(2003-2009) * @author Froxlor team (2010-) * @license GPLv2 http://files.froxlor.org/misc/COPYING.txt * @package \Froxlor\Settings * */ return array( 'groups' => array( 'ssl' => array( 'title' => $lng['admin']['sslsettings'], 'icon' => 'fa-solid fa-shield', 'fields' => array( 'system_ssl_enabled' => array( 'label' => $lng['serversettings']['ssl']['use_ssl'], 'settinggroup' => 'system', 'varname' => 'use_ssl', 'type' => 'checkbox', 'default' => false, 'save_method' => 'storeSettingField', 'overview_option' => true ), 'system_ssl_protocols' => array( 'label' => $lng['serversettings']['ssl']['ssl_protocols'], 'settinggroup' => 'system', 'varname' => 'ssl_protocols', 'type' => 'select', 'default' => 'TLSv1.2', 'select_mode' => 'multiple', 'select_var' => array( 'TLSv1' => 'TLSv1', 'TLSv1.1' => 'TLSv1.1', 'TLSv1.2' => 'TLSv1.2', 'TLSv1.3' => 'TLSv1.3' ), 'save_method' => 'storeSettingField' ), 'system_ssl_cipher_list' => array( 'label' => $lng['serversettings']['ssl']['ssl_cipher_list'], 'settinggroup' => 'system', 'varname' => 'ssl_cipher_list', 'type' => 'text', 'string_emptyallowed' => false, 'default' => 'ECDH+AESGCM:ECDH+AES256:!aNULL:!MD5:!DSS:!DH:!AES128', 'save_method' => 'storeSettingField', 'advanced_mode' => true ), 'system_tlsv13_cipher_list' => array( 'label' => $lng['serversettings']['ssl']['tlsv13_cipher_list'], 'settinggroup' => 'system', 'varname' => 'tlsv13_cipher_list', 'type' => 'text', 'string_emptyallowed' => true, 'default' => '', 'visible' => \Froxlor\Settings::Get('system.webserver') == "apache2" && \Froxlor\Settings::Get('system.apache24') == 1, 'save_method' => 'storeSettingField', 'advanced_mode' => true ), 'system_ssl_cert_file' => array( 'label' => $lng['serversettings']['ssl']['ssl_cert_file'], 'settinggroup' => 'system', 'varname' => 'ssl_cert_file', 'type' => 'text', 'string_type' => 'file', 'string_emptyallowed' => true, 'default' => '/etc/apache2/apache2.pem', 'save_method' => 'storeSettingField' ), 'system_ssl_key_file' => array( 'label' => $lng['serversettings']['ssl']['ssl_key_file'], 'settinggroup' => 'system', 'varname' => 'ssl_key_file', 'type' => 'text', 'string_type' => 'file', 'string_emptyallowed' => true, 'default' => '/etc/apache2/apache2.key', 'save_method' => 'storeSettingField' ), 'system_ssl_cert_chainfile' => array( 'label' => $lng['admin']['ipsandports']['ssl_cert_chainfile'], 'settinggroup' => 'system', 'varname' => 'ssl_cert_chainfile', 'type' => 'text', 'string_type' => 'file', 'string_emptyallowed' => true, 'default' => '', 'save_method' => 'storeSettingField' ), 'system_ssl_ca_file' => array( 'label' => $lng['serversettings']['ssl']['ssl_ca_file'], 'settinggroup' => 'system', 'varname' => 'ssl_ca_file', 'type' => 'text', 'string_type' => 'file', 'string_emptyallowed' => true, 'default' => '', 'save_method' => 'storeSettingField' ), 'system_apache24_ocsp_cache_path' => array( 'label' => $lng['serversettings']['ssl']['apache24_ocsp_cache_path'], 'settinggroup' => 'system', 'varname' => 'apache24_ocsp_cache_path', 'type' => 'text', 'string_emptyallowed' => false, 'default' => 'shmcb:/var/run/apache2/ocsp-stapling.cache(131072)', 'visible' => \Froxlor\Settings::Get('system.webserver') == "apache2" && \Froxlor\Settings::Get('system.apache24') == 1, 'save_method' => 'storeSettingField', 'advanced_mode' => true ), 'system_sessionticketsenabled' => array( 'label' => $lng['admin']['domain_sessionticketsenabled'], 'settinggroup' => 'system', 'varname' => 