##// END OF EJS Templates
rhodecode-enterprise-ce
RSS
loggers: add PID into logs for easier debugging of multi worker logs.
marcink -
r2605:06ce6cff default
parent child Browse files
Show More
Show file before | Show file after | Hide comments
@@ -1,719 +1,719 b''
1 1
2 2
3 3 ################################################################################
4 4 ## RHODECODE COMMUNITY EDITION CONFIGURATION ##
5 5 # The %(here)s variable will be replaced with the parent directory of this file#
6 6 ################################################################################
7 7
8 8 [DEFAULT]
9 9 debug = true
10 10
11 11 ################################################################################
12 12 ## EMAIL CONFIGURATION ##
13 13 ## Uncomment and replace with the email address which should receive ##
14 14 ## any error reports after an application crash ##
15 15 ## Additionally these settings will be used by the RhodeCode mailing system ##
16 16 ################################################################################
17 17
18 18 ## prefix all emails subjects with given prefix, helps filtering out emails
19 19 #email_prefix = [RhodeCode]
20 20
21 21 ## email FROM address all mails will be sent
22 22 #app_email_from = rhodecode-noreply@localhost
23 23
24 24 ## Uncomment and replace with the address which should receive any error report
25 25 ## note: using appenlight for error handling doesn't need this to be uncommented
26 26 #email_to = admin@localhost
27 27
28 28 ## in case of Application errors, sent an error email form
29 29 #error_email_from = rhodecode_error@localhost
30 30
31 31 ## additional error message to be send in case of server crash
32 32 #error_message =
33 33
34 34
35 35 #smtp_server = mail.server.com
36 36 #smtp_username =
37 37 #smtp_password =
38 38 #smtp_port =
39 39 #smtp_use_tls = false
40 40 #smtp_use_ssl = true
41 41 ## Specify available auth parameters here (e.g. LOGIN PLAIN CRAM-MD5, etc.)
42 42 #smtp_auth =
43 43
44 44 [server:main]
45 45 ## COMMON ##
46 46 host = 127.0.0.1
47 47 port = 5000
48 48
49 49 ##################################
50 50 ## WAITRESS WSGI SERVER ##
51 51 ## Recommended for Development ##
52 52 ##################################
53 53
54 54 use = egg:waitress#main
55 55 ## number of worker threads
56 56 threads = 5
57 57 ## MAX BODY SIZE 100GB
58 58 max_request_body_size = 107374182400
59 59 ## Use poll instead of select, fixes file descriptors limits problems.
60 60 ## May not work on old windows systems.
61 61 asyncore_use_poll = true
62 62
63 63
64 64 ##########################
65 65 ## GUNICORN WSGI SERVER ##
66 66 ##########################
67 67 ## run with gunicorn --log-config rhodecode.ini --paste rhodecode.ini
68 68
69 69 #use = egg:gunicorn#main
70 70 ## Sets the number of process workers. You must set `instance_id = *`
71 71 ## when this option is set to more than one worker, recommended
72 72 ## value is (2 * NUMBER_OF_CPUS + 1), eg 2CPU = 5 workers
73 73 ## The `instance_id = *` must be set in the [app:main] section below
74 74 #workers = 2
75 75 ## number of threads for each of the worker, must be set to 1 for gevent
76 76 ## generally recommended to be at 1
77 77 #threads = 1
78 78 ## process name
79 79 #proc_name = rhodecode
80 80 ## type of worker class, one of sync, gevent
81 81 ## recommended for bigger setup is using of of other than sync one
82 82 #worker_class = gevent
83 83 ## The maximum number of simultaneous clients. Valid only for Gevent
84 84 #worker_connections = 10
85 85 ## max number of requests that worker will handle before being gracefully
86 86 ## restarted, could prevent memory leaks
87 87 #max_requests = 1000
88 88 #max_requests_jitter = 30
89 89 ## amount of time a worker can spend with handling a request before it
90 90 ## gets killed and restarted. Set to 6hrs
91 91 #timeout = 21600
92 92
93 93
94 94 ## prefix middleware for RhodeCode.
