Settings
server_name
The name and the port of OpenCVE server. Change it if you launch the webserver with a different value (see the related documentation for that).
secret_key
The key used for securely signing the session cookie (see the Flask recommendations).
database_uri
The URI used by OpenCVE to connect to the database (see the SQLAlchemy Connection URI format). OpenCVE only supports PostgreSQL.
celery_broker_url
The Celery Broker URL used to transport messages (ie redis://:password@host:port/db
). See the supported list of brokers on the Celery documentation.
celery_result_backend
The backend URL used by Celery to store task results (ie redis://:password@host:port/db
). See the supported list of backends on the Celery documentation.
celery_lock_url
The Redis URL used to store a lock during the tasks execution (default: redis://127.0.0.1:6379/2
).
display_welcome
Display the welcome page. If False
the user will be redirected to the vulnerabilitites (CVE) page. If True
the content of ~/opencve/welcome_html/index.html
is displayed.
display_terms
Display the terms of service page. If True
the content of ~/opencve/welcome_html/terms.html
is displayed.
include_analytics
Include a HTML analytics code in all pages (default: False
).
cves_per_page
Number of objects to display in the CVEs list (default: 20).
vendors_per_page
Number of objects to display in the vendors list (default: 20).
products_per_page
Number of objects to display in the products list (default: 20).
cwes_per_page
Number of objects to display in the CWEs list (default: 20).
reports_per_page
Number of objects to display in the reports list (default: 20).
activities_per_page
Number of objects to display in the activities list (default: 20).
use_reverse_proxy
Use the werkzeug middleware for reverse proxy (see the Werkzeug documentation).
reports_cleanup_days
Cleanup the database by keeping the N last days of reports. Set the value to 0 to disable the cleanup (default: 0).
display_recaptcha
Display a reCAPTCHA form in register page.
recaptcha_site_key
The site key of recaptcha.
recaptcha_secret_key
The secret key of recaptcha.
ratelimit_enabled
Enable the API ratelimit (default: False
).
ratelimit_value
Default ratelimit value accross all API routes (default: 3600/hour
).
ratelimit_storage_url
Ratelimit storage URI (default: redis://127.0.0.1:6379/2
).
email_adapter
The email adapter to use (choices are smtp
or sendmail
).
email_from
The From
field of the sent emails.
smtp_server
The server to use with SMTP adapter.
smtp_port
The server to use with SMTP adapter.
smtp_use_tls
Use TLS or not with SMTP adapter.
smtp_use_ssl
Use SSL or not with SMTP adapter.
smtp_username
The username to use with SMTP adapter.
smtp_password
The password to use with SMTP adapter.