Lavagna HELP
  1. 1About
  2. 2Install
    1. 2.1Database
      1. 2.1.1MySql
      2. 2.1.2MariaDB
      3. 2.1.3PostgreSQL
      4. 2.1.4HSQLDB
    2. 2.2Configuration
      1. 2.2.1Self contained
      2. 2.2.2Servlet container
    3. 2.3Setup
      1. 2.3.1Step 1, Base url or import
      2. 2.3.2Step 2, Login provider configuration
        1. provider
        2. provider
        3. provider
        4. provider
        5. oauth providers
        6. oauth providers
      3. 2.3.3Step 3 Insert administator
      4. 2.3.4Step 4 Confirm
  3. 3Use Lavagna
    1. 3.1Project
      1. 3.1.1Create Project
      2. 3.1.2Project settings
      3. 3.1.3Edit Project
      4. 3.1.4Archive Project
      5. 3.1.5Delete Project
    2. 3.2Board
      1. 3.2.1Create Board
      2. 3.2.2Edit Board
      3. 3.2.3Archive Board
      4. 3.2.4Delete Board
    3. 3.3Columns
      1. 3.3.1Create a new column
      2. 3.3.2Special columns
        1. the backlog
        2. the archive
        3. the trash
      3. 3.3.3Change the name of a column
      4. 3.3.4Column menu
      5. 3.3.5Change status color
    4. 3.4Card
      1. 3.4.1Create a new card
      2. 3.4.2Access the card menu in a board
      3. 3.4.3Work with a card
        1. the card title
        2. the card description
        3. a label
        4. the card
        5. the card due date
        6. the card to a milestone
        7. with people
          1. the card to a user
          2. operations
        8. with action lists
    5. 3.5Labels
      1. 3.5.1Use labels
      2. 3.5.2Manage labels
        1. a label
        2. a label
        3. a label
    6. 3.6Milestones
      1. 3.6.1Use milestones
        1. a milestone
      2. 3.6.2Manage milestones
        1. a new milestone
        2. a milestone
    7. 3.7Search
      1. 3.7.1Filters
        8. by
        12. text search
      2. 3.7.2Single board search
      3. 3.7.3Global and project specific search
    8. 3.8Operations on multiple cards
      1. 3.8.1Select cards
      2. 3.8.2Operations
    9. 3.9Calendars
    10. 3.10Project Statistics
      1. 3.10.1Filtering
      2. 3.10.2Basic statistics
      3. 3.10.3Chart statistics
    11. 3.11Import data from external sources
      1. 3.11.1Trello
        2. data
    12. 3.12Create tickets via E-mail
      1. 3.12.1Manage ticket E-mail configuration
        1. mail configuration
        2. ticket configuration
        3. configurations
        4. configuration
        5. configuration
      2. 3.12.2Support localized E-Mail notifications
    13. 3.13Manage profile
      1. 3.13.1Profile
      2. 3.13.2Calendar access
      3. 3.13.3Change password
  4. 4Administration
    1. 4.1Configuration parameters
    2. 4.2Login
      1. 4.2.1Anonymous user access
      2. 4.2.2Login providers
        2. (internal provider)
        5. oauth providers
        6. oauth providers
    3. 4.3Users
      1. 4.3.1Add User
      2. 4.3.2Import users from a file
      3. 4.3.3User actions
    4. 4.4Access control
      1. 4.4.1Global and Project Roles
        1. roles
        2. roles for effective access control
      2. 4.4.2Permissions
      3. 4.4.3Manage roles
        1. a new role
        2. a role
        3. a role
        4. project role
    5. 4.5Mail notifications
    6. 4.6Import/Export data
      1. 4.6.1Exporting
      2. 4.6.2Importing
    7. 4.7External integrations
      1. 4.7.1Script creation
        1. events
      2. 4.7.2Script example
      3. 4.7.3Manage the integration


The login section provide the configuration space for:

  • anonymous user access
  • login providers

4.2.1Anonymous user access

Anonymous access allows read-only access to the entire application. Users will be able to navigate projects, boards, and cards without the need to login in.

By default, the access for anonymous user is disabled.

Anonymous user access control

Once enabled, it’s possible to configure further settings:

  • Global Access: give access to all project, regardless of each project anonymous access policy
  • Enable Search: enable search for anonymous users

If only one of few projects should be accessible without login, enable anonymous access for each one individually.

To do that, access the “Anonymous Access” tab in the Project Settings.

4.2.2Login providers

Lavagna support multiple providers at the same time. In this section they can be enabled and configured.

The Demo provider is used for development and internal testing. Users belonging to the demo provider have their password automatically set as their username, without the possibility to change it.

ALERT: don't use this provider for any purpose other than develpment or testing (internal provider)

The internal password provider is used for deployments that have no ability to connect to an external authentication provider, and enforce security via other means (e.g. access via VPN only).

Simply enable the password provider to start using it.

NOTICE: the Lavagna team still recomends to use a more secure provider, with features like two-factor authentication.

If the users are stored in a ldap directory (Active Directory is supported too), the ldap provider must be configured.

Ldap provider

It requires a user that can query the directory (the Manager DN and Manager Password).

The query is composed by a base (Search base) and the filter (User search filter), where {0} is the placeholder for the username.

The configuration can be tested in the “Verify” form.

By checking “Enable automatic account creation”, Lavagna will automatically create missing users, with DEFAULT role, if the LDAP authentication succeeds, but the user is not found internally.

The application support the following external oauth providers: oauth providers

Select the oauth provider of the first account and provide the api key and secret. The provided callback url should be the correct one that must be provided.

See the documentation for: oauth providers

Self-hosted gitlab instances can be configured with the “Add new provider” functionality.

Please note that if you are using self signed certificates you must include them in the default keystore of your java virtual machine. See the keytool documentation and this stackoverflow post. Lavagna will not provide a way to ignore untrusted certificates.

New Oauth provider

The new providers will appear in the section “Configurable OAuth providers”.