54 lines
2.8 KiB
Plaintext
54 lines
2.8 KiB
Plaintext
##--------------------------------------------------------------------
|
|
## EMQ X Management Plugin
|
|
##--------------------------------------------------------------------
|
|
|
|
## Max Row Limit
|
|
management.max_row_limit = 10000
|
|
|
|
## Application default secret
|
|
##
|
|
## Value: String
|
|
## management.application.default_secret = public
|
|
|
|
## Default Application ID
|
|
##
|
|
## Value: String
|
|
management.default_application.id = admin
|
|
|
|
## Default Application Secret
|
|
##
|
|
## Value: String
|
|
management.default_application.secret = public
|
|
|
|
##--------------------------------------------------------------------
|
|
## HTTP Listener
|
|
|
|
management.listener.http.port = 8081
|
|
management.listener.http.acceptors = 2
|
|
management.listener.http.max_clients = 512
|
|
management.listener.http.backlog = 512
|
|
management.listener.http.send_timeout = 15s
|
|
management.listener.http.send_timeout_close = on
|
|
management.listener.http.inet6 = false
|
|
management.listener.http.ipv6_v6only = false
|
|
|
|
##--------------------------------------------------------------------
|
|
## HTTPS Listener
|
|
|
|
## management.listener.https.port = 8081
|
|
## management.listener.https.acceptors = 2
|
|
## management.listener.https.max_clients = 512
|
|
## management.listener.https.backlog = 512
|
|
## management.listener.https.send_timeout = 15s
|
|
## management.listener.https.send_timeout_close = on
|
|
## management.listener.https.certfile = "etc/certs/cert.pem"
|
|
## management.listener.https.keyfile = "etc/certs/key.pem"
|
|
## management.listener.https.cacertfile = "etc/certs/cacert.pem"
|
|
## management.listener.https.verify = verify_peer
|
|
## NOTE: Do not use tlsv1.3 if emqx is running on OTP-22 or earlier
|
|
## management.listener.https.tls_versions = "tlsv1.3,tlsv1.2,tlsv1.1,tlsv1"
|
|
## management.listener.https.ciphers = "TLS_AES_256_GCM_SHA384,TLS_AES_128_GCM_SHA256,TLS_CHACHA20_POLY1305_SHA256,TLS_AES_128_CCM_SHA256,TLS_AES_128_CCM_8_SHA256,ECDHE-ECDSA-AES256-GCM-SHA384,ECDHE-RSA-AES256-GCM-SHA384,ECDHE-ECDSA-AES256-SHA384,ECDHE-RSA-AES256-SHA384,ECDHE-ECDSA-DES-CBC3-SHA,ECDH-ECDSA-AES256-GCM-SHA384,ECDH-RSA-AES256-GCM-SHA384,ECDH-ECDSA-AES256-SHA384,ECDH-RSA-AES256-SHA384,DHE-DSS-AES256-GCM-SHA384,DHE-DSS-AES256-SHA256,AES256-GCM-SHA384,AES256-SHA256,ECDHE-ECDSA-AES128-GCM-SHA256,ECDHE-RSA-AES128-GCM-SHA256,ECDHE-ECDSA-AES128-SHA256,ECDHE-RSA-AES128-SHA256,ECDH-ECDSA-AES128-GCM-SHA256,ECDH-RSA-AES128-GCM-SHA256,ECDH-ECDSA-AES128-SHA256,ECDH-RSA-AES128-SHA256,DHE-DSS-AES128-GCM-SHA256,DHE-DSS-AES128-SHA256,AES128-GCM-SHA256,AES128-SHA256,ECDHE-ECDSA-AES256-SHA,ECDHE-RSA-AES256-SHA,DHE-DSS-AES256-SHA,ECDH-ECDSA-AES256-SHA,ECDH-RSA-AES256-SHA,AES256-SHA,ECDHE-ECDSA-AES128-SHA,ECDHE-RSA-AES128-SHA,DHE-DSS-AES128-SHA,ECDH-ECDSA-AES128-SHA,ECDH-RSA-AES128-SHA,AES128-SHA"
|
|
## management.listener.https.fail_if_no_peer_cert = true
|
|
## management.listener.https.inet6 = false
|
|
## management.listener.https.ipv6_v6only = false
|