There are different items where you can configure settings in MOLGENIS:
There are a three main sections in the application settings.
- General settings
- Tracking settings
- ReCaptcha settings
ReCaptcha is a service currently only provided by Google. It basically works on determining a BOT-score. The value of this score is based on the request send to the server. The request is validated based on host-key comparison and other variables which are part of the inner workings of reCaptcha. To set it up you need to configure an account on ReCaptcha (Check Adding a domain at reCaptcha). Secondly you need to define properties in MOLGENIS (please check: Configure reCaptcha in MOLGENIS).
Adding domain at reCaptcha
Configure reCaptcha in MOLGENIS
Filling out the settings in the Application settings in MOLGENIS.
You have to configure 6 properties:
- ReCaptcha secret: Can be obtained by configuring your domain in ReCaptcha from Google
- ReCaptcha site: Can be obtained by configuring your domain in ReCaptcha from Google
- Enable reCaptcha: If set to true then the reCaptcha is enabled in MOLGENIS
- Verification URI: Fires a request for verification if the user is a BOT or not
- BOT threshold: A number between 0.0 and 1.0. 1.0 is most likely a human and 0.0 is most likely a BOT. The threshold is compare to the score that reCaptcha calculates.
note: Make sure you have your Mail settings configured as well.
You should configure an email server to interact with your users for things like lost password recovery. You can find the mail settings in the Admin menu, under Settings. At the top of the page, type "Mail settings" into the selection box.
For backwards compatability, the default settings are filled with the values provided in
under the keys
mail.password, but the values provided here will override those settings.
For basic configuration, you only need to provide the username and password fields with a valid Gmail username and password. But you may also specify a different (non-Gmail) SMTP server.
If you've filled in a username and password, the settings will be validated when you save them, by making a connection
with the mail server. If you do not want the settings to be tested at all, you can set
testConnection to false.
By default, the following low-level JavaMail properties, needed to interact with the Gmail SMTP server, are set:
mail.smtp.starttls.enable=true mail.smtp.quitwait=false mail.smtp.auth=true
You may override these properties or add additional properties and override these defaults by adding entities to the
JavaMailProperty repository in the Data Explorer. Each key may be provided at most once.
For a list of valid keys, check https://javamail.java.net/nonav/docs/api/
E.g. Add an entity with key
trueif you'd like to debug the mail dialog with the server.
When you are a superuser in MOLGENIS, you can configure three authentication methods:
- Username/password signin (default)
Username/password signin (default)
In the App Settings:
- Set user-moderation to user can sign up
- Set two factor authentication:
- Disabled: users CAN NOT use two-factor-authentication
- Enforced: users MUST use two-factor-authentication
- Enabled: users CAN use two-factor-authentication
prompted: The default setting for tow-factor-authentication for a fresh installation "Disabled". When two-factor-authentication is "Enabled" it is default disabled for the users.
The Google-signin setting is used to enable the possibility for users to login with their Google-account.
Token-authentication No specific superuser settings are necessary for the implementation of token-authentication.