# Configuration

CBWIRE provides extensive configuration options to customize its behavior for your application needs. You can override the default settings by adding configuration in your ColdBox application's **config/ColdBox.bx** for BoxLang or **config/ColdBox.cfc** for CFML.

All CBWIRE configuration is placed within the `moduleSettings` struct under the `cbwire` key. Here's a complete example showing all available configuration options with their default values:

{% tabs %}
{% tab title="BoxLang" %}

```javascript
// config/ColdBox.bx
class {
    function configure() {
        moduleSettings = {
            "cbwire": {
                // Asset Management
                "autoInjectAssets": true,
                "moduleRootURL": "/modules/cbwire",
                
                // Component Configuration
                "wiresLocation": "wires",
                "trimStringValues": false,
                "throwOnMissingSetterMethod": false,
                
                // Request Handling
                "updateEndpoint": "/cbwire/update",
                "maxUploadSeconds": 300, // 5 minutes
                "uploadsStoragePath": "", // Custom temporary storage path for file uploads
                "storagePath": "", // Custom storage path for component compilation
                
                // UI Features
                "showProgressBar": true,
                "progressBarColor": "#2299dd",
                
                // Security
                "csrfEnabled": true,
                "csrfStorage": "SessionCSRFStorage@cbwire",
                "checksumValidation": true
            }
        };
    }
}
```

{% endtab %}

{% tab title="CFML" %}

```javascript
// config/ColdBox.cfc
component {
    function configure() {
        moduleSettings = {
            "cbwire" = {
                // Asset Management
                "autoInjectAssets" = true,
                "moduleRootURL" = "/modules/cbwire",
                
                // Component Configuration
                "wiresLocation" = "wires",
                "trimStringValues" = false,
                "throwOnMissingSetterMethod" = false,
                
                // Request Handling
                "updateEndpoint" = "/cbwire/updates",
                "maxUploadSeconds" = 300, // 5 minutes
                "uploadsStoragePath" = "", // Custom temporary storage path for file uploads
                "storagePath" = "", // Custom storage path for component compilation
                
                // UI Features
                "showProgressBar" = true,
                "progressBarColor" = "##2299dd",
                
                // Security
                "csrfEnabled" = true,
                "csrfStorage" = "SessionCSRFStorage@cbwire",
                "checksumValidation" = true
            }
        };
    }
}
```

{% endtab %}
{% endtabs %}

## Asset Management

### autoInjectAssets

Controls whether CBWIRE automatically includes its CSS and JavaScript assets in your pages. When enabled, you don't need to manually add `wireStyles()` in your layout's `<head>` or `wireScripts()` before the closing `</body>` tag.

**Default:** `true`

```javascript
moduleSettings = {
    "cbwire": {
        "autoInjectAssets": false
    }
};
```

When disabled, you'll need to manually include the assets in your layout:

```html
<!-- In your layout's <head> -->
#wireStyles()#

<!-- Before closing </body> -->
#wireScripts()#
```

### moduleRootURL

Specifies the root URL path for CBWIRE module assets and endpoints. Useful when your application is deployed in a subdirectory or when using custom URL mappings.

**Default:** `/modules/cbwire`

{% hint style="info" %}
Setting `autoInjectAssets` to `false` is useful when you want more control over when and how CBWIRE assets are loaded, or when implementing custom asset optimization strategies.
{% endhint %}

## Component Configuration

### wiresLocation

Defines the directory where your CBWIRE components are stored, relative to your application root. This affects component auto-discovery and naming conventions.

**Default:** `wires`

```javascript
moduleSettings = {
    "cbwire": {
        "wiresLocation": "app/components"
    }
};
```

### trimStringValues

When enabled, automatically trims whitespace from string values in component data properties during updates. This is particularly useful for form inputs where users might accidentally include leading or trailing spaces.

**Default:** `false`

You can also enable this setting on individual components:

{% tabs %}
{% tab title="BoxLang" %}

```javascript
// wires/ContactForm.bx
class extends="cbwire.models.Component" {
    trimStringValues = true;
    
    data = {
        "name": "",
        "email": "",
        "message": ""
    };
}
```

{% endtab %}

{% tab title="CFML" %}

```javascript
// wires/ContactForm.cfc
component extends="cbwire.models.Component" {
    trimStringValues = true;
    
    data = {
        "name" = "",
        "email" = "",
        "message" = ""
    };
}
```

{% endtab %}
{% endtabs %}

{% hint style="warning" %}
Changing the `wiresLocation` after components have been created will require updating your component references and possibly your routing configuration.
{% endhint %}

### throwOnMissingSetterMethod

Controls whether CBWIRE throws an exception when trying to set a property that doesn't have a corresponding setter method. When disabled, missing setters are silently ignored.

**Default:** `false`

## Request Handling

### updateEndpoint

Sets the URI endpoint where CBWIRE processes component updates and actions. You may need to modify this if URL rewriting is disabled or if you're using custom routing.

**Default:** `/cbwire/updates`

```javascript
moduleSettings = {
    "cbwire": {
        "updateEndpoint": "/index.cfm/cbwire/updates"
    }
};
```

### maxUploadSeconds

Specifies the maximum time (in seconds) allowed for file upload operations to complete. This prevents long-running uploads from consuming server resources indefinitely.

