Overview config.ini

The config.ini configuration file is located in the following directories:

• Linux — /var/www/app/config/config.ini
• Windows Server — C:\inetpub\wwwroot\passwork\app\config\config.ini
• Docker — /<passwork>/conf/keys/config.ini

If you did not find the parameter you are interested in, then it is configured directly through the web interface or is deprecated.

[crypt] section Lists your database encryption key:

secret = ********************************

[application] section

Hostname that is used in automatically generated links:

domain = [http://passwork.local](http://passwork.local/)

An email address from which notifications are sent:

noreplyEmail = [[email protected]](mailto:[email protected])

Interface language selector (deprecated, configured via web-interface):

lang = en

Toggle CSRF checks:

csrf = Off

Length of generated passwords (deprecated, configurable via web-interface):

randomPasswordLength = 10; min=8,max=50

Setting this to Off will let users name the same vault using different names:

globalGroupNames = On

Force users to use 2FA (deprecated, configurable via web-interface):

forced2fa = Off

Hash algorithm:

hash = sha256

[ban] section

If a user makes several failed authentication attempts in a row, they will be banned for a set period of time.

Ban time (in seconds):

time = 180

The number of attempts after which the user gets banned:

count = 7 

Time after which the number of invalid authentication attempts is reset (in seconds):

interval = 60

[mongo] section

Database connection settings:

connectionString = mongodb://localhost:27017 

Database name:

dbname = pwbox

Toggle the use of credentials to connect to the database:

useCreds = false

Database user login:

username = admin

Database user password:

password = password

Emergency mode

Emergency mode can be used to restore access to Passwork if the owner forgets their password. You can read about using this mode Emergency mode.

emergency = on