##// END OF EJS Templates
encryption: added new backend using cryptography + Fernet encryption....
encryption: added new backend using cryptography + Fernet encryption. - This would soon replace the old deprecated one based on pycrypto - We need a migration for the encryption data

File last commit:

r3522:3910c057 default
r3522:3910c057 default
Show More
development.ini
737 lines | 26.6 KiB | text/x-ini | IniLexer
configs: updated docstrings, and improved explanation of some settings
r631
project: added all source files and assets
r1 ################################################################################
application: add debug mode that switches logging to debug....
r3270 ## RHODECODE COMMUNITY EDITION CONFIGURATION ##
project: added all source files and assets
r1 ################################################################################
[DEFAULT]
application: add debug mode that switches logging to debug....
r3270 ## Debug flag sets all loggers to debug, and enables request tracking
project: added all source files and assets
r1 debug = true
configs: updated docstrings, and improved explanation of some settings
r631
project: added all source files and assets
r1 ################################################################################
configs: updated docstrings, and improved explanation of some settings
r631 ## EMAIL CONFIGURATION ##
project: added all source files and assets
r1 ## Uncomment and replace with the email address which should receive ##
## any error reports after an application crash ##
## Additionally these settings will be used by the RhodeCode mailing system ##
################################################################################
configs: updated docstrings, and improved explanation of some settings
r631
## prefix all emails subjects with given prefix, helps filtering out emails
#email_prefix = [RhodeCode]
## email FROM address all mails will be sent
project: added all source files and assets
r1 #app_email_from = rhodecode-noreply@localhost
configs: updated docstrings, and improved explanation of some settings
r631
project: added all source files and assets
r1 #smtp_server = mail.server.com
#smtp_username =
#smtp_password =
#smtp_port =
#smtp_use_tls = false
#smtp_use_ssl = true
[server:main]
## COMMON ##
host = 127.0.0.1
port = 5000
config: updated docstrings in .ini files
r2997 ###########################################################
## WAITRESS WSGI SERVER - Recommended for Development ####
###########################################################
configs: updated docstrings, and improved explanation of some settings
r631
project: added all source files and assets
r1 use = egg:waitress#main
## number of worker threads
threads = 5
## MAX BODY SIZE 100GB
max_request_body_size = 107374182400
## Use poll instead of select, fixes file descriptors limits problems.
## May not work on old windows systems.
asyncore_use_poll = true
##########################
## GUNICORN WSGI SERVER ##
##########################
configs: updated default configs based on latest changes in control config templates
r943 ## run with gunicorn --log-config rhodecode.ini --paste rhodecode.ini
configs: updated docstrings, and improved explanation of some settings
r631
project: added all source files and assets
r1 #use = egg:gunicorn#main
config: updated .ini configs
r3483 ## Sets the number of process workers. More workers means more concurrent connections
config: updated docstrings in .ini files
r2997 ## RhodeCode can handle at the same time. Each additional worker also it increases
## memory usage as each has it's own set of caches.
## Recommended value is (2 * NUMBER_OF_CPUS + 1), eg 2CPU = 5 workers, but no more
## than 8-10 unless for really big deployments .e.g 700-1000 users.
## `instance_id = *` must be set in the [app:main] section below (which is the default)
## when using more than 1 worker.
configs: updated dev and production ini files....
r122 #workers = 2
config: updated docstrings in .ini files
r2997 ## process name visible in process list
project: added all source files and assets
r1 #proc_name = rhodecode
## type of worker class, one of sync, gevent
## recommended for bigger setup is using of of other than sync one
config: update .ini file to latest installer defaults.
r2506 #worker_class = gevent
configs: show worker_connection option for gunicorn
r11 ## The maximum number of simultaneous clients. Valid only for Gevent
#worker_connections = 10
project: added all source files and assets
r1 ## max number of requests that worker will handle before being gracefully
## restarted, could prevent memory leaks
#max_requests = 1000
#max_requests_jitter = 30
ini: fixed typo, remove debug style from production
r125 ## amount of time a worker can spend with handling a request before it
project: added all source files and assets
r1 ## gets killed and restarted. Set to 6hrs
#timeout = 21600
docs: fix apache as subdirectory instructions....
r1121 ## prefix middleware for RhodeCode.
configs: updated configuration files based on latest CE and EE changes
r615 ## recommended when using proxy setup.
project: added all source files and assets
r1 ## allows to set RhodeCode under a prefix in server.
configuration: synced ini configuration changes
r1164 ## eg https://server.com/custom_prefix. Enable `filter-with =` option below as well.