**Default:** `300` (5 minutes)

```javascript
moduleSettings = {
    "cbwire": {
        "maxUploadSeconds": 600 // 10 minutes
    }
};
```

### uploadsStoragePath

Configures a custom directory path for temporary file uploads. This is particularly useful in distributed server environments where you need to share temporary files across multiple front-end servers.

**Default:** `getTempDirectory() & "/cbwire"` (system temporary directory)

{% tabs %}
{% tab title="BoxLang" %}

```javascript
// config/ColdBox.bx
moduleSettings = {
    "cbwire": {
        "uploadsStoragePath": "/shared/temp/uploads"
    }
};
```

{% endtab %}

{% tab title="CFML" %}

```javascript
// config/ColdBox.cfc
moduleSettings = {
    "cbwire" = {
        "uploadsStoragePath" = "/shared/temp/uploads"
    }
};
```

{% endtab %}
{% endtabs %}

When set, CBWIRE will use this directory instead of the system's temporary directory for uploaded files. This enables scenarios such as:

* Sharing temporary uploads across clustered servers using a network-mounted directory
* Using a specific disk volume optimized for temporary file operations
* Implementing custom cleanup or monitoring policies on temporary file storage

See the [File Uploads](https://cbwire.ortusbooks.com/features/file-uploads) documentation for details on how uploaded files are stored and managed.

{% hint style="info" %}
Ensure the configured path exists and has appropriate read/write permissions for your application server.
{% endhint %}

### storagePath

Configures a custom directory path for single-file component compilation. When CBWIRE compiles single-file components (`.bxm` files with embedded code), it stores the compiled component classes in this directory.

**Default:** `{module}/models/tmp` (CBWIRE module's internal directory)

{% tabs %}
{% tab title="BoxLang" %}

```javascript
// config/ColdBox.bx
moduleSettings = {
    "cbwire": {
        "storagePath": "/custom/component/compilation"
    }
};
```

{% endtab %}

{% tab title="CFML" %}

```javascript
// config/ColdBox.cfc
moduleSettings = {
    "cbwire" = {
        "storagePath" = "/custom/component/compilation"
    }
};
```

{% endtab %}
{% endtabs %}

{% hint style="warning" %}
The `storagePath` must be within a directory accessible to WireBox for component instantiation. Unlike `uploadsStoragePath` which can use any directory, this path requires proper classpath configuration.
{% endhint %}

{% hint style="info" %}
When URL rewriting is disabled, remember to include `/index.cfm` in your `updateEndpoint` configuration.
{% endhint %}

## UI Features

### showProgressBar

Controls whether a progress bar appears at the top of the page during [wire:navigate](https://cbwire.ortusbooks.com/template-directives/wire-navigate) operations. The progress bar provides visual feedback during page transitions.

**Default:** `true`

```javascript
moduleSettings = {
    "cbwire": {
        "showProgressBar": false
    }
};
```

### progressBarColor

Customizes the color of the progress bar displayed during [wire:navigate](https://cbwire.ortusbooks.com/template-directives/wire-navigate) operations. Accepts any valid CSS color value.

**Default:** `#2299dd`

```javascript
moduleSettings = {
    "cbwire": {
        "progressBarColor": "#ff6b35"
    }
};
```

{% hint style="info" %}
The progress bar only appears when using `wire:navigate` for page transitions. Standard CBWIRE component updates don't trigger the progress bar.
{% endhint %}

## Security Configuration

### csrfEnabled

Enables Cross-Site Request Forgery (CSRF) protection for CBWIRE requests. When enabled, all component actions require a valid CSRF token. CSRF protection is enabled by default in CBWIRE 5.x.

**Default:** `true`

```javascript
moduleSettings = {
    "cbwire": {
        "csrfEnabled": false // Disable if needed (not recommended)
    }
};
```

### csrfStorage

Specifies the storage implementation used to store CSRF tokens. CBWIRE provides two built-in implementations: `SessionCSRFStorage@cbwire` (default, recommended) for session-based storage, and `CacheCSRFStorage@cbwire` for cache-based storage in distributed environments.

**Default:** `SessionCSRFStorage@cbwire`

```javascript
moduleSettings = {
    "cbwire": {
        // Use cache storage for distributed/clustered deployments
        "csrfStorage": "CacheCSRFStorage@cbwire"
    }
};
```

See the [Security](https://cbwire.ortusbooks.com/features/security#csrf-protection) documentation for complete details on CSRF protection, including custom storage implementations.

{% hint style="info" %}
Session-based CSRF storage (default) follows OWASP recommendations and eliminates "Page Expired" errors common with cache-based approaches.
{% endhint %}

### checksumValidation

Enables or disables checksum validation for component payloads. This security feature validates the integrity of data sent between the client and server to prevent tampering.

**Default:** `true`

```javascript
moduleSettings = {
    "cbwire": {
        "checksumValidation": false
    }
};
```

{% hint style="info" %}
We recommend always leaving checksum validation enabled for security, but you can disable it as needed for debugging or specific use cases.
{% endhint %}

{% hint style="info" %}
All configuration options are optional. CBWIRE will use sensible defaults if no custom configuration is provided.
{% endhint %}


---

# Agent Instructions: Querying This Documentation

If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question.

Perform an HTTP GET request on the current page URL with the `ask` query parameter:

```
GET https://cbwire.ortusbooks.com/configuration.md?ask=<question>
```

The question should be specific, self-contained, and written in natural language.
The response will contain a direct answer to the question and relevant excerpts and sources from the documentation.

Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.