System Settings
Platform-wide configuration. Application name, URL, QuestBlue API credentials for SMS, encryption settings, feature flags. Settings stored encrypted in database.
System Settings
System settings provide platform-wide configuration for your CrystalQore instance. These settings control application identity, integrations, security, and feature behavior. Settings are stored encrypted in the database for security.
Overview
System settings are managed in the Superadmin panel under Admin → Settings. Only users with the Superadmin role can view and modify these settings.
Application Identity
| Setting | Description | Example |
|---|---|---|
| Application name | Name displayed in the UI (browser tab, headers) | "CrystalQore" or "Acme Communications" |
| Application URL | Base URL of your CrystalQore instance | https://crystalqore.yourcompany.com |
| Favicon | Favicon for the application | (Enterprise: see White Label) |
| Logo | Application logo | (Enterprise: see White Label) |
The application name and URL are used for:
- Login page branding
- Password reset emails
- WebSocket and API URLs
- Deep links in notifications
Changing the application URL may affect WebSocket connections, OAuth callbacks, and bookmarked links. Update gradually and notify users.
QuestBlue Integration (SMS)
QuestBlue provides SMS/MMS capabilities. Configure these to enable the SMS module:
| Setting | Description |
|---|---|
| QuestBlue API URL | Base URL for the QuestBlue API |
| QuestBlue API key | Authentication key for API requests |
| QuestBlue API secret | Secret for signing or additional auth (if required) |
Without valid QuestBlue credentials:
- SMS numbers cannot be assigned
- Inbound/outbound SMS will not work
- 10DLC campaigns cannot be managed
Store API keys securely. They are encrypted at rest but ensure Superadmin access is restricted.
Encryption Settings
Encryption settings control how sensitive data is protected:
- Encryption key — Used to encrypt credentials, API keys, and other secrets in the database
- Algorithm — Encryption algorithm (e.g., AES-256)
- Key rotation — Process for rotating keys (if supported)
Changing encryption keys can invalidate existing encrypted data. Coordinate key rotation with a migration plan.
Feature Flags
Feature flags enable or disable platform features:
| Flag | Description |
|---|---|
| SMS module | Enable/disable SMS for the entire platform |
| Video conferencing | Enable/disable video meeting features |
| Desktop apps | Enable/disable desktop app access (Professional+) |
| Mobile apps | Enable/disable mobile app access (Enterprise) |
| White label | Enable/disable white-label customization (Enterprise) |
| API access | Enable/disable external API (Enterprise) |
Feature flags work in combination with tier entitlements. A flag may be on, but the tier must also allow the feature.
Other Settings
Additional settings may include:
- Session timeout (default) — Default session length for new tenants
- Max upload size — File upload limits
- Allowed file types — Whitelist of uploadable file extensions
- Email (SMTP) — If CrystalQore sends email (password reset, notifications)
- Log level — Debug, info, warn, error
- CORS — Allowed origins for API access
- Rate limiting — API and login rate limits
Storage and Security
- Encrypted at rest — Sensitive settings (credentials, keys) are encrypted in the database
- Superadmin only — Only Superadmins can view and edit
- Audit logged — Changes to settings are typically recorded in audit logs
- No client exposure — Sensitive values are never sent to the client (browser/app)
Best Practices
- Document changes — Keep a change log of setting modifications
- Test in staging — Apply changes in a non-production environment first when possible
- Backup before major changes — Ensure database backup before modifying encryption or URL
- Restrict Superadmin — Limit the number of users with Superadmin role
Related Documentation
| Page | Description |
|---|---|
| SMS Numbers | Uses QuestBlue credentials |
| White Label | Branding (Enterprise) |
| Audit Logs | Track setting changes |