wildduck/config/default.toml

# Uncomment if you start the app as root and want to downgrade
# once all privileged actions are completed
# If you do not use privileged ports then you can start the app already under required user account
#user="wildduck"
#group="wildduck"

# process title
ident="wildduck"

# how many processes to start
# either a number for specific process count or "cpus" for machine thread count
processes=1

# If usernames are not email addresses then use this domain as default hostname part
#emailDomain="mydomain.info"

[dbs]
# @include "dbs.toml"

[totp]
    # If enabled then encrypt TOTP seed tokens with the secret password. By default TOTP seeds
    # are not encrypted and stored as cleartext. Once set up do not change these values,
    # otherwise decrypting totp seeds is going to fail
    #secret="a secret cat"
    #cipher="aes192" # only for decrypting legacy values (if there are any)

[webauthn]
    rpId = "example.com" # origin domain
    rpName = "WildDuck Email Server"

    challengeSize = 64
    attestation = "none"
    authenticatorUserVerification = "discouraged"

[attachments]
# @include "attachments.toml"

[log]
    level="silly"

    skipFetchLog=false # if true, then does not output individual * FETCH responses to log

    # delete authentication log entries after 30 days
    # changing this value only affects new entries
    # set to false to not log authentication events
    # set to 0 to keep the logs infinitely
    # NB! Removed. Use const:authlog:time setting instead
    #authlogExpireDays=30

    [log.gelf]
        enabled=false
        hostname=false # defaults to os.hostname()
        component="wildduck"
        [log.gelf.options]
            graylogPort=12201
            graylogHostname="127.0.0.1"
            connection="lan"

[imap]
# @include "imap.toml"

[tls]
# @include "tls.toml"

[lmtp]
# @include "lmtp.toml"

[pop3]
# @include "pop3.toml"

[api]
# @include "api.toml"

[sender]
# @include "sender.toml"

[dkim]
# @include "dkim.toml"

[acme]
# @include "acme.toml"

[certs]
# Encrypt stored TLS private keys with the following password (disabled by default):
#secret="a secret cat"
#cipher="aes192" # only for decrypting legacy values (if there are any)

[plugins]
# @include "plugins/*.toml"

[tasks]
# if enabled then process jobs like deleting expired messages etc
enabled=true

[smtp.setup]
# Public configuration for SMTP MDA, needed for mobileconfig files
hostname="localhost"
secure=false
port=2587

[webhooks]
# At least one server must have webhook processing enabled,
# otherwise events would pile up in the Redis queue.
enabled = true
first threading version 2017-07-12 02:38:23 +08:00			`# Uncomment if you start the app as root and want to downgrade`
			`# once all privileged actions are completed`
updated install script 2018-04-18 03:09:47 +08:00			`# If you do not use privileged ports then you can start the app already under required user account`
first threading version 2017-07-12 02:38:23 +08:00			`#user="wildduck"`
			`#group="wildduck"`

updated install script 2018-04-18 03:09:47 +08:00			`# process title`
first threading version 2017-07-12 02:38:23 +08:00			`ident="wildduck"`

			`# how many processes to start`
allow to use "cpus" as process count 2021-11-12 16:29:17 +08:00			`# either a number for specific process count or "cpus" for machine thread count`
first threading version 2017-07-12 02:38:23 +08:00			`processes=1`

allow to use "cpus" as process count 2021-11-12 16:29:17 +08:00			`# If usernames are not email addresses then use this domain as default hostname part`
first threading version 2017-07-12 02:38:23 +08:00			`#emailDomain="mydomain.info"`

Allow using separate databases for main (default db), attachments and users 2017-07-15 03:16:09 +08:00			`[dbs]`
Updated config handler 2017-08-15 21:41:18 +08:00			`# @include "dbs.toml"`
changed API 2017-07-17 21:32:31 +08:00
use encrypt totp seeds with a master password 2017-08-07 19:52:33 +08:00			`[totp]`
allow rate limiting failed logins and totp checks 2017-08-07 21:19:38 +08:00			`# If enabled then encrypt TOTP seed tokens with the secret password. By default TOTP seeds`
			`# are not encrypted and stored as cleartext. Once set up do not change these values,`
			`# otherwise decrypting totp seeds is going to fail`
			`#secret="a secret cat"`
refactored encrypted fields 2021-07-05 20:24:01 +08:00			`#cipher="aes192" # only for decrypting legacy values (if there are any)`
use encrypt totp seeds with a master password 2017-08-07 19:52:33 +08:00
removed u2f, added webauthn 2022-03-06 06:08:48 +08:00			`[webauthn]`
Updated defaults for webauthn 2022-03-07 15:58:22 +08:00			`rpId = "example.com" # origin domain`
			`rpName = "WildDuck Email Server"`

