The Global Settings Table

Oomnitza Fall '20 release introduces even more Global Settings into Oomnitza. The Global Settings table is part of the Settings area of Oomnitza and allows for the storage of universal variables in Oomnitza. These universal variables allow you to influence the overall behavior of the system to accommodate your specific requirements without the need to request a code change from Oomnitza. Within the Global Settings table you can simply enter the variables and their values and there is no input validation upon entry. This will require that the key values match exactly the required key as outlined below. In some cases there is an input validation for the value and if the entered value is outside of the allowed entries, a default value will be used instead.

 

GlobalSettings.jpg

 

Available Settings

System Settings

Key

Description

session_timeout

The timeout duration of an Oomnitza user session in minutes. That is the amount of time a session will be kept active before it times out and will require to user to login again.

The default value is 20 minutes and will apply if this key is not set or if it is set to an invalid value. The maximum allowed value is 1440 minutes (which is a day).

 

 

Email Settings

Key

Description

email.header

When this key exists, it allows you to overwrite the default email header for all outgoing emails (system notifications, password reset, scheduled reports, approval requests and workflow notifications). Setting the email.header value allows you to reflect your corporate branding in the header of such emails. The value for this should include HTML code. It is recommended to enclose the header in a div tag with id message_header, like:

<div id="message_header">your logo and header go here</div>

email.footer

Similar to the email.header, this key allows you to overwrite the footer for all outgoing emails. Setting the email.footer value allows you to reflect your corporate branding in the footer of such emails or to include reminders about upcoming events. The value for this should include HTML code. It is recommended to enclose the header in a div tag with id message_footer, like:

<div id="message_footer">your logo and header go here</div>

When this key is set, the system will append the unsubscribe link below the footer.

email.sender

The Global Settings Table lets you specify the sender of emails that come from Oomnitza. By creating a key called "email.sender" and a value of the desired address (e.g. it@oomnitza.com), all emails sent from Oomnitza will use that value as an Alias. If the key is missing, the default value: no-reply@<domain>.oomnitza.com will be used.

Please keep in mind that this does allow you to overwrite the email sender, however the sending email server (smtp Server on our end) will remain the same and might be recognized as spam if not properly specified within your email system as a valid sender.

email.sender_name

The name of the person/organization/mailbox on whose behalf the email was sent.

 

Password Security Settings

The password security settings allow you to define passwords requirements for users that authenticate directly at the Oomnitza Login page with a username and password.

Key

Description

password.min_length

Minimum password length

  • Default value: 8

  • Min length: 8

  • Max length: 256

If the parameter is not set or does not match the length requirements, the default value will be set.

password.require_lower_case

Defines whether at least one lower case letter is required within the password. 

  • Default value: Yes

  • Possible values: 1/0, true/false, True/False, TRUE/FALSE, Yes/No, yes/no, y/n, Y/N, YES/NO
password.require_upper_case

Defines whether at least one upper case letter is required within the password

  • Default value: No

  • Possible values: 1/0, true/false, True/False, TRUE/FALSE, Yes/No, yes/no, y/n, Y/N, YES/NO
password.require_digit

Defines whether at least one digit is required within the password

  • Default value: Yes

  • Possible values: 1/0, true/false, True/False, TRUE/FALSE, Yes/No, yes/no, y/n, Y/N, YES/NO
password.require_special_char

Defines whether at least one special character is required within the password.

  • Default value: Yes

  • Possible values: 1/0, true/false, True/False, TRUE/FALSE, Yes/No, yes/no, y/n, Y/N, YES/NO

Within Oomnitza System, we allow following characters as special characters:
\|!@#$%^&*()_+-={}"'`~/?.>,<[]]+

 

SAML Settings

The SAML setting allow you to specify other field mappings for SAML authentication flows. Within the SAML authentication flow (which applies to all SAML authentications, like Okta, OneLogin and so on) we always expect the username within the attribute NameID of the SAML payload. By default we would expect the NameID to be username as well as email address for the user, however in some cases you may not have the email be identical to the username and for that you can override the default behavior as outline below.

Key

Description

SAML.email

 

Setting the parameter in Global Settings table allows you to specify a different parameter for the email address of the user. If set, it will be used to populate the user's email, instead of just copying the NameID. If NOT set - meaning the default behavior - the email will be copied from the NameID and will just equal to the username. In case your SAML payload does not even have an email address, the JIT provisioning for users may not work, but SSO can still be achieved by simply defining SAML.email = email in the Global Settings table.
SAML.firstname

The alternative mapping for the first name

SAML.lastname

The alternative mapping for the last name

 

Attachment Settings

Attachment settings allow you to define parameters for the files that can be attached to Assets, Users, and other objects in Oomnitza via the media tab.

Key

Description

attachments.max_file_upload_size

The max allowed size of file to upload

  • Default value: 5242880 (in bytes)

  • Max size: 20971520

attachments.extensions

Specified files extension types allowed for upload as attachments

The user should enter a comma-delimited list with no spaces.

  • e.g. doc,docx,xls,xlsx,png,jpeg

Default list of extensions: .jpeg, .jpg, .png, .pdf, .xlsx, .xls, .doc, .docx, .pptx, .ppt, .txt, .mp3, .MOV, .M4A

If the provided value is invalid, the system should filter it out.

 

Security Settings

Key

Description

security.allowed_cors_domains

Specifies domains allowed for CORS. When the global is not set and the request from the other domain has come, the system should NOT do anything. BUT if it is set, the system should check the domain match and accept or reject it.

The user should enter a comma-delimited list with no spaces.

  • i.e. zendesk.attacker.site,mail.google.com

If the provided value is invalid (contains special characters), the system should filter it out.

 

Configuration Migration Settings

Key

Description

migrations.subdomain
Defines the name of the target instance to where you want the configuration to migrate to. Please use the instance name without the .oomnitza.com extension.
migrations.credential

Defines the name of the credential to use to communicate to the target instance. When using this global setting, please use a name without spaces. 

migrations.disableConfig

Prevents the configuration migration from making changes in production for Objects, Roles, and Screens.

  • Default value: No

  • Case sensitive

  • Possible values: 1/0, true/false, True/False, Yes/No, yes/no, y/n, Y/N, YES/NO

System Settings

Key Description
system.disable_oomnitza_vendor_access

Disables / Enables access to your instance by Oomnitza Support and Implementation teams. 

  • Default value: No

  • Possible values: 1/0, true/false, True/False, Yes/No, yes/no, y/n, Y/N, YES/NO

Have more questions? Submit a request

0 Comments

Please sign in to leave a comment.
Powered by Zendesk