿
Length of generated passwords (deprecated, configurable via web-interface):
Shell
randomPasswordLength = 10; min=8,max=50
randomPasswordLength = 10; min=8,max=50
﻿
Setting this to Off will let users name the same vault using different names:
Shell
globalGroupNames = On
globalGroupNames = On
﻿
Force users to use 2FA (deprecated, configurable via web-interface):
Shell
forced2fa = Off
forced2fa = Off
﻿
Hash algorithm:
Shell
hash = sha256
hash = sha256
﻿
[ban] section
If a user makes several failed authentication attempts in a row, they will be banned for a set period of time.
Ban time (in seconds):
Shell
time = 180
time = 180
﻿
The number of attempts after which the user gets banned:
Shell
count = 7 
count = 7 
﻿
Time after which the number of invalid authentication attempts is reset (in seconds):
Shell
interval = 60
interval = 60
﻿
[mongo] section
Database connection settings:
Shell
connectionString = mongodb://localhost:27017 
connectionString = mongodb://localhost:27017 
﻿
Database name:
Shell
dbname = pwbox
dbname = pwbox
﻿
  Toggle the use of credentials to connect to the database:
Shell
useCreds = false
useCreds = false
﻿
Database user login:
Shell
username = admin
username = admin
﻿
 Database user password:
Shell
password = password
password = password
﻿
Emergency mode
Emergency mode can be used to restore access to Passwork if the owner forgets their password. You can read about using this mode here﻿.
Shell
emergency = on
emergency = on
﻿
﻿
Updated 23 Dec 2024
Did this page help you?
Linux
Security settings