Skip to content

Settings

server_name

The name and the port of OpenCVE server. Change it if you launch the webserver with a different value (see the related documentation for that).

secret_key

The key used for securely signing the session cookie (see the Flask recommendations).

database_uri

The URI used by OpenCVE to connect to the database (see the SQLAlchemy Connection URI format). OpenCVE only supports PostgreSQL.

celery_broker_url

The Celery Broker URL used to transport messages (ie redis://:password@host:port/db). See the supported list of brokers on the Celery documentation.

celery_result_backend

The backend URL used by Celery to store task results (ie redis://:password@host:port/db). See the supported list of backends on the Celery documentation.

celery_lock_url

The Redis URL used to store a lock during the tasks execution (default: redis://127.0.0.1:6379/2).

display_welcome

Display the welcome page. If False the user will be redirected to the vulnerabilitites (CVE) page. If True the content of ~/opencve/welcome_html/index.html is displayed.

display_terms

Display the terms of service page. If True the content of ~/opencve/welcome_html/terms.html is displayed.

include_analytics

Include a HTML analytics code in all pages (default: False).

cves_per_page

Number of objects to display in the CVEs list (default: 20).

vendors_per_page

Number of objects to display in the vendors list (default: 20).

products_per_page

Number of objects to display in the products list (default: 20).

cwes_per_page

Number of objects to display in the CWEs list (default: 20).

reports_per_page

Number of objects to display in the reports list (default: 20).

activities_per_page

Number of objects to display in the activities list (default: 20).

use_reverse_proxy

Use the werkzeug middleware for reverse proxy (see the Werkzeug documentation).

reports_cleanup_days

Cleanup the database by keeping the N last days of reports. Set the value to 0 to disable the cleanup (default: 0).

display_recaptcha

Display a reCAPTCHA form in register page.

recaptcha_site_key

The site key of recaptcha.

recaptcha_secret_key

The secret key of recaptcha.

ratelimit_enabled

Enable the API ratelimit (default: False).

ratelimit_value

Default ratelimit value accross all API routes (default: 3600/hour).

ratelimit_storage_url

Ratelimit storage URI (default: redis://127.0.0.1:6379/2).

email_adapter

The email adapter to use (choices are smtp or sendmail).

email_from

The From field of the sent emails.

smtp_server

The server to use with SMTP adapter.

smtp_port

The server to use with SMTP adapter.

smtp_use_tls

Use TLS or not with SMTP adapter.

smtp_use_ssl

Use SSL or not with SMTP adapter.

smtp_username

The username to use with SMTP adapter.

smtp_password

The password to use with SMTP adapter.