General

Field

Function

Days to keep data in login auditing table (0 to maintain all history)

The AUDITLOGONS table in the User database tracks every attempt to login to the Desktop or Web application. Enter the number of days of login history should be kept.

Inactive User Licenses Expiration in Minutes (recommended value=60)

The web application will limit the number of active users based on the number of licenses for the product. The inactive users license expiration setting will release a user's licenses if the product has been sitting idle for the time indicated. 60 minutes is the recommended time.

List of document types that are allowed to be added to records

A comma delimited list of file extensions that are permitted to be attached to records in the web.

List of document types that are not allowed to be added to records

A comma delimited list of file extensions that are blocked from being attached to records in the web.

List of values that are not allowed in search filters to reduce risk of getting hacked

This is a setting designed to reduce the risk of SQL Injection attacks through the REST API. It affects all queries from the REST APIs and the Internal Web App. If the queries include a work in this field they will be blocked. It is strongly encouraged to talk to a Lucity before making changes. The default is :

( insert | update | delete | truncate | reconfigure | union |sysobjects|waitfor|xp_cmdshell|;|--)

Login ID used for scheduled tasks

The login ID used for scheduled tasks referes to a Lucity user ID set up in the Security program. This will be used to access nightly tasks run by the system.