95 95 ## recommended when using proxy setup.
96 96 ## allows to set RhodeCode under a prefix in server.
97 97 ## eg https://server.com/custom_prefix. Enable `filter-with =` option below as well.
98 98 ## And set your prefix like: `prefix = /custom_prefix`
99 99 ## be sure to also set beaker.session.cookie_path = /custom_prefix if you need
100 100 ## to make your cookies only work on prefix url
101 101 [filter:proxy-prefix]
102 102 use = egg:PasteDeploy#prefix
103 103 prefix = /
104 104
105 105 [app:main]
106 106 use = egg:rhodecode-enterprise-ce
107 107
108 108 ## enable proxy prefix middleware, defined above
109 109 #filter-with = proxy-prefix
110 110
111 111 # During development the we want to have the debug toolbar enabled
112 112 pyramid.includes =
113 113 pyramid_debugtoolbar
114 114 rhodecode.lib.middleware.request_wrapper
115 115
116 116 pyramid.reload_templates = true
117 117
118 118 debugtoolbar.hosts = 0.0.0.0/0
119 119 debugtoolbar.exclude_prefixes =
120 120 /css
121 121 /fonts
122 122 /images
123 123 /js
124 124
125 125 ## RHODECODE PLUGINS ##
126 126 rhodecode.includes =
127 127 rhodecode.api
128 128
129 129
130 130 # api prefix url
131 131 rhodecode.api.url = /_admin/api
132 132
133 133
134 134 ## END RHODECODE PLUGINS ##
135 135
136 136 ## encryption key used to encrypt social plugin tokens,
137 137 ## remote_urls with credentials etc, if not set it defaults to
138 138 ## `beaker.session.secret`
139 139 #rhodecode.encrypted_values.secret =
140 140
141 141 ## decryption strict mode (enabled by default). It controls if decryption raises
142 142 ## `SignatureVerificationError` in case of wrong key, or damaged encryption data.
143 143 #rhodecode.encrypted_values.strict = false
144 144
145 145 ## return gzipped responses from Rhodecode (static files/application)
146 146 gzip_responses = false
147 147
148 148 ## autogenerate javascript routes file on startup
149 149 generate_js_files = false
150 150
151 151 ## Optional Languages
152 152 ## en(default), be, de, es, fr, it, ja, pl, pt, ru, zh
153 153 lang = en
154 154
155 155 ## perform a full repository scan on each server start, this should be
156 156 ## set to false after first startup, to allow faster server restarts.
157 157 startup.import_repos = false
158 158
159 159 ## Uncomment and set this path to use archive download cache.
160 160 ## Once enabled, generated archives will be cached at this location
161 161 ## and served from the cache during subsequent requests for the same archive of
162 162 ## the repository.
163 163 #archive_cache_dir = /tmp/tarballcache
164 164
165 165 ## URL at which the application is running. This is used for bootstraping
166 166 ## requests in context when no web request is available. Used in ishell, or
167 167 ## SSH calls. Set this for events to receive proper url for SSH calls.
168 168 app.base_url = http://rhodecode.local
169 169
170 170 ## change this to unique ID for security
171 171 app_instance_uuid = rc-production
172 172
173 173 ## cut off limit for large diffs (size in bytes). If overall diff size on
174 174 ## commit, or pull request exceeds this limit this diff will be displayed
175 175 ## partially. E.g 512000 == 512Kb
176 176 cut_off_limit_diff = 512000
177 177
178 178 ## cut off limit for large files inside diffs (size in bytes). Each individual
179 179 ## file inside diff which exceeds this limit will be displayed partially.