## And set your prefix like: `prefix = /custom_prefix`
## be sure to also set beaker.session.cookie_path = /custom_prefix if you need
## to make your cookies only work on prefix url
configs: uncomment proxy-prefix. There's just 1 line needed to enable it...
r629 [filter:proxy-prefix]
use = egg:PasteDeploy#prefix
prefix = /
project: added all source files and assets
r1
[app:main]
configurations: update attached configuration INI files with the ENV_ substitution infomation....
r2986 ## The %(here)s variable will be replaced with the absolute path of parent directory
## of this file
## In addition ENVIRONMENT variables usage is possible, e.g
## sqlalchemy.db1.url = {ENV_RC_DB_URL}
project: added all source files and assets
r1 use = egg:rhodecode-enterprise-ce
configs: uncomment proxy-prefix. There's just 1 line needed to enable it...
r629
## enable proxy prefix middleware, defined above
project: added all source files and assets
r1 #filter-with = proxy-prefix
# During development the we want to have the debug toolbar enabled
pyramid.includes =
pyramid_debugtoolbar
rhodecode.lib.middleware.request_wrapper
pyramid.reload_templates = true
debugtoolbar.hosts = 0.0.0.0/0
debugtoolbar.exclude_prefixes =
/css
/fonts
/images
/js
## RHODECODE PLUGINS ##
rhodecode.includes =
rhodecode.api
# api prefix url
rhodecode.api.url = /_admin/api
## END RHODECODE PLUGINS ##
config: synced .ini files with latest changes
r269 ## encryption key used to encrypt social plugin tokens,
## remote_urls with credentials etc, if not set it defaults to
## `beaker.session.secret`
#rhodecode.encrypted_values.secret =
encryption: Implement a slightly improved AesCipher encryption....
r281 ## decryption strict mode (enabled by default). It controls if decryption raises
## `SignatureVerificationError` in case of wrong key, or damaged encryption data.
#rhodecode.encrypted_values.strict = false
encryption: added new backend using cryptography + Fernet encryption....
r3522 ## Pick algorithm for encryption. Either fernet (more secure) or aes (default)
## fernet is safer, and we strongly recommend switching to it.
## Due to backward compatibility aes is used as default.
#rhodecode.encrypted_values.algorithm = fernet
config: updated .ini configs
r3483 ## return gzipped responses from RhodeCode (static files/application)
Martin Bornhold
config: Set 'gzip_responses' to false by default.
r597 gzip_responses = false
project: added all source files and assets
r1
config: updated .ini configs
r3483 ## auto-generate javascript routes file on startup
dan
javascript: use separate ini config for generating dynamic js files
r263 generate_js_files = false
config: updated docstrings in .ini files
r2997 ## System global default language.
## All available languages: en(default), be, de, es, fr, it, ja, pl, pt, ru, zh
project: added all source files and assets
r1 lang = en
config: updated docstrings in .ini files
r2997 ## Perform a full repository scan and import on each server start.
## Settings this to true could lead to very long startup time.
project: added all source files and assets
r1 startup.import_repos = false
## Uncomment and set this path to use archive download cache.
## Once enabled, generated archives will be cached at this location
## and served from the cache during subsequent requests for the same archive of
## the repository.
#archive_cache_dir = /tmp/tarballcache
config: updated .ini configs
r3483 ## URL at which the application is running. This is used for Bootstrapping
ssh: allow customizing the base_url for running application....
r2188 ## requests in context when no web request is available. Used in ishell, or
## SSH calls. Set this for events to receive proper url for SSH calls.
app.base_url = http://rhodecode.local
config: updated docstrings in .ini files
r2997 ## Unique application ID. Should be a random unique string for security.
project: added all source files and assets
r1 app_instance_uuid = rc-production
config: updated docstrings in .ini files
r2997 ## Cut off limit for large diffs (size in bytes). If overall diff size on
dan
diffs: use whole chunk diff to calculate if it's oversized or not....
r2070 ## commit, or pull request exceeds this limit this diff will be displayed
## partially. E.g 512000 == 512Kb
cut_off_limit_diff = 512000
config: updated docstrings in .ini files
r2997 ## Cut off limit for large files inside diffs (size in bytes). Each individual
dan
diffs: use whole chunk diff to calculate if it's oversized or not....
r2070 ## file inside diff which exceeds this limit will be displayed partially.
## E.g 128000 == 128Kb
cut_off_limit_file = 128000
project: added all source files and assets
r1
config: updated docstrings in .ini files
r2997 ## use cached version of vcs repositories everywhere. Recommended to be `true`
project: added all source files and assets
r1 vcs_full_cache = true
config: updated docstrings in .ini files
r2997 ## Force https in RhodeCode, fixes https redirects, assumes it's always https.
project: added all source files and assets
r1 ## Normally this is controlled by proper http flags sent from http server
force_https = false
## use Strict-Transport-Security headers
use_htsts = false
## git rev filter option, --all is the default filter, if you need to
## hide all refs in changelog switch this to --branches --tags
git_rev_filter = --branches --tags
# Set to true if your repos are exposed using the dumb protocol
git_update_server_info = false
## RSS/ATOM feed options
rss_cut_off_limit = 256000
rss_items_per_page = 10
rss_include_diff = false
## gist URL alias, used to create nicer urls for gist. This should be an
configuration: synced ini configuration changes
r1164 ## url that does rewrites to _admin/gists/{gistid}.
