From: Vincent Vanwaelscappel Date: Fri, 7 Apr 2023 17:53:11 +0000 (+0200) Subject: wip #5851 @2 X-Git-Url: http://git.cubedesigners.com/?a=commitdiff_plain;h=aaa7709c356c6d0365ca27d0302e880ebeaad280;p=fluidbook-toolbox.git wip #5851 @2 --- diff --git a/config/backpack/base.php b/config/backpack/base.php index 6623ecade..e0eaa348d 100644 --- a/config/backpack/base.php +++ b/config/backpack/base.php @@ -37,6 +37,13 @@ return [ // Content of the HTML meta robots tag to prevent indexing and link following 'meta_robots_content' => 'noindex, nofollow', + // --------- + // DASHBOARD + // --------- + + // Show "Getting Started with Backpack" info block? + 'show_getting_started' => env('APP_ENV') == 'local', + // ------ // STYLES // ------ @@ -76,6 +83,12 @@ return [ // 'css/app.css' => '', ], + // CSS files that are loaded in all pages, using Laravel's @vite() helper + // Please note that support for Vite was added in Laravel 9.19. Earlier versions are not able to use this feature. + 'vite_styles' => [ // resource file_path + // 'resources/css/app.css', + ], + // ------ // HEADER // ------ @@ -147,7 +160,7 @@ return [ // 'https://code.jquery.com/jquery-3.4.1.min.js', // 'https://cdnjs.cloudflare.com/ajax/libs/popper.js/1.14.7/umd/popper.min.js', // 'https://stackpath.bootstrapcdn.com/bootstrap/4.3.1/js/bootstrap.min.js', - // 'https://unpkg.com/@coreui/coreui/dist/js/coreui.min.js', + // 'https://unpkg.com/@coreui/coreui@2.1.16/dist/js/coreui.min.js', // 'https://cdnjs.cloudflare.com/ajax/libs/pace/1.0.2/pace.min.js', // 'https://unpkg.com/sweetalert/dist/sweetalert.min.js', // 'https://cdnjs.cloudflare.com/ajax/libs/noty/3.1.4/noty.min.js' @@ -163,13 +176,18 @@ return [ // 'js/app.js' => '', ], + // JS files that are loaded in all pages, using Laravel's @vite() helper + 'vite_scripts' => [ // resource file_path + // 'resources/js/app.js', + ], + // ------------- // CACHE-BUSTING // ------------- // All JS and CSS assets defined above have this string appended as query string (?v=string). // If you want to manually trigger cachebusting for all styles and scripts, - // append or prepent something to the string below, so that it's different. + // append or prepend something to the string below, so that it's different. 'cachebusting_string' => \PackageVersions\Versions::getVersion('backpack/crud'), /* @@ -196,8 +214,22 @@ return [ // You can make sure all your URLs use this prefix by using the backpack_url() helper instead of url() 'route_prefix' => '', + // The web middleware (group) used in all base & CRUD routes + // If you've modified your "web" middleware group (ex: removed sessions), you can use a different + // route group, that has all the the middleware listed below in the comments. + 'web_middleware' => 'web', + // Or you can comment the above, and uncomment the complete list below. + // 'web_middleware' => [ + // \App\Http\Middleware\EncryptCookies::class, + // \Illuminate\Cookie\Middleware\AddQueuedCookiesToResponse::class, + // \Illuminate\Session\Middleware\StartSession::class, + // \Illuminate\View\Middleware\ShareErrorsFromSession::class, + // \App\Http\Middleware\VerifyCsrfToken::class, + // ], + // Set this to false if you would like to use your own AuthController and PasswordController // (you then need to setup your auth routes manually in your routes.php file) + // Warning: if you disable this, the password recovery routes (below) will be disabled too! 'setup_auth_routes' => true, // Set this to false if you would like to skip adding the dashboard routes @@ -208,6 +240,36 @@ return [ // (you then need to manually define the routes in your web.php) 'setup_my_account_routes' => true, + // Set this to false if you would like to skip adding the password recovery routes + // (you then need to manually define the routes in your web.php) + 'setup_password_recovery_routes' => true, + + /* + |-------------------------------------------------------------------------- + | Security + |-------------------------------------------------------------------------- + */ + + // Backpack will prevent