180 180 ## E.g 128000 == 128Kb
181 181 cut_off_limit_file = 128000
182 182
183 183 ## use cache version of scm repo everywhere
184 184 vcs_full_cache = true
185 185
186 186 ## force https in RhodeCode, fixes https redirects, assumes it's always https
187 187 ## Normally this is controlled by proper http flags sent from http server
188 188 force_https = false
189 189
190 190 ## use Strict-Transport-Security headers
191 191 use_htsts = false
192 192
193 193 ## git rev filter option, --all is the default filter, if you need to
194 194 ## hide all refs in changelog switch this to --branches --tags
195 195 git_rev_filter = --branches --tags
196 196
197 197 # Set to true if your repos are exposed using the dumb protocol
198 198 git_update_server_info = false
199 199
200 200 ## RSS/ATOM feed options
201 201 rss_cut_off_limit = 256000
202 202 rss_items_per_page = 10
203 203 rss_include_diff = false
204 204
205 205 ## gist URL alias, used to create nicer urls for gist. This should be an
206 206 ## url that does rewrites to _admin/gists/{gistid}.
207 207 ## example: http://gist.rhodecode.org/{gistid}. Empty means use the internal
208 208 ## RhodeCode url, ie. http[s]://rhodecode.server/_admin/gists/{gistid}
209 209 gist_alias_url =
210 210
211 211 ## List of views (using glob pattern syntax) that AUTH TOKENS could be
212 212 ## used for access.
213 213 ## Adding ?auth_token=TOKEN_HASH to the url authenticates this request as if it
214 214 ## came from the the logged in user who own this authentication token.
215 215 ## Additionally @TOKEN syntaxt can be used to bound the view to specific
216 216 ## authentication token. Such view would be only accessible when used together
217 217 ## with this authentication token
218 218 ##
219 219 ## list of all views can be found under `/_admin/permissions/auth_token_access`
220 220 ## The list should be "," separated and on a single line.
221 221 ##
222 222 ## Most common views to enable:
223 223 # RepoCommitsView:repo_commit_download
224 224 # RepoCommitsView:repo_commit_patch
225 225 # RepoCommitsView:repo_commit_raw
226 226 # RepoCommitsView:repo_commit_raw@TOKEN
227 227 # RepoFilesView:repo_files_diff
228 228 # RepoFilesView:repo_archivefile
229 229 # RepoFilesView:repo_file_raw
230 230 # GistView:*
231 231 api_access_controllers_whitelist =
232 232
233 233 ## default encoding used to convert from and to unicode
234 234 ## can be also a comma separated list of encoding in case of mixed encodings
235 235 default_encoding = UTF-8
236 236
237 237 ## instance-id prefix
238 238 ## a prefix key for this instance used for cache invalidation when running
239 239 ## multiple instances of rhodecode, make sure it's globally unique for
240 240 ## all running rhodecode instances. Leave empty if you don't use it
241 241 instance_id =
242 242
243 243 ## Fallback authentication plugin. Set this to a plugin ID to force the usage
244 244 ## of an authentication plugin also if it is disabled by it's settings.
245 245 ## This could be useful if you are unable to log in to the system due to broken
246 246 ## authentication settings. Then you can enable e.g. the internal rhodecode auth
247 247 ## module to log in again and fix the settings.
248 248 ##
249 249 ## Available builtin plugin IDs (hash is part of the ID):
250 250 ## egg:rhodecode-enterprise-ce#rhodecode
251 251 ## egg:rhodecode-enterprise-ce#pam
252 252 ## egg:rhodecode-enterprise-ce#ldap
253 253 ## egg:rhodecode-enterprise-ce#jasig_cas
254 254 ## egg:rhodecode-enterprise-ce#headers
255 255 ## egg:rhodecode-enterprise-ce#crowd
256 256 #rhodecode.auth_plugin_fallback = egg:rhodecode-enterprise-ce#rhodecode
257 257
258 258 ## alternative return HTTP header for failed authentication. Default HTTP
259 259 ## response is 401 HTTPUnauthorized. Currently HG clients have troubles with
260 260 ## handling that causing a series of failed authentication calls.