project: added all source files and assets
r1 ## example: http://gist.rhodecode.org/{gistid}. Empty means use the internal
configuration: synced ini configuration changes
r1164 ## RhodeCode url, ie. http[s]://rhodecode.server/_admin/gists/{gistid}
project: added all source files and assets
r1 gist_alias_url =
permissions: expose new view that lists all available views for usage in whitelist access.
r1943 ## List of views (using glob pattern syntax) that AUTH TOKENS could be
project: added all source files and assets
r1 ## used for access.
configuration: synced ini configuration changes
r1164 ## Adding ?auth_token=TOKEN_HASH to the url authenticates this request as if it
project: added all source files and assets
r1 ## came from the the logged in user who own this authentication token.
config: updated .ini configs
r3483 ## Additionally @TOKEN syntax can be used to bound the view to specific
configs: added info about @TOKEN syntaxt for whitelist views.
r2004 ## authentication token. Such view would be only accessible when used together
## with this authentication token
project: added all source files and assets
r1 ##
ini: updated small found problems.
r2032 ## list of all views can be found under `/_admin/permissions/auth_token_access`
project: added all source files and assets
r1 ## The list should be "," separated and on a single line.
##
permissions: expose new view that lists all available views for usage in whitelist access.
r1943 ## Most common views to enable:
repo-commits: ported changeset code into pyramid views....
r1951 # RepoCommitsView:repo_commit_download
# RepoCommitsView:repo_commit_patch
# RepoCommitsView:repo_commit_raw
configs: added info about @TOKEN syntaxt for whitelist views.
r2004 # RepoCommitsView:repo_commit_raw@TOKEN
repo-commits: ported changeset code into pyramid views....
r1951 # RepoFilesView:repo_files_diff
# RepoFilesView:repo_archivefile
# RepoFilesView:repo_file_raw
permissions: expose new view that lists all available views for usage in whitelist access.
r1943 # GistView:*
project: added all source files and assets
r1 api_access_controllers_whitelist =
config: updated docstrings in .ini files
r2997 ## Default encoding used to convert from and to unicode
project: added all source files and assets
r1 ## can be also a comma separated list of encoding in case of mixed encodings
default_encoding = UTF-8
## instance-id prefix
## a prefix key for this instance used for cache invalidation when running
config: updated .ini configs
r3483 ## multiple instances of RhodeCode, make sure it's globally unique for
## all running RhodeCode instances. Leave empty if you don't use it
project: added all source files and assets
r1 instance_id =
ini: Add fallback authentication plugin setting as comment to INI files.
r65 ## Fallback authentication plugin. Set this to a plugin ID to force the usage
## of an authentication plugin also if it is disabled by it's settings.
## This could be useful if you are unable to log in to the system due to broken
config: updated .ini configs
r3483 ## authentication settings. Then you can enable e.g. the internal RhodeCode auth
ini: Add fallback authentication plugin setting as comment to INI files.
r65 ## module to log in again and fix the settings.
##
## Available builtin plugin IDs (hash is part of the ID):
## egg:rhodecode-enterprise-ce#rhodecode
## egg:rhodecode-enterprise-ce#pam
## egg:rhodecode-enterprise-ce#ldap
## egg:rhodecode-enterprise-ce#jasig_cas
## egg:rhodecode-enterprise-ce#headers
## egg:rhodecode-enterprise-ce#crowd
#rhodecode.auth_plugin_fallback = egg:rhodecode-enterprise-ce#rhodecode
project: added all source files and assets
r1 ## alternative return HTTP header for failed authentication. Default HTTP
## response is 401 HTTPUnauthorized. Currently HG clients have troubles with
## handling that causing a series of failed authentication calls.
## Set this variable to 403 to return HTTPForbidden, or any other HTTP code
config: updated .ini configs
r3483 ## This will be served instead of default 401 on bad authentication
project: added all source files and assets
r1 auth_ret_code =
## use special detection method when serving auth_ret_code, instead of serving
## ret_code directly, use 401 initially (Which triggers credentials prompt)
## and then serve auth_ret_code to clients
auth_ret_code_detection = false
## locking return code. When repository is locked return this HTTP code. 2XX
## codes don't break the transactions while 4XX codes do
lock_ret_code = 423
## allows to change the repository location in settings page
allow_repo_location_change = true
## allows to setup custom hooks in settings page
allow_custom_hooks_settings = true
config: updated docstrings in .ini files
r2997 ## Generated license token required for EE edition license.
