Server
Command-line parameters for the service: “Prisma Server”.
--aitester.queue-timeout uint maximum time in seconds an job for the ai tester may be queued for (default 3600)
--aitrainer.queue-timeout uint maximum time in seconds an job for the ai trainer may be queued for (default 3600)
--caching.eviction-time int maximum inactivity duration in seconds after which an entry is considered stale (default 3600)
--caching.housekeeper-scheduler string cron scheduler on which to evict stale entries (default "0 * * * *")
--collector.queue-timeout uint maximum time in seconds an job for the collector may be queued for (default 3600)
--config strings paths to the configuration files (default [prisma-server.yaml,prisma-server-user.yaml,/usr/local/intellitrend/prisma/etc/prisma-server.yaml,/usr/local/intellitrend/prisma/etc/prisma-server-user.yaml])
--config-dump writes the effective configuration to standard output and exits
--config-dump-default writes a default config to standard output and exits
--crypto.master-key string master encryption key from which all other keys are derived
--db.address string database server address
--db.disable-auto-init disables automatic initialization of a new database if no exising database is found
--db.disable-auto-migrate disables automatic migration of outdated databases
--db.driver string database driver ('mysql' or 'postgres') (default "postgres")
--db.name string application database name
--db.password string database server account password
--db.port uint16 database server port (default 5432)
--db.reconnect-delay uint delay in seconds to wait between connection attempts to the database server (default 3)
--db.tls-ca-certificate string optional path to a CA certificate that should be trusted when validating certs
--db.tls-enable enables TLS for the database connection
--db.tls-skip-certificate-validation skip validation of server certificate when using TLS
--db.trace-enable enables extended database logging in the trace log level
--db.user string database server account username
--deliverer.queue-timeout uint maximum time in seconds an job for the deliverer may be queued for (default 3600)
--download.expiry int expiry time in seconds for presigned download urls (default 86400)
--ha.enable enable high availability hot standby
--ha.external-address string external address of this node
--ha.leader-initial-lease-length int duration in seconds that a node can remain the leader without extending its lease, the first time it claims leader status
--ha.leader-lease-length int duration in seconds that a node can remain the leader without extending its lease
--ha.long-poll-intervall int long polling intervall for leader check (used when a leader exists)
--ha.node-identity string unique identity string for this node
--ha.short-poll-intervall int short polling intervall for leader check (used when cluster status could not be checked)
--help shows this help page
--housekeeper.schedule string cron schedule to run housekeeping tasks on. Ensure that the houskeeper schedule does not overlap with the user syncer schedule to avoid double synchronization (default "30 12 * * *")
--i18n.dictionary-path string optional path to custom translation dictionaries
--init.default-account-enabled enabled the default manager account with the email admin@prisma.loc (default true)
--init.default-account-password string the password for the default manager account (default "prisma")
--kafka.trace-enable enables extended kafka logging in trace log level
--ldapauth.address string address of the ldap endpoint to use for authentication
--ldapauth.domain string ldap domain to authenticate the user with
--ldapauth.port uint16 port of the ldap endpoint to use for authentication (default 389)
--ldapauth.tls-ca-certificate string optional path to a CA certificate that should be trusted when validating certs
--ldapauth.tls-enable enables TLS for the ldap connection
--ldapauth.tls-skip-certificate-validation skip validation of server certificate when using ldap over tls
--license.path string path to the license file to load
--list-cli-keys lists all available command line configuration keys (alias of --help)
--list-config-keys lists all available config file configuration keys
--list-env-keys lists all available environment variable configuration keys
--log.enable-structured-logging enables structured JSON logging when using the 'stderr', 'stdout' or 'file' log-target, otherwise logs will always be structured
--log.file string the file to log into if log-target is set to 'file'
--log.level string minimum log level of log messages to show (one of 'trace', 'debug', 'info', 'warning', 'error', 'fatal') (default "info")
--log.syslog-priority uint16 priority to use if log-target is 'syslog' (default 6)
--log.syslog-tag string syslog tag to use if log-target is 'syslog'
--log.target string the target to which log messages shall be printed (one of 'stderr', 'stdout', 'syslog', 'file') (default "stderr")
--log.time-format string the output format of the timestamp if structured logging is disabled (one of 'rfc822z', 'rfc1123', 'rfc1123z', 'kitchen', 'datetime', 'timeonly', 'rfc850', 'rfc822', 'rfc3339', 'stampmilli', 'ansic', 'unixdate', 'rubydate', 'rfc3339nano', 'stamp', 'stampmicro', 'stampnano', 'dateonly', 'layout') (default "datetime")
--lsr.address string address of the license holder
--lsr.company string company of the license holder
--lsr.email string email of the license holder
--lsr.first-name string first name of the license holder
--lsr.generate generates a license signing request
--lsr.interface-name string optional override for the network interface to lock against
--lsr.last-name string last name of the license holder
--lsr.phone-number string phone number of the license holder
--lsr.salute string salutation of the license holder
--lsr.website string website of the license holder
--mailer.from-address string Sender (From: header) in emails (default "noreply@intellitrend.de")
--mailer.smtp-auth-mech string smtp server authentication mechanism (one of none, PLAIN, LOGIN, CRAM-MD5) (default "PLAIN")
--mailer.smtp-helo-name string Hostname to use in HELO when greeting SMTP server (if empty, the hostname is used)
--mailer.smtp-host string smtp server address
--mailer.smtp-password string smtp server password
--mailer.smtp-port uint16 smtp server port (default 465)
--mailer.smtp-tls-mode string smtp server TLS communication mode (one of none, starttls-mandatory, starttls-opportunistic, tls-explicit) (default "tls-explicit")