261 261 ## Set this variable to 403 to return HTTPForbidden, or any other HTTP code
262 262 ## This will be served instead of default 401 on bad authnetication
263 263 auth_ret_code =
264 264
265 265 ## use special detection method when serving auth_ret_code, instead of serving
266 266 ## ret_code directly, use 401 initially (Which triggers credentials prompt)
267 267 ## and then serve auth_ret_code to clients
268 268 auth_ret_code_detection = false
269 269
270 270 ## locking return code. When repository is locked return this HTTP code. 2XX
271 271 ## codes don't break the transactions while 4XX codes do
272 272 lock_ret_code = 423
273 273
274 274 ## allows to change the repository location in settings page
275 275 allow_repo_location_change = true
276 276
277 277 ## allows to setup custom hooks in settings page
278 278 allow_custom_hooks_settings = true
279 279
280 280 ## generated license token, goto license page in RhodeCode settings to obtain
281 281 ## new token
282 282 license_token =
283 283
284 284 ## supervisor connection uri, for managing supervisor and logs.
285 285 supervisor.uri =
286 286 ## supervisord group name/id we only want this RC instance to handle
287 287 supervisor.group_id = dev
288 288
289 289 ## Display extended labs settings
290 290 labs_settings_active = true
291 291
292 292 ####################################
293 293 ### CELERY CONFIG ####
294 294 ####################################
295 295 ## run: /path/to/celery worker \
296 296 ## -E --beat --app rhodecode.lib.celerylib.loader \
297 297 ## --scheduler rhodecode.lib.celerylib.scheduler.RcScheduler \
298 298 ## --loglevel DEBUG --ini /path/to/rhodecode.ini
299 299
300 300 use_celery = false
301 301
302 302 ## connection url to the message broker (default rabbitmq)
303 303 celery.broker_url = amqp://rabbitmq:qweqwe@localhost:5672/rabbitmqhost
304 304
305 305 ## maximum tasks to execute before worker restart
306 306 celery.max_tasks_per_child = 100
307 307
308 308 ## tasks will never be sent to the queue, but executed locally instead.
309 309 celery.task_always_eager = false
310 310
311 311 ####################################
312 312 ### BEAKER CACHE ####
313 313 ####################################
314 314 # default cache dir for templates. Putting this into a ramdisk
315 315 ## can boost performance, eg. %(here)s/data_ramdisk
316 316 cache_dir = %(here)s/data
317 317
318 318 ## locking and default file storage for Beaker. Putting this into a ramdisk
319 319 ## can boost performance, eg. %(here)s/data_ramdisk/cache/beaker_data
320 320 beaker.cache.data_dir = %(here)s/data/cache/beaker_data
321 321 beaker.cache.lock_dir = %(here)s/data/cache/beaker_lock
322 322
323 323 beaker.cache.regions = super_short_term, short_term, long_term, sql_cache_short, auth_plugins, repo_cache_long
324 324
325 325 beaker.cache.super_short_term.type = memory
326 326 beaker.cache.super_short_term.expire = 10
327 327 beaker.cache.super_short_term.key_length = 256
328 328
329 329 beaker.cache.short_term.type = memory
330 330 beaker.cache.short_term.expire = 60
331 331 beaker.cache.short_term.key_length = 256
332 332
333 333 beaker.cache.long_term.type = memory
334 334 beaker.cache.long_term.expire = 36000
335 335 beaker.cache.long_term.key_length = 256
336 336
337 337 beaker.cache.sql_cache_short.type = memory
338 338 beaker.cache.sql_cache_short.expire = 10
339 339 beaker.cache.sql_cache_short.key_length = 256
340 340
341 341 ## default is memory cache, configure only if required
342 342 ## using multi-node or multi-worker setup
343 343 #beaker.cache.auth_plugins.type = ext:database
344 344 #beaker.cache.auth_plugins.lock_dir = %(here)s/data/cache/auth_plugin_lock
345 345 #beaker.cache.auth_plugins.url = postgresql://postgres:secret@localhost/rhodecode
346 346 #beaker.cache.auth_plugins.url = mysql://root:secret@127.0.0.1/rhodecode
347 347 #beaker.cache.auth_plugins.sa.pool_recycle = 3600
348 348 #beaker.cache.auth_plugins.sa.pool_size = 10
