...
Domains also inherit configuration settings from the application if not overridden. For example, mail server definitions are inherited from application configuration if the domain does not exclusively defines any mail server definition.
Each application configuration contains the following sections;
General Settings
Title
Display name of the application
System Administrator e-Mail
Mail address to send configuration errors, and critical system-wide related notifications.
Static URL
Base web access URL for static (like JS, CSS, Image) file URL. If not specified domain URL is used. It is recommended to set a URL for multi-domain environments to improve caching of resources between domains.
Market URL
Process market application URL. If not specified "http://market.emakin.com" address is used. If you don't have any special process market environment it is recommended to leave it blank.
Mobile Push URL
Mobile push notifications gateway url. If not specified "http://push.emakin.com" address is used by default.
Incoming Mail Domain
Specifies the mail address domain to use in channels for incoming email messages. If the not specified application name is used with “smtp.” prefix. (Example; smtp.emakin.com)
Default Domain Level
Default domain level for new domains.
Domain Expiration Period
Domain deletion period for unprotected domains.
Scheduled Task Limit
Minimum duration of scheduled task intervals.
Process Form Data Limit
Maximum size of form data size in bytes. Set to 5MB by default if set to blank.
Database Settings
Database settings contain a system connection for storing workflow-related system data and repository connections for domain-specific data. Multiple repository connections can be defined and every new domain assigns to the randomly selected repository to distribute process-wide data.
System Connection
System connection is used to store all workflow-related master data that is shared in all domains (tenants). Data protection policy is automatically applied within the system.
Database Adapter
Type of database provider for system connections.
Name
Display name of database connection. Used for diagnostics.
Connection String
Connection string of system database.
Archive Connection
Archive connection is used to access archived data and if specified Emakin moves the aged data to the archive database automatically and fetches from this database when needed.
Database Adapter
Type of database provider for system connections.
Name
Display name of database connection. Used for diagnostics.
Connection String
Connection string of system database.
Repository Connections
List of repository connections to store domain-specific data. Each tenant’s data is stored in one of the randomly chosen repository connections and isolated from other tenants. Multiple repository databases can be defined for horizontally scale tenants.
Database Adapter
Type of database provider for the database.
Name
Display name of the database connection.
Connection String
Connection string of database.
Xml Repositories
List of xml repository connections to store domain-specific data. See $XmlRepository for more detail. Multiple XML repositories can be defined as horizontal scaling of databases.
Name
Display name of xml repository
Connection String
Connection string of xml repository
File Repositories
List of file repositories. By default emakin store all files in the database. When any file repository is defined in this section; files are automatically copied to all repositories and cleared database to save space.
Provider
Provider of file repository connection
Name
Display name of the file repository
Base Path
Base path of file repository
Is Enabled
Specifies the file repository is active
Integrated Services
List of integrated other applications. These services are used by other features like SSO Login or File access.
Is Enabled?
Specifies the this service is enabled. Disabling a service also disables other features like login.
Service Type
Type of integrated OpenAuth service.
Name
Identifier of service. Given name will not displayed to end users and only used to identity service in features. Name is required.
Client Id
Open auth client id.
Client Secret
Open auth secret
Service Callback
Specifies the open auth callback type. Some of Open Auth services requires the specify callback address for security and callback address must be same.
Selecting the application callback uses a generic "oauth" callback address with application name. Example; "oauth.emakin.com".
Selecting the domain callback generates the callback address with same with active domain address like "mydomain.emakin.com".
Scopes
Specifies the enabled open auth scopes granted.
Login Services
List of integrated login services to allow user logins.
Login Service
Specifies the type of login service. In addition to builtin Emakin and Active Directory services other integrated open auth services can be used as a login service.
Name
Identifier of login service to display end users.
Is Enabled ?
Specifies the service is enabled. If not enabled service is not displayed to users.
Requires 2FA
Specifies the two factor authentication is required. If checked after service login has succeeded users are also has to enter 2FA code (SMS etc) to login. 2FA provisioning (for example registering mobile number of user) is automatically handled by emakin.
Scopes
Specifies the requested open auth scopes from service. Only displayed for integrated services and not available for builtin services.
Other Services
File Services
Specifies the enabled file access services. File services are allows the select a file from integrated system for end users.
Client Type
Type of file service. Desktop and Web Cam are builtin services. Google Drive and Office 365 also can be selected but requires a integrated service definition.
Service
Type of integrated service. Only displayed for open auth type file services.
Name
Name of file service to display users.
Scopes
Requested open auth service scopes.
Calendar Services
Specifies the enabled calendar services.
Client Type
Type of calendar service. Delegation is built in service. Google and Office 365 also can be selected but requires a integrated service definition.
Service
Type of integrated service. Only displayed for open auth type file services.
