System Properties
Overview
System Properties are platform-wide configuration settings stored in the Aurora PostgreSQL database in the system_properties table. Changes to system properties take effect immediately for new requests but do not affect in-flight operations. All changes are logged to the audit trail with the modifying administrator's identity.
⚙️ Minimum Requirements
- DynamoDB:
StackFlow_SystemPropertytable with PKpropertyKey - IAM: Only
super_adminrole JWT claims may invokePUT /prod/api/admin/system-properties - KMS: Sensitive properties (API keys, secrets) encrypted with
mrk-bd842691514c4d74a02992b8dc11fe16before storage - Lambda:
StackFlowAPImust be redeployed or cache-invalidated after system property changes
Caution: Incorrect system property values can cause service disruptions. Test changes in a non-production tenant before applying to production. Always document the reason for changes in the audit notes field.
General Settings
| Property Key | Default | Description |
|---|---|---|
platform.name | StackFlow | Platform display name in UI |
platform.version | 2026.1 | Current version string |
platform.maintenance_mode | false | Enable maintenance page for all users |
platform.default_timezone | UTC | Default timezone for new users |
platform.session_timeout_minutes | 480 | Idle session timeout (8 hours) |
auth.default_role | viewer | Role assigned to new users without explicit role |
auth.mfa_required_roles | super_admin,cloud_admin | Roles for which MFA is mandatory |
AI Settings
| Property Key | Default | Description |
|---|---|---|
ai.default_model | claude-3-sonnet | Default Bedrock model for AI operations |
ai.bedrock_kb_id | BXJGG7PIPS | Bedrock Knowledge Base ID |
ai.semantic_cache_ttl_seconds | 3600 | TTL for cached AI responses in Redis |
ai.max_tokens_per_request | 4096 | Maximum output tokens per LLM call |
ai.copilot_context_window | 10 | Number of recent records to include as context |
Email Settings
{
"email.provider": "ses",
"email.from_address": "itsm@your-instance.stackflow-tech.com",
"email.reply_to": "support@your-org.com",
"email.ses_region": "us-east-1",
"email.bounce_sns_topic": "stackflow-inbound-email",
"email.to_ticket_enabled": true,
"email.to_ticket_address": "tickets@your-instance.stackflow-tech.com"
}SLA Settings
| Property Key | Default | Description |
|---|---|---|
sla.warning_threshold_pct | 75 | Alert when this % of SLA time has elapsed |
sla.breach_sns_topic | stackflow-breach-notifications | SNS topic for SLA breach alerts |
sla.evaluation_interval_seconds | 60 | How often SLA timers are evaluated |
sla.pause_on_pending_customer | true | Pause SLA clock when awaiting customer info |
Caching Settings
Redis caching settings control the behavior of the StackFlow caching layer. The cache is backed by ElastiCache Redis at master.stackflow-redis-prod.mnzfvx.use1.cache.amazonaws.com:6379 with TLS and auth token enforcement.
{
"cache.enabled": true,
"cache.default_ttl_seconds": 300,
"cache.nav_ttl_seconds": 3600,
"cache.user_session_ttl_seconds": 28800,
"cache.ai_response_ttl_seconds": 3600,
"cache.feature_flags_ttl_seconds": 60
}