349 349 #beaker.cache.auth_plugins.sa.max_overflow = 0
350 350
351 351 beaker.cache.repo_cache_long.type = memorylru_base
352 352 beaker.cache.repo_cache_long.max_items = 4096
353 353 beaker.cache.repo_cache_long.expire = 2592000
354 354
355 355 ## default is memorylru_base cache, configure only if required
356 356 ## using multi-node or multi-worker setup
357 357 #beaker.cache.repo_cache_long.type = ext:memcached
358 358 #beaker.cache.repo_cache_long.url = localhost:11211
359 359 #beaker.cache.repo_cache_long.expire = 1209600
360 360 #beaker.cache.repo_cache_long.key_length = 256
361 361
362 362 ####################################
363 363 ### BEAKER SESSION ####
364 364 ####################################
365 365
366 366 ## .session.type is type of storage options for the session, current allowed
367 367 ## types are file, ext:memcached, ext:database, and memory (default).
368 368 beaker.session.type = file
369 369 beaker.session.data_dir = %(here)s/data/sessions/data
370 370
371 371 ## db based session, fast, and allows easy management over logged in users
372 372 #beaker.session.type = ext:database
373 373 #beaker.session.table_name = db_session
374 374 #beaker.session.sa.url = postgresql://postgres:secret@localhost/rhodecode
375 375 #beaker.session.sa.url = mysql://root:secret@127.0.0.1/rhodecode
376 376 #beaker.session.sa.pool_recycle = 3600
377 377 #beaker.session.sa.echo = false
378 378
379 379 beaker.session.key = rhodecode
380 380 beaker.session.secret = develop-rc-uytcxaz
381 381 beaker.session.lock_dir = %(here)s/data/sessions/lock
382 382
383 383 ## Secure encrypted cookie. Requires AES and AES python libraries
384 384 ## you must disable beaker.session.secret to use this
385 385 #beaker.session.encrypt_key = key_for_encryption
386 386 #beaker.session.validate_key = validation_key
387 387
388 388 ## sets session as invalid(also logging out user) if it haven not been
389 389 ## accessed for given amount of time in seconds
390 390 beaker.session.timeout = 2592000
391 391 beaker.session.httponly = true
392 392 ## Path to use for the cookie. Set to prefix if you use prefix middleware
393 393 #beaker.session.cookie_path = /custom_prefix
394 394
395 395 ## uncomment for https secure cookie
396 396 beaker.session.secure = false
397 397
398 398 ## auto save the session to not to use .save()
399 399 beaker.session.auto = false
400 400
401 401 ## default cookie expiration time in seconds, set to `true` to set expire
402 402 ## at browser close
403 403 #beaker.session.cookie_expires = 3600
404 404
405 405 ###################################
406 406 ## SEARCH INDEXING CONFIGURATION ##
407 407 ###################################
408 408 ## Full text search indexer is available in rhodecode-tools under
409 409 ## `rhodecode-tools index` command
410 410
411 411 ## WHOOSH Backend, doesn't require additional services to run
412 412 ## it works good with few dozen repos
413 413 search.module = rhodecode.lib.index.whoosh
414 414 search.location = %(here)s/data/index
415 415
416 416 ########################################
417 417 ### CHANNELSTREAM CONFIG ####
418 418 ########################################
419 419 ## channelstream enables persistent connections and live notification
420 420 ## in the system. It's also used by the chat system
421 421 channelstream.enabled = false
422 422
423 423 ## server address for channelstream server on the backend
424 424 channelstream.server = 127.0.0.1:9800
425 425
426 426 ## location of the channelstream server from outside world
427 427 ## use ws:// for http or wss:// for https. This address needs to be handled
428 428 ## by external HTTP server such as Nginx or Apache
429 429 ## see nginx/apache configuration examples in our docs
430 430 channelstream.ws_url = ws://rhodecode.yourserver.com/_channelstream
431 431 channelstream.secret = secret
432 432 channelstream.history.location = %(here)s/channelstream_history
433 433
434 434 ## Internal application path that Javascript uses to connect into.
