necklace
/
online-bookmarks-2


			
				
					
						
						
							12345678910111213141516171819202122232425262728293031323334353637383940414243444546474849505152535455565758596061626364656667686970717273747576777879808182838485868788899091929394959697
							<?php

return
[
	/**
	 * ---------------------------------------------------------
	 * Identifier
	 * ---------------------------------------------------------
	 *
	 * The supported identifier types are "email" and "username".
	 */
	'identifier' => 'username',

	/**
	 * ---------------------------------------------------------
	 * Auth key name
	 * ---------------------------------------------------------
	 *
	 * Name of the session variable and cookie that holds the authentication key.
	 * Using a unique key name name will prevent session collisions with other applications.
	 */
	'auth_key' => 'gatekeeper_auth_key',

	/**
	 * ---------------------------------------------------------
	 * User model
	 * ---------------------------------------------------------
	 */
	'user_model'  => 'mako\gatekeeper\entities\user\User',

	/**
	 * ---------------------------------------------------------
	 * Group model
	 * ---------------------------------------------------------
	 */
	'group_model'  => 'mako\gatekeeper\entities\group\Group',

	/**
	 * ---------------------------------------------------------
	 * Brute force throttling
	 * ---------------------------------------------------------
	 */
	'throttling' =>
	[
		/**
		 * Set to TRUE to enable brute force throttling.
		 */
		'enabled' => true,

		/**
		 * Maximum number of attempts before the account gets temporarily locked.
		 */
		'max_attemps' => 5,

		/**
		 * Number of seconds for which the account gets locked after reaching the maximum number of login attempts.
		 */
		'lock_time' => 60 * 5,
	],

	/**
	 * ---------------------------------------------------------
	 * Cookie options
	 * ---------------------------------------------------------
	 */
	'cookie_options' =>
	[
		/**
		 * The path on the server in which the cookie will be available on.
		 * If set to '/', the cookie will be available within the entire domain.
		 * If set to '/foo/', the cookie will only be available within the /foo/ directory and all sub-directories.
		 */
		'path' => '/',

		/**
		 * The domain that the cookie is available to.
		 * To make the cookie available on all subdomains of example.org (including example.org itself) then you'd set it to '.example.org'.
		 */
		'domain' => '',

		/**
		 * Indicates that the cookie should only be transmitted over a secure HTTPS connection from the client. When set to TRUE,
		 * the cookie will only be set if a secure connection exists. On the server-side, it's on the programmer to send this kind of cookie
		 * only on secure connection (e.g. with respect to $this->request->secure()).
		 */
		'secure' => false,

		/**
		 * When TRUE the cookie will be made accessible only through the HTTP protocol.
		 * This means that the cookie won't be accessible by scripting languages, such as JavaScript.
		 * It has been suggested that this setting can effectively help to reduce identity theft through XSS attacks
		 * (although it is not supported by all browsers), but that claim is often disputed.
		 */
		'httponly' => true,
	],
];