Configuration Reference

Complete reference for configuring the Zoneweaver frontend using the configuration file.

Table of contents

  1. Configuration File Location
  2. Configuration Format
  3. Configuration Sections
    1. App Configuration
    2. Server Configuration
    3. SSL Configuration
    4. Mail Configuration
    5. Security Configuration
    6. Database Configuration
    7. Frontend Configuration
    8. CORS Configuration
    9. Backend Servers Configuration
    10. Environment Settings
    11. Logging Configuration
    12. Resource Limits
    13. Gravatar Configuration
  4. Environment Variables
  5. Production Recommendations
  6. Configuration Validation
  7. Configuration Backup
  8. Create backup
  9. Restore from backup

Configuration File Location

The main configuration file is located at:

  • Package Installation: /etc/zoneweaver/config.yaml
  • Development: config/config.yaml

Configuration Format

The configuration uses YAML format with the following structure:

app:
  name: "Zoneweaver"
  version: "1.0.0"
  description: "Zone Hypervisor Management Interface"

server:
  port: 3443
  host: "0.0.0.0"

ssl:
  enabled: true
  key_path: "/etc/zoneweaver/ssl/server.key"
  cert_path: "/etc/zoneweaver/ssl/server.crt"
  force_ssl: true

mail:
  smtp_host: "localhost"
  smtp_port: 587
  smtp_secure: false
  smtp_auth_user: ""
  smtp_auth_pass: ""
  from_email: "noreply@zoneweaver.local"
  from_name: "Zoneweaver"

security:
  jwt_secret: "auto-generated-secret"
  jwt_expiry: "24h"
  session_timeout: 3600
  bcrypt_rounds: 12

database:
  dialect: "sqlite"
  storage: "/var/lib/zoneweaver/database/zoneweaver.db"
  logging: false

frontend:
  theme: "default"
  logo_url: "/web/public/images/logo.png"
  favicon_url: "/web/public/favicon.ico"
  company_name: "Your Company"

cors:
  origin: "*"
  credentials: true

backend_servers:
  default_timeout: 30000
  retry_attempts: 3
  ssl_verify: true

environment: "production"

logging:
  level: "info"
  file: "/var/log/zoneweaver/zoneweaver.log"
  max_size: "10MB"
  max_files: 5

limits:
  max_organizations: 50
  max_users_per_org: 100
  max_backend_servers: 10

gravatar:
  enabled: true
  default_avatar: "identicon"
  rating: "g"

Configuration Sections

App Configuration

Basic application metadata and identification.

app:
  name: "Zoneweaver"
  version: "1.0.0" 
  description: "Zone Hypervisor Management Interface"

Server Configuration

Controls the web server behavior and network binding.

server:
  port: 3443              # HTTPS port
  host: "0.0.0.0"         # Bind address
  trust_proxy: false      # Trust proxy headers

SSL Configuration

Configures HTTPS/TLS encryption (highly recommended for production).

ssl:
  enabled: true
  key_path: "/etc/zoneweaver/ssl/server.key"
  cert_path: "/etc/zoneweaver/ssl/server.crt"
  ca_path: "/etc/zoneweaver/ssl/ca.crt"    # Optional
  force_ssl: true                          # Redirect HTTP to HTTPS
  protocols: ["TLSv1.2", "TLSv1.3"]      # Supported protocols

Mail Configuration

Email settings for notifications and user management.

mail:
  smtp_host: "smtp.example.com"
  smtp_port: 587
  smtp_secure: true                        # Use TLS
  smtp_auth_user: "zoneweaver@example.com"
  smtp_auth_pass: "password"
  from_email: "noreply@zoneweaver.example.com"
  from_name: "Zoneweaver System"

Security Configuration

Authentication and security-related settings.

security:
  jwt_secret: "your-secret-key-here"       # JWT signing secret
  jwt_expiry: "24h"                        # Token expiration
  session_timeout: 3600                    # Session timeout (seconds)
  bcrypt_rounds: 12                        # Password hashing rounds
  password_min_length: 8                   # Minimum password length
  require_email_verification: true         # Require email verification

Database Configuration

Database connection and behavior settings.