435 435 ## If you use proxy-prefix the prefix should be added before /_channelstream
436 436 channelstream.proxy_path = /_channelstream
437 437
438 438
439 439 ###################################
440 440 ## APPENLIGHT CONFIG ##
441 441 ###################################
442 442
443 443 ## Appenlight is tailored to work with RhodeCode, see
444 444 ## http://appenlight.com for details how to obtain an account
445 445
446 446 ## appenlight integration enabled
447 447 appenlight = false
448 448
449 449 appenlight.server_url = https://api.appenlight.com
450 450 appenlight.api_key = YOUR_API_KEY
451 451 #appenlight.transport_config = https://api.appenlight.com?threaded=1&timeout=5
452 452
453 453 # used for JS client
454 454 appenlight.api_public_key = YOUR_API_PUBLIC_KEY
455 455
456 456 ## TWEAK AMOUNT OF INFO SENT HERE
457 457
458 458 ## enables 404 error logging (default False)
459 459 appenlight.report_404 = false
460 460
461 461 ## time in seconds after request is considered being slow (default 1)
462 462 appenlight.slow_request_time = 1
463 463
464 464 ## record slow requests in application
465 465 ## (needs to be enabled for slow datastore recording and time tracking)
466 466 appenlight.slow_requests = true
467 467
468 468 ## enable hooking to application loggers
469 469 appenlight.logging = true
470 470
471 471 ## minimum log level for log capture
472 472 appenlight.logging.level = WARNING
473 473
474 474 ## send logs only from erroneous/slow requests
475 475 ## (saves API quota for intensive logging)
476 476 appenlight.logging_on_error = false
477 477
478 478 ## list of additonal keywords that should be grabbed from environ object
479 479 ## can be string with comma separated list of words in lowercase
480 480 ## (by default client will always send following info:
481 481 ## 'REMOTE_USER', 'REMOTE_ADDR', 'SERVER_NAME', 'CONTENT_TYPE' + all keys that
482 482 ## start with HTTP* this list be extended with additional keywords here
483 483 appenlight.environ_keys_whitelist =
484 484
485 485 ## list of keywords that should be blanked from request object
486 486 ## can be string with comma separated list of words in lowercase
487 487 ## (by default client will always blank keys that contain following words
488 488 ## 'password', 'passwd', 'pwd', 'auth_tkt', 'secret', 'csrf'
489 489 ## this list be extended with additional keywords set here
490 490 appenlight.request_keys_blacklist =
491 491
492 492 ## list of namespaces that should be ignores when gathering log entries
493 493 ## can be string with comma separated list of namespaces
494 494 ## (by default the client ignores own entries: appenlight_client.client)
495 495 appenlight.log_namespace_blacklist =
496 496
497 497
498 498 ################################################################################
499 499 ## WARNING: *THE LINE BELOW MUST BE UNCOMMENTED ON A PRODUCTION ENVIRONMENT* ##
500 500 ## Debug mode will enable the interactive debugging tool, allowing ANYONE to ##
501 501 ## execute malicious code after an exception is raised. ##
502 502 ################################################################################
503 503 #set debug = false
504 504
505 505
506 506 ##############
507 507 ## STYLING ##
508 508 ##############
509 509 debug_style = true
510 510
511 511 ###########################################
512 512 ### MAIN RHODECODE DATABASE CONFIG ###
513 513 ###########################################
514 514 #sqlalchemy.db1.url = sqlite:///%(here)s/rhodecode.db?timeout=30
515 515 #sqlalchemy.db1.url = postgresql://postgres:qweqwe@localhost/rhodecode
516 516 #sqlalchemy.db1.url = mysql://root:qweqwe@localhost/rhodecode
517 517 sqlalchemy.db1.url = sqlite:///%(here)s/rhodecode.db?timeout=30
518 518
519 519 # see sqlalchemy docs for other advanced settings
520 520
521 521 ## print the sql statements to output
522 522 sqlalchemy.db1.echo = false
523 523 ## recycle the connections after this amount of seconds
524 524 sqlalchemy.db1.pool_recycle = 3600
525 525 sqlalchemy.db1.convert_unicode = true
526 526
527 527 ## the number of connections to keep open inside the connection pool.