--mailer.smtp-user-agent string smtp User-Agent header, should identify the service (default "IntelliTrend Mailer")
--mailer.smtp-username string smtp server username
--metrics.history-size uint size of rotating buffers kept by the collector (default 200)
--metrics.identity string identity string used for metrics
--metrics.port uint16 port to serve the metrics endpoint on (default 8095)
--metrics.state-file string path to the state file used to persist metrics (default "state.json")
--netlog.show enables outputting of the netlog to the main log
--nsq.auth-enable enables nsq authentication
--nsq.auth-secret string nsq authentication secret
--nsq.consume-address string address to consume messages from
--nsq.consume-port uint16 port to consume messages from
--nsq.produce-address string address to produce messages to
--nsq.produce-port uint16 port to produce messages to
--nsq.service-identity string identity string for this service (may be any string but must be unique on the nsq bus)
--nsq.tls-ca-certificate string optional path to a ca certificate that should be trusted when validating certs
--nsq.tls-enable enables TLS for nsq communication
--nsq.tls-skip-certificate-validation skip validation of server certificate when using nsq over tls
--nsq.trace-enable enables extended nsq logging in the trace log level
--nsqauth.ai-tester-secret string prisma ai tester secret for the nsq authentication endpoint
--nsqauth.ai-trainer-secret string prisma ai trainer secret for the nsq authentication endpoint
--nsqauth.collector-secret string prisma ai collector secret for the nsq authentication endpoint
--nsqauth.deliverer-secret string prisma deliverer secret for the nsq authentication endpoint
--nsqauth.enable enable nsq authentication endpoint (default true)
--nsqauth.master-secret string master secret for the nsq authentication endpoint
--nsqauth.port uint16 port to serve the nsq authentication endpoint on (default 8094)
--nsqauth.preprocessor-secret string prisma preprocessor secret for the nsq authentication endpoint
--nsqauth.push-server-secret string prisma push server secret for the nsq authentication endpoint
--nsqauth.renderer-secret string prisma renderer secret for the nsq authentication endpoint
--nsqauth.require-client-tls requires authenticaticating clients to be connected to NSQ over TLS
--nsqauth.server-secret string prisma server secret for the nsq authentication endpoint
--nsqauth.tls-certificate-path string path to the tls certificate to use for the nsq authentication endpoint (x509 Certificate)
--nsqauth.tls-enable enable tls for the nsq authentication endpoint
--nsqauth.tls-private-key-path string path to the private key to use for the nsq authentication endpoint (x509 Private Key)
--nsqrpc.control-message-pace uint pace at which control messages will be passed back and forth between services (default 1000)
--nsqrpc.control-message-timeout uint maximum time between control messages before a transaction will be considered dead (default 10)
--nsqrpc.timeout-checker-delay uint delay between timeout checker runs (default 2)
--oss-licenses displays the licenses for all open source software used
--preprocessor.queue-timeout uint maximum time in seconds a job for the preprocessor may be queued for (default 3600)
--renderer.queue-timeout uint maximum time in seconds a job for the preprocessor may be queued for (default 3600)
--s3.admin-access-key string access key for the Box admin account (default "admin_access_key")
--s3.admin-secret-key string secret key for the Box admin account
--s3.cleanup-iam will delete any unknown IAM accounts from the IAM during server start
--s3.storage-url string url to the internal storage s3 endpoint
--s3.sync-interval uint interval in seconds between syncs with internal storage buckets (default 300)
--s3.trace-enable enables extended s3 logging in the trace loglevel
--scheduler.trace-enable enables extended logging for the scheduler in the trace log level
--server.cors-allowed-origins strings allowed origins to set in the Access-Control-Allowed-Origins header (default [*])
--server.frontend-url string root url of the prisma frontend being deployed with this prisma server
--server.grpc-port uint16 port to serve the grpc endpoint on (default 8090)
--server.grpc-tls-enable enable TLS for the grpc endpoint
--server.grpc-web-compression-enabled enables server side compression of all api responses
--server.grpc-web-port uint16 port to serve the grpc-web endpoint on (default 8091)
--server.grpc-web-tls-enable enable TLS for the grpc-web endpoint
--server.query-limit uint16 maximum number of elements to return from the database in a single query (default 1000)
--server.ratelimit-bucket-capacity uint maximum burst of requests that a single user can do instantly (default 75)
--server.ratelimit-bucket-refill-rate uint continuous refill rate of the rate limiting buckets of users in tokens per second (default 15)
--server.rest-port uint16 port to serve the rest endpoint on (default 8092)
--server.rest-tls-enable enable TLS for the rest endpoint
--server.slow-query-threshold int threshold in milliseconds until a query is logged as a slow query (default 1000)
--server.thread-guard-enable enables the thread guard, which recovers thread panics and converts them to errors (default true)
--server.tls-certificate-path string path to the certificate to use for the server endpoints (x509 certificate)
--server.tls-private-key-path string path to the private key to use for the server endpoints (x509 private key)
--sessions.expiry int duration in seconds that a created session is valid for (default 3600)
--show-stack-traces whether or not stack traces are included if a module returns an error
--usersync.schedule string cron schedule on which to sync with all zabbix servers (default "0 * * * *")
--usersync.sync-on-start causes the server to do a blocking synchronization with all zabbix servers during server startup (default true)
--version displays the software version
--zabbix.allow-insecure-connections enables the use of unencrypted http connections for communication with zabbix (Not recommended)
--zabbix.allow-redirects uint sets the maximum number of http redirects to follow when communicating with zabbix
--zabbix.timeout uint timeout for zabbix api requests (default 60)
--zabbix.trace-enable enables extended zabbix api logging in the trace log level