database:
  dialect: "sqlite"
  storage: "/var/lib/zoneweaver/database/zoneweaver.db"
  logging: false                           # Enable SQL query logging
  pool:
    max: 5                                 # Max connections
    min: 0                                 # Min connections
    idle: 10000                            # Idle timeout

Frontend Configuration

Web interface customization and branding.

frontend:
  theme: "default"
  logo_url: "/web/public/images/logo.png"
  favicon_url: "/web/public/favicon.ico"
  company_name: "Your Company"
  company_url: "https://example.com"
  footer_text: "© 2025 Your Company"

CORS Configuration

Cross-Origin Resource Sharing settings.

cors:
  origin: ["https://example.com", "https://app.example.com"]
  credentials: true
  methods: ["GET", "POST", "PUT", "DELETE"]
  allowed_headers: ["Content-Type", "Authorization"]

Backend Servers Configuration

Settings for connecting to Zoneweaver-API instances.

backend_servers:
  default_timeout: 30000                   # Connection timeout (ms)
  retry_attempts: 3                        # Retry failed requests
  ssl_verify: true                         # Verify SSL certificates
  connection_pool_size: 10                 # Connection pool size

Environment Settings

Runtime environment configuration.

environment: "production"                  # Environment mode
debug: false                              # Enable debug mode

Logging Configuration

Application logging settings.

logging:
  level: "info"                           # Log level
  file: "/var/log/zoneweaver/zoneweaver.log"
  console: false                          # Log to console
  max_size: "10MB"                        # Max log file size
  max_files: 5                            # Max log files to keep
  date_pattern: "YYYY-MM-DD"              # Log rotation pattern

Resource Limits

System resource and usage limits.

limits:
  max_organizations: 50                   # Max organizations
  max_users_per_org: 100                  # Max users per organization
  max_backend_servers: 10                 # Max backend server connections
  max_concurrent_requests: 1000           # Max concurrent requests
  rate_limit_requests: 100                # Requests per minute per IP

Gravatar Configuration

User avatar integration with Gravatar service.

gravatar:
  enabled: true                           # Enable Gravatar integration
  default_avatar: "identicon"             # Default avatar type
  rating: "g"                             # Content rating
  size: 80                                # Default avatar size

Environment Variables

Configuration values can be overridden using environment variables:

# Server configuration
export ZONEWEAVER_SERVER_PORT=3443
export ZONEWEAVER_SERVER_HOST=0.0.0.0

# SSL configuration
export ZONEWEAVER_SSL_KEY_PATH=/path/to/key.pem
export ZONEWEAVER_SSL_CERT_PATH=/path/to/cert.pem

# Database configuration
export ZONEWEAVER_DATABASE_STORAGE=/custom/path/database.db

# Security configuration
export ZONEWEAVER_SECURITY_JWT_SECRET=your-secret-key

Environment variables use the format: ZONEWEAVER_SECTION_OPTION

Production Recommendations

For production deployments:

  1. Enable HTTPS:
    ssl:
  enabled: true
  force_ssl: true
  key_path: /etc/ssl/private/zoneweaver.key
  cert_path: /etc/ssl/certs/zoneweaver.crt
  2. Secure JWT Secret:
    security:
  jwt_secret: "long-random-secure-secret-key"
  jwt_expiry: "1h"
  session_timeout: 1800
  3. Configure SMTP:
    mail:
  smtp_host: "your-smtp-server.com"
  smtp_port: 587
  smtp_secure: true
  smtp_auth_user: "zoneweaver@yourdomain.com"
  4. Set Resource Limits:
    limits:
  max_organizations: 10
  max_users_per_org: 50
  rate_limit_requests: 60

Configuration Validation

The application validates configuration on startup and will log warnings for:

  • Missing SSL certificates (when HTTPS is enabled)
  • Invalid SMTP settings
  • Missing JWT secret
  • Invalid database storage directory
  • Unreachable backend servers

Configuration Backup

Create backups of your configuration:

```bash

Create backup

cp /etc/zoneweaver/config.yaml /etc/zoneweaver/config.yaml.backup

Restore from backup

cp /etc/zoneweaver/config.yaml.backup /etc/zoneweaver/config.yaml svcadm restart zoneweaver