## New generated token value can be found in Admin > settings > license page.
project: added all source files and assets
r1 license_token =
## supervisor connection uri, for managing supervisor and logs.
supervisor.uri =
## supervisord group name/id we only want this RC instance to handle
supervisor.group_id = dev
## Display extended labs settings
labs_settings_active = true
config: updated example configs
r3068 ## Custom exception store path, defaults to TMPDIR
## This is used to store exception from RhodeCode in shared directory
#exception_tracker.store_path =
file-uploads: created simple upload capabilities....
r3432 ## File store configuration. This is used to store and serve uploaded files
file_store.enabled = true
config: updated .ini configs
r3483 ## Storage backend, available options are: local
file-uploads: created simple upload capabilities....
r3432 file_store.backend = local
## path to store the uploaded binaries
file_store.storage_path = %(here)s/data/file_store
exc_tracker: allow setting custom store via .ini file...
r3019
project: added all source files and assets
r1 ####################################
### CELERY CONFIG ####
####################################
config: update .ini file to latest installer defaults.
r2506 ## run: /path/to/celery worker \
## -E --beat --app rhodecode.lib.celerylib.loader \
## --scheduler rhodecode.lib.celerylib.scheduler.RcScheduler \
## --loglevel DEBUG --ini /path/to/rhodecode.ini
project: added all source files and assets
r1 use_celery = false
config: update .ini file to latest installer defaults.
r2506 ## connection url to the message broker (default rabbitmq)
celery: celery 4.X support. Fixes #4169...
r2359 celery.broker_url = amqp://rabbitmq:qweqwe@localhost:5672/rabbitmqhost
project: added all source files and assets
r1
config: update .ini file to latest installer defaults.
r2506 ## maximum tasks to execute before worker restart
celery: celery 4.X support. Fixes #4169...
r2359 celery.max_tasks_per_child = 100
project: added all source files and assets
r1
## tasks will never be sent to the queue, but executed locally instead.
celery: celery 4.X support. Fixes #4169...
r2359 celery.task_always_eager = false
project: added all source files and assets
r1
caches: don't use beaker for file caches anymore
r2846 #####################################
### DOGPILE CACHE ####
#####################################
## Default cache dir for caches. Putting this into a ramdisk
config: updated .ini files with cache settings
r2957 ## can boost performance, eg. /tmpfs/data_ramdisk, however this directory might require
configurations: update attached configuration INI files with the ENV_ substitution infomation....
r2986 ## large amount of space
configs: update ini files with some minor changes.
r2965 cache_dir = %(here)s/data
caches: don't use beaker for file caches anymore
r2846
config: updated .ini files with cache settings
r2957 ## `cache_perms` cache settings for permission tree, auth TTL.
caches: don't use beaker for file caches anymore
r2846 rc_cache.cache_perms.backend = dogpile.cache.rc.file_namespace
rc_cache.cache_perms.expiration_time = 300
config: updated .ini files with cache settings
r2957 ## alternative `cache_perms` redis backend with distributed lock
caches: don't use beaker for file caches anymore
r2846 #rc_cache.cache_perms.backend = dogpile.cache.rc.redis
#rc_cache.cache_perms.expiration_time = 300
config: updated .ini files with cache settings
r2957 ## redis_expiration_time needs to be greater then expiration_time
#rc_cache.cache_perms.arguments.redis_expiration_time = 7200
#rc_cache.cache_perms.arguments.socket_timeout = 30
caches: don't use beaker for file caches anymore
r2846 #rc_cache.cache_perms.arguments.host = localhost
#rc_cache.cache_perms.arguments.port = 6379
#rc_cache.cache_perms.arguments.db = 0
config: updated .ini configs
r3483 ## more Redis options: https://dogpilecache.sqlalchemy.org/en/latest/api.html#redis-backends
caches: don't use beaker for file caches anymore
r2846 #rc_cache.cache_perms.arguments.distributed_lock = true
config: updated .ini files with cache settings
r2957 ## `cache_repo` cache settings for FileTree, Readme, RSS FEEDS
caches: don't use beaker for file caches anymore
r2846 rc_cache.cache_repo.backend = dogpile.cache.rc.file_namespace
rc_cache.cache_repo.expiration_time = 2592000
config: updated .ini files with cache settings
r2957 ## alternative `cache_repo` redis backend with distributed lock
caches: don't use beaker for file caches anymore
r2846 #rc_cache.cache_repo.backend = dogpile.cache.rc.redis
#rc_cache.cache_repo.expiration_time = 2592000
config: updated .ini files with cache settings
r2957 ## redis_expiration_time needs to be greater then expiration_time
caches: don't use beaker for file caches anymore
r2846 #rc_cache.cache_repo.arguments.redis_expiration_time = 2678400
config: updated .ini files with cache settings
r2957 #rc_cache.cache_repo.arguments.socket_timeout = 30
caches: don't use beaker for file caches anymore
r2846 #rc_cache.cache_repo.arguments.host = localhost
#rc_cache.cache_repo.arguments.port = 6379
#rc_cache.cache_repo.arguments.db = 1
config: updated .ini configs
r3483 ## more Redis options: https://dogpilecache.sqlalchemy.org/en/latest/api.html#redis-backends
caches: don't use beaker for file caches anymore
r2846 #rc_cache.cache_repo.arguments.distributed_lock = true
config: updated .ini files with cache settings
r2957 ## cache settings for SQL queries, this needs to use memory type backend
caches: use dogpile for sql_cache_short region.