'sessionticketsenabled', 'type' => 'checkbox', 'default' => true, 'save_method' => 'storeSettingField', 'visible' => \Froxlor\Settings::Get('system.use_ssl') && (\Froxlor\Settings::Get('system.webserver') == "nginx" || (\Froxlor\Settings::Get('system.webserver') == "apache2" && \Froxlor\Settings::Get('system.apache24') == 1)), 'advanced_mode' => true ), 'system_leenabled' => array( 'label' => $lng['serversettings']['leenabled'], 'settinggroup' => 'system', 'varname' => 'leenabled', 'type' => 'checkbox', 'default' => false, 'cronmodule' => 'froxlor/letsencrypt', 'save_method' => 'storeSettingField' ), 'system_acmeshpath' => array( 'label' => $lng['serversettings']['acmeshpath'], 'settinggroup' => 'system', 'varname' => 'acmeshpath', 'type' => 'text', 'string_type' => 'file', 'default' => '/root/.acme.sh/acme.sh', 'save_method' => 'storeSettingField', 'advanced_mode' => true ), 'system_letsencryptacmeconf' => array( 'label' => $lng['serversettings']['letsencryptacmeconf'], 'settinggroup' => 'system', 'varname' => 'letsencryptacmeconf', 'type' => 'text', 'string_type' => 'file', 'default' => '/etc/apache2/conf-enabled/acme.conf', 'save_method' => 'storeSettingField' ), /** * currently the only option anyway * 'system_leapiversion' => array( 'label' => $lng['serversettings']['leapiversion'], 'settinggroup' => 'system', 'varname' => 'leapiversion', 'type' => 'select', 'default' => '2', 'select_var' => array( '2' => 'ACME v2' ), 'save_method' => 'storeSettingField' ), */ 'system_letsencryptca' => array( 'label' => $lng['serversettings']['letsencryptca'], 'settinggroup' => 'system', 'varname' => 'letsencryptca', 'type' => 'select', 'default' => 'letsencrypt', 'select_var' => array( 'letsencrypt_test' => 'Let\'s Encrypt (Test / Staging)', 'letsencrypt' => 'Let\'s Encrypt (Live)', 'buypass_test' => 'Buypass (Test / Staging)', 'buypass' => 'Buypass (Live)', 'zerossl' => 'ZeroSSL (Live)' ), 'save_method' => 'storeSettingField' ), 'system_letsencryptchallengepath' => array( 'label' => $lng['serversettings']['letsencryptchallengepath'], 'settinggroup' => 'system', 'varname' => 'letsencryptchallengepath', 'type' => 'text', 'string_emptyallowed' => false, 'default' => \Froxlor\Froxlor::getInstallDir(), 'save_method' => 'storeSettingField', 'advanced_mode' => true ), 'system_letsencryptkeysize' => array( 'label' => $lng['serversettings']['letsencryptkeysize'], 'settinggroup' => 'system', 'varname' => 'letsencryptkeysize', 'type' => 'select', 'default' => '2048', 'select_var' => array( '2048' => '2048', '3072' => '3072', '4096' => '4096', '8192' => '8192' ), 'save_method' => 'storeSettingField' ), 'system_leecc' => array( 'label' => $lng['serversettings']['letsencryptecc'], 'settinggroup' => 'system', 'varname' => 'leecc', 'type' => 'select', 'default' => '0', 'select_var' => array( '0' => '-', '256' => 'ec-256', '384' => 'ec-384' ), 'save_method' => 'storeSettingField', 'advanced_mode' => true ), 'system_letsencryptreuseold' => array( 'label' => $lng['serversettings']['letsencryptreuseold'], 'settinggroup' => 'system', 'varname' => 'letsencryptreuseold', 'type' => 'checkbox', 'default' => true, 'save_method' => 'storeSettingField', 'advanced_mode' => true ), 'system_disable_le_selfcheck' => array( 'label' => $lng['serversettings']['le_domain_dnscheck'], 'settinggroup' => 'system', 'varname' => 'le_domain_dnscheck', 'type' => 'checkbox', 'default' => true, 'save_method' => 'storeSettingField' ) ) ) ) );