528 528 ## 0 indicates no limit
529 529 #sqlalchemy.db1.pool_size = 5
530 530
531 531 ## the number of connections to allow in connection pool "overflow", that is
532 532 ## connections that can be opened above and beyond the pool_size setting,
533 533 ## which defaults to five.
534 534 #sqlalchemy.db1.max_overflow = 10
535 535
536 536
537 537 ##################
538 538 ### VCS CONFIG ###
539 539 ##################
540 540 vcs.server.enable = true
541 541 vcs.server = localhost:9900
542 542
543 543 ## Web server connectivity protocol, responsible for web based VCS operatations
544 544 ## Available protocols are:
545 545 ## `http` - use http-rpc backend (default)
546 546 vcs.server.protocol = http
547 547
548 548 ## Push/Pull operations protocol, available options are:
549 549 ## `http` - use http-rpc backend (default)
550 550 ##
551 551 vcs.scm_app_implementation = http
552 552
553 553 ## Push/Pull operations hooks protocol, available options are:
554 554 ## `http` - use http-rpc backend (default)
555 555 vcs.hooks.protocol = http
556 556
557 557 vcs.server.log_level = debug
558 558 ## Start VCSServer with this instance as a subprocess, usefull for development
559 559 vcs.start_server = false
560 560
561 561 ## List of enabled VCS backends, available options are:
562 562 ## `hg` - mercurial
563 563 ## `git` - git
564 564 ## `svn` - subversion
565 565 vcs.backends = hg, git, svn
566 566
567 567 vcs.connection_timeout = 3600
568 568 ## Compatibility version when creating SVN repositories. Defaults to newest version when commented out.
569 569 ## Available options are: pre-1.4-compatible, pre-1.5-compatible, pre-1.6-compatible, pre-1.8-compatible, pre-1.9-compatible
570 570 #vcs.svn.compatible_version = pre-1.8-compatible
571 571
572 572
573 573 ############################################################
574 574 ### Subversion proxy support (mod_dav_svn) ###
575 575 ### Maps RhodeCode repo groups into SVN paths for Apache ###
576 576 ############################################################
577 577 ## Enable or disable the config file generation.
578 578 svn.proxy.generate_config = false
579 579 ## Generate config file with `SVNListParentPath` set to `On`.
580 580 svn.proxy.list_parent_path = true
581 581 ## Set location and file name of generated config file.
582 582 svn.proxy.config_file_path = %(here)s/mod_dav_svn.conf
583 583 ## alternative mod_dav config template. This needs to be a mako template
584 584 #svn.proxy.config_template = ~/.rccontrol/enterprise-1/custom_svn_conf.mako
585 585 ## Used as a prefix to the `Location` block in the generated config file.
586 586 ## In most cases it should be set to `/`.
587 587 svn.proxy.location_root = /
588 588 ## Command to reload the mod dav svn configuration on change.
589 589 ## Example: `/etc/init.d/apache2 reload`
590 590 #svn.proxy.reload_cmd = /etc/init.d/apache2 reload
591 591 ## If the timeout expires before the reload command finishes, the command will
592 592 ## be killed. Setting it to zero means no timeout. Defaults to 10 seconds.