r2883 rc_cache.sql_cache_short.backend = dogpile.cache.rc.memory_lru
rc_cache.sql_cache_short.expiration_time = 30
config: updated .ini files with cache settings
r2957 ## `cache_repo_longterm` cache for repo object instances, this needs to use memory
## type backend as the objects kept are not pickle serializable
rc_cache.cache_repo_longterm.backend = dogpile.cache.rc.memory_lru
configurations: update attached configuration INI files with the ENV_ substitution infomation....
r2986 ## by default we use 96H, this is using invalidation on push anyway
config: updated .ini files with cache settings
r2957 rc_cache.cache_repo_longterm.expiration_time = 345600
configs: update ini files with some minor changes.
r2965 ## max items in LRU cache, reduce this number to save memory, and expire last used
## cached objects
config: updated .ini files with cache settings
r2957 rc_cache.cache_repo_longterm.max_size = 10000
caches: don't use beaker for file caches anymore
r2846
project: added all source files and assets
r1 ####################################
### BEAKER SESSION ####
####################################
## .session.type is type of storage options for the session, current allowed
caches: don't use beaker for file caches anymore
r2846 ## types are file, ext:memcached, ext:redis, ext:database, and memory (default).
project: added all source files and assets
r1 beaker.session.type = file
caches: don't use beaker for file caches anymore
r2846 beaker.session.data_dir = %(here)s/data/sessions
project: added all source files and assets
r1
configs: updated docstrings, and made some better defaults.
r630 ## db based session, fast, and allows easy management over logged in users
project: added all source files and assets
r1 #beaker.session.type = ext:database
#beaker.session.table_name = db_session
#beaker.session.sa.url = postgresql://postgres:secret@localhost/rhodecode
#beaker.session.sa.url = mysql://root:secret@127.0.0.1/rhodecode
#beaker.session.sa.pool_recycle = 3600
#beaker.session.sa.echo = false
beaker.session.key = rhodecode
beaker.session.secret = develop-rc-uytcxaz
beaker.session.lock_dir = %(here)s/data/sessions/lock
## Secure encrypted cookie. Requires AES and AES python libraries
## you must disable beaker.session.secret to use this
configuration: synced ini configuration changes
r1164 #beaker.session.encrypt_key = key_for_encryption
#beaker.session.validate_key = validation_key
project: added all source files and assets
r1
## sets session as invalid(also logging out user) if it haven not been
## accessed for given amount of time in seconds
beaker.session.timeout = 2592000
beaker.session.httponly = true
configuration: synced ini configuration changes
r1164 ## Path to use for the cookie. Set to prefix if you use prefix middleware
#beaker.session.cookie_path = /custom_prefix
project: added all source files and assets
r1
## uncomment for https secure cookie
beaker.session.secure = false
## auto save the session to not to use .save()
beaker.session.auto = false
## default cookie expiration time in seconds, set to `true` to set expire
## at browser close
#beaker.session.cookie_expires = 3600
###################################
## SEARCH INDEXING CONFIGURATION ##
###################################
ini: in CE repo we don't expose EE edition configuration.
r124 ## Full text search indexer is available in rhodecode-tools under
## `rhodecode-tools index` command
project: added all source files and assets
r1
configuration: synced ini configuration changes
r1164 ## WHOOSH Backend, doesn't require additional services to run
## it works good with few dozen repos
project: added all source files and assets
r1 search.module = rhodecode.lib.index.whoosh
search.location = %(here)s/data/index
notifications: support real-time notifications with websockets via channelstream
r526 ########################################
### CHANNELSTREAM CONFIG ####
########################################
ini: sync CE and EE
r545 ## channelstream enables persistent connections and live notification
## in the system. It's also used by the chat system
application: add debug mode that switches logging to debug....
r3270
ini: synced with latest changes
r1279 channelstream.enabled = false
notifications: support real-time notifications with websockets via channelstream
r526
ini: synced with latest changes
r1279 ## server address for channelstream server on the backend
notifications: support real-time notifications with websockets via channelstream
r526 channelstream.server = 127.0.0.1:9800
ini: synced with latest changes
r1279
configs: updated docstrings, and improved explanation of some settings
r631 ## location of the channelstream server from outside world
ini: synced with latest changes
r1279 ## use ws:// for http or wss:// for https. This address needs to be handled
## by external HTTP server such as Nginx or Apache
config: updated .ini configs
r3483 ## see Nginx/Apache configuration examples in our docs
ini: synced with latest changes
r1279 channelstream.ws_url = ws://rhodecode.yourserver.com/_channelstream
notifications: support real-time notifications with websockets via channelstream
r526 channelstream.secret = secret
ini: sync CE and EE
r543 channelstream.history.location = %(here)s/channelstream_history
ini: synced with latest changes
r1279 ## Internal application path that Javascript uses to connect into.