Name
Name of file service to display users.
Scopes
Requested open auth service scopes.
Editor Services
Specifies the WOPI based editor services. WOPI services allows the edit files without any upload or download operations.
Name
Name of service to display end users.
Discovery Url
WOPI discovery url
Full-Text Services
Specifies the full-text extraction service address.
Security
SSL Options
Force SSL?
Specifies the force SSL connections if http protocol is used. If enabled all web access connections are automatically redirected to https protocol.
Certificate
Base64 encoded SSL certificate to use. The certificate must in PFX format and the password must be set.
Certificate Password
SSL certificate password
User Sessions
Single Session
Only one device session is allowed for all devices in user sessions when selected. Otherwise, no session control is performed.
Use Session Cookie
When selected browser cookie also is used in addition to bearer tokens for preventing cross-site scripting attacks. Since some browsers reject the cookies to prevent tracking it must be tested before being enabled.
Login Token Expiration
It determines the validity period of the tickets produced for system logins such as invitations or password change links. The default value is 10 days in the format 10.00:00:00.
Bearer Token Expiration
It determines the validity period of the tickets produced for user sessions. The ticket is automatically renewed when its validity period is about to expire. The default value is 5 days in the format 5.00:00:00.
Authentication Storage
Determines the storage area of bearer token. Local storage option used for keep bearer token in browser until it is expires and renew if required. Session storage option keeps token temporarily and requires re-authentication when browser window is closed.
Audit Log
Retention Duration
Specifies the keeping duration of audit logs. The default value is 180 days in 180.00:00:00 format.
Password Policy
Minimum Password Length
Determines minimum password length in characters.
Minimum Upper Case Letters
Determines minimum characters of upper case characters (A..Z) in passwords.
Minimum Numeric Letters
Determines minimum characters of upper case characters (0..9) in passwords.
Minimum Lower Case Letters
Determines minimum characters of lower case characters (A..Z) in passwords.
Required Characters
A list of at least one of the characters must be included in the password. For example, if set to "!@" value user passwords must include the '!' or '@' character.
Files
Antivirus Service Url
Specifies the antivirus scanning address to scan files before importing to the system. If not specified no scanning is performed.
Allowed File Types
List of allowed file extensions or mime types. If any are specified only listed files are allowed to upload.
Denied File Types
List of denied file extensions or mime type.
Time Stamping
Timestamp Server URL
URL of timestamp server to use for digital signatures. The default value is empty and the error thrown if a timestamp is required.
Timestamp User
User name of timestamp server for authentication. The default value is empty and no authentication is performed.
Timestamp Password
Password of timestamp server for authentication. The default value is empty.
e-Mail Services
List of mail SMTP mail services to send mail notifications. Any number of service can be defined and system tries to send mail in service order until it succeeds. Each service definition contains the following settings;
Is Enabled ?
If set no service is disabled and system does not try to use service.
From Address
Specifies the from the address of notification emails. For example "emakin@mydomain.com"
From Display Name
Specifies the displayed name of from address to show the mail message. For example "Emakin". If left blank address is used.
SMTP Server
Name or IP address of mail server.
If service entry expanded following authentication related settings will be displayed;
User Name
User name of SMTP server for authentication. If relay is enabled on SMTP server this field can be left as blank.
Password
Password of SMTP server for authentication. If relay is enabled on SMTP server this field can be left as blank.
SMTP Port
Port number to connect SMTP server. If left blank default SMTP port is automatically used.
SSL Enabled?
If selected SSL connection is used to connect the SMTP server. By default SSL connection is automatically preferred but if this setting is checked all connections are forced to use SSL connections.
SMS Services
List of integrated SMS services. Primarily is used for 2FA and if no service is defined system uses the push service as SMS gateway.
Is Enabled ?
If set no service is disabled and the system does not try to use the service.
Name
Identifier of service
SMS Gateway Code
Script to process SMS request. If script returns any not null value system assumes SMS has been sent.
| Expand | |||||
|---|---|---|---|---|---|
| |||||
|
...
Configuration of activity callbacks. Activity callbacks are executed when certain activity has occur in system and used to integrate with other systems.
Is Enabled ?
If set no service is disabled and system does not try to use service.
Name
Identifier of service
Callback Code
Callback code
| Expand | ||
|---|---|---|
| ||
|
Workers
Configuration of background job workers. This list allows customizing worker queue priority and error handing configurations. Please see the Background Jobs page for more detail.
Domains
Lists the subdomains defined in this application and create a new sub domain. New domains created by the host administration are always created as in protected state.
Licenses
Lists the previously registered license keys and shows the state of the license is valid or not. To enter the license paste the license contents into the "License File" input and click on to "Register" button to save. If the license is valid license list will be automatically refreshedPlease see the host configuration settings page for more details.