			`challengeSize = 64`
			`attestation = "none"`
			`authenticatorUserVerification = "discouraged"`
Support a single u2f key 2017-10-10 16:19:10 +08:00
allow using other storage mechanisms for attachments than gridstore 2017-08-07 16:29:29 +08:00			`[attachments]`
Decode base64 encoded attachments before storing to DB 2017-09-18 16:18:34 +08:00			`# @include "attachments.toml"`
allow using other storage mechanisms for attachments than gridstore 2017-08-07 16:29:29 +08:00
first threading version 2017-07-12 02:38:23 +08:00			`[log]`
			`level="silly"`

allow to skip logging fetch output 2018-11-16 16:01:18 +08:00			`skipFetchLog=false # if true, then does not output individual * FETCH responses to log`

group similar authlog entries 2017-08-08 18:20:03 +08:00			`# delete authentication log entries after 30 days`
			`# changing this value only affects new entries`
update 2017-09-25 17:19:24 +08:00			`# set to false to not log authentication events`
			`# set to 0 to keep the logs infinitely`
v1.35.1 2021-09-05 19:11:24 +08:00			`# NB! Removed. Use const:authlog:time setting instead`
			`#authlogExpireDays=30`
group similar authlog entries 2017-08-08 18:20:03 +08:00
added initial support for gelf logs 2018-10-18 15:37:32 +08:00			`[log.gelf]`
			`enabled=false`
			`hostname=false # defaults to os.hostname()`
			`component="wildduck"`
			`[log.gelf.options]`
			`graylogPort=12201`
v1.10.9 2018-11-14 16:02:53 +08:00			`graylogHostname="127.0.0.1"`
			`connection="lan"`
added initial support for gelf logs 2018-10-18 15:37:32 +08:00
first threading version 2017-07-12 02:38:23 +08:00			`[imap]`
Updated config handler 2017-08-15 21:41:18 +08:00			`# @include "imap.toml"`
Added example certififcates 2017-07-25 20:50:16 +08:00
first threading version 2017-07-12 02:38:23 +08:00			`[tls]`
Updated config handler 2017-08-15 21:41:18 +08:00			`# @include "tls.toml"`
first threading version 2017-07-12 02:38:23 +08:00
			`[lmtp]`
Updated config handler 2017-08-15 21:41:18 +08:00			`# @include "lmtp.toml"`
first threading version 2017-07-12 02:38:23 +08:00
			`[pop3]`
Updated config handler 2017-08-15 21:41:18 +08:00			`# @include "pop3.toml"`
Added example certififcates 2017-07-25 20:50:16 +08:00
first threading version 2017-07-12 02:38:23 +08:00			`[api]`
Updated config handler 2017-08-15 21:41:18 +08:00			`# @include "api.toml"`
Added example certififcates 2017-07-25 20:50:16 +08:00
first threading version 2017-07-12 02:38:23 +08:00			`[sender]`
Updated config handler 2017-08-15 21:41:18 +08:00			`# @include "sender.toml"`
Added example certififcates 2017-07-25 20:50:16 +08:00
use separate config file for dkim 2018-01-02 21:42:57 +08:00			`[dkim]`
			`# @include "dkim.toml"`

testing out acme-generated certificates 2021-06-11 20:07:40 +08:00			`[acme]`
			`# @include "acme.toml"`

Allow using SNI TLS certificates with IMAP/POP3 2021-05-13 22:08:14 +08:00			`[certs]`
refactored encrypted fields 2021-07-05 20:24:01 +08:00			`# Encrypt stored TLS private keys with the following password (disabled by default):`
Allow using SNI TLS certificates with IMAP/POP3 2021-05-13 22:08:14 +08:00			`#secret="a secret cat"`
refactored encrypted fields 2021-07-05 20:24:01 +08:00			`#cipher="aes192" # only for decrypting legacy values (if there are any)`
Allow using SNI TLS certificates with IMAP/POP3 2021-05-13 22:08:14 +08:00
updated config handler 2017-10-26 15:21:32 +08:00			`[plugins]`
			`# @include "plugins/*.toml"`

update ASP generator 2018-10-10 21:19:20 +08:00			`[tasks]`
			`# if enabled then process jobs like deleting expired messages etc`
			`enabled=true`

Added example certififcates 2017-07-25 20:50:16 +08:00			`[smtp.setup]`
Allow disabling STARTTLS 2017-09-11 03:53:12 +08:00			`# Public configuration for SMTP MDA, needed for mobileconfig files`
			`hostname="localhost"`
			`secure=false`
			`port=2587`
first draft for webhooks 2020-10-09 16:08:33 +08:00
			`[webhooks]`
			`# At least one server must have webhook processing enabled,`
			`# otherwise events would pile up in the Redis queue.`
			`enabled = true`