## If you use proxy-prefix the prefix should be added before /_channelstream
channelstream.proxy_path = /_channelstream
notifications: support real-time notifications with websockets via channelstream
r526
project: added all source files and assets
r1 ###################################
ini: in CE repo we don't expose EE edition configuration.
r124 ## APPENLIGHT CONFIG ##
project: added all source files and assets
r1 ###################################
## Appenlight is tailored to work with RhodeCode, see
## http://appenlight.com for details how to obtain an account
config: updated .ini configs
r3483 ## Appenlight integration enabled
project: added all source files and assets
r1 appenlight = false
appenlight.server_url = https://api.appenlight.com
appenlight.api_key = YOUR_API_KEY
ini: small updates for development.ini
r73 #appenlight.transport_config = https://api.appenlight.com?threaded=1&timeout=5
project: added all source files and assets
r1
config: updated .ini configs
r3483 ## used for JS client
project: added all source files and assets
r1 appenlight.api_public_key = YOUR_API_PUBLIC_KEY
## TWEAK AMOUNT OF INFO SENT HERE
## enables 404 error logging (default False)
appenlight.report_404 = false
## time in seconds after request is considered being slow (default 1)
appenlight.slow_request_time = 1
## record slow requests in application
## (needs to be enabled for slow datastore recording and time tracking)
appenlight.slow_requests = true
## enable hooking to application loggers
appenlight.logging = true
## minimum log level for log capture
appenlight.logging.level = WARNING
## send logs only from erroneous/slow requests
## (saves API quota for intensive logging)
appenlight.logging_on_error = false
config: updated .ini configs
r3483 ## list of additional keywords that should be grabbed from environ object
project: added all source files and assets
r1 ## can be string with comma separated list of words in lowercase
## (by default client will always send following info:
## 'REMOTE_USER', 'REMOTE_ADDR', 'SERVER_NAME', 'CONTENT_TYPE' + all keys that
## start with HTTP* this list be extended with additional keywords here
appenlight.environ_keys_whitelist =
## list of keywords that should be blanked from request object
## can be string with comma separated list of words in lowercase
## (by default client will always blank keys that contain following words
## 'password', 'passwd', 'pwd', 'auth_tkt', 'secret', 'csrf'
## this list be extended with additional keywords set here
appenlight.request_keys_blacklist =
## list of namespaces that should be ignores when gathering log entries
## can be string with comma separated list of namespaces
## (by default the client ignores own entries: appenlight_client.client)
appenlight.log_namespace_blacklist =
configurations: update attached configuration INI files with the ENV_ substitution infomation....
r2986 # enable debug style page
project: added all source files and assets
r1 debug_style = true
ini: synced with latest changes
r1279 ###########################################
### MAIN RHODECODE DATABASE CONFIG ###
###########################################
configs: updated docstrings, and made some better defaults.
r630 #sqlalchemy.db1.url = sqlite:///%(here)s/rhodecode.db?timeout=30
project: added all source files and assets
r1 #sqlalchemy.db1.url = postgresql://postgres:qweqwe@localhost/rhodecode
config: updated example configs
r3068 #sqlalchemy.db1.url = mysql://root:qweqwe@localhost/rhodecode?charset=utf8
config: updated .ini files with cache settings
r2957 # pymysql is an alternative driver for MySQL, use in case of problems with default one
caches: don't use beaker for file caches anymore
r2846 #sqlalchemy.db1.url = mysql+pymysql://root:qweqwe@localhost/rhodecode
configs: updated docstrings, and made some better defaults.
r630 sqlalchemy.db1.url = sqlite:///%(here)s/rhodecode.db?timeout=30
project: added all source files and assets
r1
# see sqlalchemy docs for other advanced settings
## print the sql statements to output
sqlalchemy.db1.echo = false
configuration: synced ini configuration changes
r1164 ## recycle the connections after this amount of seconds
project: added all source files and assets
r1 sqlalchemy.db1.pool_recycle = 3600
sqlalchemy.db1.convert_unicode = true
## the number of connections to keep open inside the connection pool.
## 0 indicates no limit
#sqlalchemy.db1.pool_size = 5
## the number of connections to allow in connection pool "overflow", that is
## connections that can be opened above and beyond the pool_size setting,
## which defaults to five.
#sqlalchemy.db1.max_overflow = 10
caches: don't use beaker for file caches anymore
r2846 ## Connection check ping, used to detect broken database connections
## could be enabled to better handle cases if MySQL has gone away errors
#sqlalchemy.db1.ping_connection = true
project: added all source files and assets
r1
##################
### VCS CONFIG ###
##################
vcs.server.enable = true
vcs.server = localhost:9900
config: updated .ini configs
r3483 ## Web server connectivity protocol, responsible for web based VCS operations
configs: updated configs for VCSServer connectivty options
r113 ## Available protocols are:
configuration: synced ini configuration changes
r1164 ## `http` - use http-rpc backend (default)
docs: updating vcsserver commands and development.ini defaults
r491 vcs.server.protocol = http
configs: updated configs for VCSServer connectivty options
r113
## Push/Pull operations protocol, available options are:
configuration: synced ini configuration changes
r1164 ## `http` - use http-rpc backend (default)
Martin Bornhold
vcs: Set default settings to HTTP in ini files. Part of #4237
r957 vcs.scm_app_implementation = http
project: added all source files and assets
r1
configs: updated configs for VCSServer connectivty options
r113 ## Push/Pull operations hooks protocol, available options are:
configuration: synced ini configuration changes
r1164 ## `http` - use http-rpc backend (default)
docs: updating vcsserver commands and development.ini defaults
r491 vcs.hooks.protocol = http
configs: updated configs for VCSServer connectivty options
r113
hooks: made the callback host configurable....