visitors from requesting password recovery too many times + // for a certain email, to make sure they cannot be spammed that way. + // How many seconds should a visitor wait, after they've requested a + // password reset, before they can try again for the same email? + 'password_recovery_throttle_notifications' => 600, // time in seconds + + // How much time should the token sent to the user email be considered valid? + // After this time expires, user needs to request a new reset token. + 'password_recovery_token_expiration' => 60, // time in minutes + + // Backpack will prevent an IP from trying to reset the password too many times, + // so that a malicious actor cannot try too many emails, too see if they have + // accounts or to increase the AWS/SendGrid/etc bill. + // + // How many times in any given time period should the user be allowed to + // attempt a password reset? Take into account that user might wrongly + // type an email at first, so at least allow one more try. + // Defaults to 3,10 - 3 times in 10 minutes. + 'password_recovery_throttle_access' => '3,10', + /* |-------------------------------------------------------------------------- | Authentication @@ -218,7 +280,7 @@ return [ 'user_model_fqn' => App\Models\AuthUser::class, // The classes for the middleware to check if the visitor is an admin - // Can be a single class or an array of clases + // Can be a single class or an array of classes 'middleware_class' => [ App\Http\Middleware\CheckIfAdmin::class, \Illuminate\Foundation\Http\Middleware\ConvertEmptyStringsToNull::class, @@ -235,6 +297,10 @@ return [ 'authentication_column' => 'email', 'authentication_column_name' => 'Email', + // Backpack assumes that your "database email column" for operations like Login and Register is called "email". + // If your database email column have a different name, you can configure it here. Eg: `user_mail` + 'email_column' => 'email', + // The guard that protects the Backpack admin panel. // If null, the config.auth.defaults.guard value will be used. 'guard' => 'backpack', @@ -244,9 +310,9 @@ return [ 'passwords' => 'backpack', // What kind of avatar will you like to show to the user? - // Default: gravatar (automatically use the gravatar for his email) + // Default: gravatar (automatically use the gravatar for their email) // Other options: - // - placehold (generic image with his first letter) + // - null (generic image with their first letter) // - example_method_name (specify the method on the User model that returns the URL) 'avatar_type' => 'avatar', @@ -266,6 +332,13 @@ return [ // your namespace would be the one below. IMPORTANT: in this case the namespace ends with a dot. // 'view_namespace' => 'vendor.myname.mypackage.', + // Tell Backpack to look in more places for component views (like widgets) + 'component_view_namespaces' => [ + 'widgets' => [ + 'backpack::widgets', // falls back to 'resources/views/vendor/backpack/base/widgets' + ], + ], + /* |-------------------------------------------------------------------------- | File System @@ -281,18 +354,19 @@ return [ /* |-------------------------------------------------------------------------- - | License Code + | Backpack Token Username |-------------------------------------------------------------------------- | - | If you, your employer or your client make money by using Backpack, you need - | to purchase a license. A license code will be provided after purchase, - | which you can put here or in your ENV file in staging & production. + | If you have access to closed-source Backpack add-ons, please provide + | your token username here, if you're getting yellow alerts on your + | admin panel's pages. Normally this is not needed, it is + | preferred to add this as an environment variable + | (most likely in your .env file). | | More info and payment form on: | https://www.backpackforlaravel.com | */ - 'license_code' => env('BACKPACK_LICENSE', false), - 'locales' => explode(',', env('BACKPACK_LOCALES', 'en')), + 'token_username' => env('BACKPACK_TOKEN_USERNAME', false), ];