Topics tagged with configuration

Is it possible to set the UI time display to European standard (dd/mm/yyyy)?

dan — Invalid Date

You can change the user's locale and the date format should change in the FusionAuth administrative user interface. More details here: https://fusionauth.io/community/forum/topic/718/how-do-i-change-the-localisation-timezone-for-the-fusionauth-ui?_=1614788141466

Let me know if that answers your question, please.

Thanks,
Dan

Preload configuration

dan — Invalid Date

I think you are looking for kickstart: https://fusionauth.io/docs/v1/tech/installation-guide/kickstart

Here's how to run configure Kickstart to run when you are using docker: https://fusionauth.io/docs/v1/tech/installation-guide/docker/#kickstart

I'm not sure how you are starting your containers, but I imagine you could create and make a kickstart file available in other deployment environments also.

How can we migrate FusionAuth configuration from dev/qa to prod

dan — Invalid Date

For exporting changes, it depends on how you make the changes. There's a community supported terraform module, but it doesn't cover all the apis (PRs welcome!).

You could also script all your changes using the API and apply those scripts to different environments. We mostly see folks writing migration scripts that call the APIs. These are very similar to database migration scripts except they make REST calls instead of SQL. The scripts are run during upgrades of their app. (If you are using an app like rails, you could even leverage the existing migration framework and a client library.)

Kickstart works well for dev envts and CI, but doesn't handle changes (it assumes there is no data in fusionauth and won't run if it sees any).

maximum pool size configuration

dan — Invalid Date

You can use the database.maximum-pool-size value in the fusionauth.properties file prior to 1.19.x ( it was just not documented) , but if you want to use the environment variable version is not available until 1.19.x.

Any way to modify the elasticsearch index?

dan — Invalid Date

When you re-index, we delete our named index and rebuild it.

You would probably be better off creating your own index.

Where is the configuration stored in the database?

dan — Invalid Date

There isn’t a single table in the db really. Configuration exists there, and in tenants, applications, etc.

Is there a way to force users to use two factor authentication?

dan — Invalid Date

Not with a FusionAuth policy, but you could enforce it just by checking the user during login, as twoFactorEnabled is an attribute of the user.

There's also this github issue which you may want to vote up: https://github.com/FusionAuth/fusionauth-issues/issues/763

Enforcing two factor configuration

dan — Invalid Date

@mangeshp16 The original question is over two years old. Since version 1.42, you can enforce MFA at the tenant level (or the application level if you have the enterprise plan). This means that any user who logs in is required to have MFA. If they do not, they are redirected to a page where they can set it up.

There are other ways to accomplish this. You could build your own MFA page which would call the APIs directly. When a user logs in, you can check to see if they have any twoFactor methods available and if they don't, you can send them to this page.

What happens if I turn off database.mysql.enforce-utf8mb4 ?

dan — Invalid Date

Doing so will allow FusionAuth to run even when utf8mb4 is not configured properly. We added that enforcement to ensure the limitation is understood before you turn off the enforcement.

The implication is that if you attempt to store a 4 byte unicode character the INSERT or UPDATE request will fail. The initial MySQL UTF-8 support only allowed for 3 byte characters, they then came out with utf8mb4 to support 4 byte characters.

For example, many emoji are 4 byte characters, so if you tried to store a piece of text with a smiley such as 😁 it will fail. The 😁 is a four byte character, U+1F601 or \xF0\x9F\x98\x81.

Unless you configure MySQL to use utf8mb4 any character points between U+10000 and U+10FFFF will fail to be stored.

Extracted from https://github.com/FusionAuth/fusionauth-issues/issues/234#issuecomment-632757441

After the passwordless code has been issued, how long is it valid?

dan — Invalid Date

That's configurable at the tenant level.

The default is 180 seconds, but it is customizable in the tenant settings: https://fusionauth.io/docs/v1/tech/guides/passwordless#one-time-code-customization

Is there a way to customize the Two Factor Code message that comes when the twilio integration is enabled?

dan — Invalid Date

This is not currently available.

The plan is to build out SMS templates that can localized and customized but no timelines have been determined.