r2833 ## Host on which this instance is listening for hooks. If vcsserver is in other location
## this should be adjusted.
vcs.hooks.host = 127.0.0.1
project: added all source files and assets
r1 vcs.server.log_level = debug
configurations: update attached configuration INI files with the ENV_ substitution infomation....
r2986 ## Start VCSServer with this instance as a subprocess, useful for development
config: update .ini file to latest installer defaults.
r2506 vcs.start_server = false
Martin Bornhold
config: Update config files with comment about 'vcs.backends' setting.
r587
## List of enabled VCS backends, available options are:
## `hg` - mercurial
## `git` - git
## `svn` - subversion
project: added all source files and assets
r1 vcs.backends = hg, git, svn
Martin Bornhold
config: Update config files with comment about 'vcs.backends' setting.
r587
project: added all source files and assets
r1 vcs.connection_timeout = 3600
## Compatibility version when creating SVN repositories. Defaults to newest version when commented out.
ini: updated small found problems.
r2032 ## Available options are: pre-1.4-compatible, pre-1.5-compatible, pre-1.6-compatible, pre-1.8-compatible, pre-1.9-compatible
project: added all source files and assets
r1 #vcs.svn.compatible_version = pre-1.8-compatible
Martin Bornhold
svn: Add settings to default configuration files.
r562
configs: updated docstrings, and improved explanation of some settings
r631 ############################################################
### Subversion proxy support (mod_dav_svn) ###
### Maps RhodeCode repo groups into SVN paths for Apache ###
############################################################
Martin Bornhold
svn: Add settings to default configuration files.
r562 ## Enable or disable the config file generation.
svn.proxy.generate_config = false
## Generate config file with `SVNListParentPath` set to `On`.
svn.proxy.list_parent_path = true
## Set location and file name of generated config file.
svn.proxy.config_file_path = %(here)s/mod_dav_svn.conf
svn: allow specifying alternative template file for mod_dav config.
r2161 ## alternative mod_dav config template. This needs to be a mako template
#svn.proxy.config_template = ~/.rccontrol/enterprise-1/custom_svn_conf.mako
configuration: synced ini configuration changes
r1164 ## Used as a prefix to the `Location` block in the generated config file.
## In most cases it should be set to `/`.
Martin Bornhold
svn: Add settings to default configuration files.
r562 svn.proxy.location_root = /
Martin Bornhold
svn-support: Add reload command option (svn.proxy.reload_cmd) to ini files.
r1009 ## Command to reload the mod dav svn configuration on change.
config: updated .ini configs
r3483 ## Example: `/etc/init.d/apache2 reload` or /home/USER/apache_reload.sh
## Make sure user who runs RhodeCode process is allowed to reload Apache
Martin Bornhold
svn-support: Add reload command option (svn.proxy.reload_cmd) to ini files.
r1009 #svn.proxy.reload_cmd = /etc/init.d/apache2 reload
Martin Bornhold
svn-support: Make the reload command timeout configurable via ini file....
r1015 ## If the timeout expires before the reload command finishes, the command will
## be killed. Setting it to zero means no timeout. Defaults to 10 seconds.
#svn.proxy.reload_timeout = 10
Martin Bornhold
svn: Add settings to default configuration files.
r562
ssh: added support for auto generating authorized_keys from stored ssh keys.
r1994 ############################################################
### SSH Support Settings ###
############################################################
config: updated .ini files.
r2125 ## Defines if a custom authorized_keys file should be created and written on
config: updated .ini configs
r3483 ## any change user ssh keys. Setting this to false also disables possibility
config: updated .ini files.
r2125 ## of adding SSH keys by users from web interface. Super admins can still
## manage SSH Keys.
ssh: added support for auto generating authorized_keys from stored ssh keys.
r1994 ssh.generate_authorized_keyfile = false
## Options for ssh, default is `no-pty,no-port-forwarding,no-X11-forwarding,no-agent-forwarding`
# ssh.authorized_keys_ssh_opts =
config: updated .ini configs
r3483 ## Path to the authorized_keys file where the generate entries are placed.
ssh: embedded ssh support...
r2043 ## It is possible to have multiple key files specified in `sshd_config` e.g.
