Settings

AwsSnsAccessKeyId

AwsSnsAccessKeySecret

Backend API URI

Backend API-HttpClientSettings

Block RemoteIp by invalid logon count

Contact page feedback URL

CoreOne Suite Web Url

Default logonmethods allowed during secret reset (EmptyEntry => No Verification)

SMS-Provider-Type

REST

Currently REST implemented

SMS-Provider-Settings

{
"Method":"Get",
"BaseUrl":"http://myRestSmsApi/{mobilenumber}/{message}",
"SecurityMethod":"BasicAuthentication",
"Username":"MyUserName",
"Password":"MyPw",
"MobileNumberFormat":"E164",
"DefaultCountryPrefix":"+41",
"BodyContent":Zero,
"BodyEncodingCodePage":65001,
"BodyMediaType":"text/plain",
"RestResource":Zero
}

Method: Get / Post / Put
BaseUrl: Rest Base Url, Placeholder: mobilenumber / message
SecurityMethod: Authentication method (currently only BasicAuthentication))
Username: Benutzername
Password: Passwort
MobileNumberFormat:
 - E164: +41 79 111 22 33
 - InternationalWithPrefix: +41791112233
 - InternationalWithoutPrefix: 41791112233
 - LocalWithPrefix: 0791112233
 - LocalNoPrefix: 791112233
DefaultCountryPrefix: Countryprefix falls in der Telefonnummer keiner vorhanden ist
BodyEncodingCodePage: Codepage für die Body-Daten
BodyMediaType: MediaType für die Body-Daten
RestResource:

SMS-Provider-HttpClientSettings

{
"IgnoreSslErrors": false,
"UseProxy": true,
"AllowAutoRedirect": true,
"ProxyConfiguration": Zero
}

IgnoreSslErrors: Keine Fehlermeldung bei ungültigen SSL-Zertifikaten
UseProxy: Ob ein Proxy verwendet werden soll (Falls true und ProxyConfiguration = null wird der standard Windows Proxy verwendet, sihe Internet Explorer settings)
AllowAutoRedirect: 301 und 302 statuscodes verfolgen
ProxyConfiguration: Konfiguration der Proxy-Einstellungen

TOTP-IssuerName

string

Issuer that is used in TOTP barcodes (visible in TOTP clients)

Enable LoginHistory

true / false

Login-History on / Turn off

LoginHistory: OnlyLatest

true / false

Defines wether all or only the last or all logins should be saved for each user.

Block RemoteIp by invalid logon count

true / false

Defines wether clients that log in incorrectly too often should be blocked.

Max invalid login count

Number

Defines how many incorrect logins lead to the client being blocked.

Invalid login remember duration in seconds

Number

Number of sesconds how long faulty logins should be saved.

ReCaptchaKey

string

Google ReCaptcha API-Key

ReCaptchaSecret

string

stringGoogle ReCaptcha API-Key

ReCaptchaSecret-HttpClientSettings

{
"IgnoreSslErrors": false,
"UseProxy": true,
"AllowAutoRedirect": true,
"ProxyConfiguration": zero
}

IgnoreSslErrors: Keine Fehlermeldung bei ungültigen SSL-Zertifikaten
UseProxy: Ob ein Proxy verwendet werden soll (Falls true und ProxyConfiguration = null wird der standard Windows Proxy verwendet, sihe Internet Explorer settings)
AllowAutoRedirect: 301 und 302 statuscodes verfolgen
ProxyConfiguration: Konfiguration der Proxy-Einstellungen

Verify email adress

true / false

Defines wether email addresses have to be validated for successul login.

Trusted email adress hosts regex

regex

Regex-String, if the email addresses is matched it is automatically considered validated.

Reverify email adress

true / false

Defines wether email addresses have to be revalidated on a regular basis.

Reverify email adress every x days

Number

Defines how often email addresses have to be revalidated.

Password complexity configuration

regex-array, Example: [ ".{8,32}", "[A-Z]", "[a-z]", "[0-9]" ]

List of regex definitions which ALL must match for a password to be valid.

Disable password reset

true / false

Defines wether a password reset is possible

UseSSL

true / false

Determines wether the service should run as htp or https

SSL-Certificate-Data

byte[] (Base64 Encoded)

SSL-certificate file

SSL-Certificate-Password

text

Password for the Private-Key of the certificate file (if the service is running in Kestrel and not in IIS)

SSL-Certificate-Format

pfx / pem

Format of th certificate file (currently only pfx supported)

Server-Url

URL

Base-URL of the Server (Incl. Port)