## AuthorizedKeysFile %h/.ssh/authorized_keys %h/.ssh/authorized_keys_rhodecode
ssh.authorized_keys_file_path = ~/.ssh/authorized_keys_rhodecode
## Command to execute the SSH wrapper. The binary is available in the
config: updated .ini configs
r3483 ## RhodeCode installation directory.
binaries: cleanup new upcomming rc-* commands that will replace paster * commands from pylons
r2119 ## e.g ~/.rccontrol/community-1/profile/bin/rc-ssh-wrapper
ssh.wrapper_cmd = ~/.rccontrol/community-1/rc-ssh-wrapper
ssh: embedded ssh support...
r2043
## Allow shell when executing the ssh-wrapper command
ssh.wrapper_cmd_allow_shell = false
ssh: added support for auto generating authorized_keys from stored ssh keys.
r1994
config: updated .ini files.
r2125 ## Enables logging, and detailed output send back to the client during SSH
config: updated .ini configs
r3483 ## operations. Useful for debugging, shouldn't be used in production.
config: updated .ini files.
r2125 ssh.enable_debug_logging = true
ssh: embedded ssh support...
r2043
config: updated .ini files.
r2125 ## Paths to binary executable, by default they are the names, but we can
ssh: embedded ssh support...
r2043 ## override them if we want to use a custom one
ssh.executable.hg = ~/.rccontrol/vcsserver-1/profile/bin/hg
ssh.executable.git = ~/.rccontrol/vcsserver-1/profile/bin/git
ssh.executable.svn = ~/.rccontrol/vcsserver-1/profile/bin/svnserve
Issue #5536 - ability to disable server-side SSH key generation...
r3478 ## Enables SSH key generator web interface. Disabling this still allows users
## to add their own keys.
ssh.enable_ui_key_generator = true
ssh: added support for auto generating authorized_keys from stored ssh keys.
r1994
ini: synced with latest changes
r1279 ## Dummy marker to add new entries after.
## Add any custom entries below. Please don't remove.
custom.conf = 1
Martin Bornhold
svn: Add settings to default configuration files.
r562
project: added all source files and assets
r1 ################################
### LOGGING CONFIGURATION ####
################################
[loggers]
caches: don't use beaker for file caches anymore
r2846 keys = root, sqlalchemy, beaker, celery, rhodecode, ssh_wrapper
project: added all source files and assets
r1
[handlers]
keys = console, console_sql
[formatters]
keys = generic, color_formatter, color_formatter_sql
#############
## LOGGERS ##
#############
[logger_root]
level = NOTSET
handlers = console
config: updated .ini files.
r2125 [logger_sqlalchemy]
level = INFO
handlers = console_sql
qualname = sqlalchemy.engine
propagate = 0
project: added all source files and assets
r1
[logger_beaker]
level = DEBUG
handlers =
qualname = beaker.container
propagate = 1
[logger_rhodecode]
level = DEBUG
handlers =
qualname = rhodecode
propagate = 1
ssh: embedded ssh support...
r2043 [logger_ssh_wrapper]
level = DEBUG
handlers =
qualname = ssh_wrapper
propagate = 1
celery: celery 4.X support. Fixes #4169...
r2359 [logger_celery]
level = DEBUG
handlers =
qualname = celery
ssh: embedded ssh support...
r2043
project: added all source files and assets
r1 ##############
## HANDLERS ##
##############
[handler_console]
class = StreamHandler
ini: synced with latest changes
r1279 args = (sys.stderr, )
project: added all source files and assets
r1 level = DEBUG
formatter = color_formatter
[handler_console_sql]
caches: don't use beaker for file caches anymore
r2846 # "level = DEBUG" logs SQL queries and results.
# "level = INFO" logs SQL queries.
# "level = WARN" logs neither. (Recommended for production systems.)
project: added all source files and assets
r1 class = StreamHandler
ini: synced with latest changes
r1279 args = (sys.stderr, )
caches: don't use beaker for file caches anymore
r2846 level = WARN
project: added all source files and assets
r1 formatter = color_formatter_sql
################
## FORMATTERS ##
################
[formatter_generic]
core: removed pyro4 from Enterprise code. Fixes #5198
r1409 class = rhodecode.lib.logging_formatter.ExceptionAwareFormatter
loggers: add PID into logs for easier debugging of multi worker logs.
r2605 format = %(asctime)s.%(msecs)03d [%(process)d] %(levelname)-5.5s [%(name)s] %(message)s
project: added all source files and assets
r1 datefmt = %Y-%m-%d %H:%M:%S
[formatter_color_formatter]
class = rhodecode.lib.logging_formatter.ColorFormatter
loggers: add PID into logs for easier debugging of multi worker logs.
r2605 format = %(asctime)s.%(msecs)03d [%(process)d] %(levelname)-5.5s [%(name)s] %(message)s
project: added all source files and assets
r1 datefmt = %Y-%m-%d %H:%M:%S
[formatter_color_formatter_sql]
class = rhodecode.lib.logging_formatter.ColorFormatterSql
configs: update ini files with some minor changes.
r2965 format = %(asctime)s.%(msecs)03d [%(process)d] %(levelname)-5.5s [%(name)s] %(message)s
project: added all source files and assets
r1 datefmt = %Y-%m-%d %H:%M:%S