593 593 #svn.proxy.reload_timeout = 10
594 594
595 595 ############################################################
596 596 ### SSH Support Settings ###
597 597 ############################################################
598 598
599 599 ## Defines if a custom authorized_keys file should be created and written on
600 600 ## any change user ssh keys. Setting this to false also disables posibility
601 601 ## of adding SSH keys by users from web interface. Super admins can still
602 602 ## manage SSH Keys.
603 603 ssh.generate_authorized_keyfile = false
604 604
605 605 ## Options for ssh, default is `no-pty,no-port-forwarding,no-X11-forwarding,no-agent-forwarding`
606 606 # ssh.authorized_keys_ssh_opts =
607 607
608 608 ## Path to the authrozied_keys file where the generate entries are placed.
609 609 ## It is possible to have multiple key files specified in `sshd_config` e.g.
610 610 ## AuthorizedKeysFile %h/.ssh/authorized_keys %h/.ssh/authorized_keys_rhodecode
611 611 ssh.authorized_keys_file_path = ~/.ssh/authorized_keys_rhodecode
612 612
613 613 ## Command to execute the SSH wrapper. The binary is available in the
614 614 ## rhodecode installation directory.
615 615 ## e.g ~/.rccontrol/community-1/profile/bin/rc-ssh-wrapper
616 616 ssh.wrapper_cmd = ~/.rccontrol/community-1/rc-ssh-wrapper
617 617
618 618 ## Allow shell when executing the ssh-wrapper command
619 619 ssh.wrapper_cmd_allow_shell = false
620 620
621 621 ## Enables logging, and detailed output send back to the client during SSH
622 622 ## operations. Usefull for debugging, shouldn't be used in production.
623 623 ssh.enable_debug_logging = true
624 624
625 625 ## Paths to binary executable, by default they are the names, but we can
626 626 ## override them if we want to use a custom one
627 627 ssh.executable.hg = ~/.rccontrol/vcsserver-1/profile/bin/hg
628 628 ssh.executable.git = ~/.rccontrol/vcsserver-1/profile/bin/git
629 629 ssh.executable.svn = ~/.rccontrol/vcsserver-1/profile/bin/svnserve
630 630
631 631
632 632 ## Dummy marker to add new entries after.
633 633 ## Add any custom entries below. Please don't remove.
634 634 custom.conf = 1
635 635
636 636
637 637 ################################
638 638 ### LOGGING CONFIGURATION ####
639 639 ################################
640 640 [loggers]
641 641 keys = root, sqlalchemy, beaker, rhodecode, ssh_wrapper, celery
642 642
643 643 [handlers]
644 644 keys = console, console_sql
645 645
646 646 [formatters]
647 647 keys = generic, color_formatter, color_formatter_sql
648 648
649 649 #############
650 650 ## LOGGERS ##
651 651 #############
652 652 [logger_root]
653 653 level = NOTSET
654 654 handlers = console
655 655
656 656 [logger_sqlalchemy]
657 657 level = INFO
658 658 handlers = console_sql
659 659 qualname = sqlalchemy.engine
660 660 propagate = 0
661 661
662 662 [logger_beaker]
663 663 level = DEBUG
664 664 handlers =
665 665 qualname = beaker.container
666 666 propagate = 1
667 667
668 668 [logger_rhodecode]
669 669 level = DEBUG
670 670 handlers =
671 671 qualname = rhodecode
672 672 propagate = 1
673 673
674 674 [logger_ssh_wrapper]
675 675 level = DEBUG
676 676 handlers =
677 677 qualname = ssh_wrapper
678 678 propagate = 1
679 679
680 680 [logger_celery]
681 681 level = DEBUG
682 682 handlers =
683 683 qualname = celery
684 684
685 685
686 686 ##############
687 687 ## HANDLERS ##
688 688 ##############
689 689
690 690 [handler_console]
691 691 class = StreamHandler
692 692 args = (sys.stderr, )
693 693 level = DEBUG
694 694 formatter = color_formatter
695 695
696 696 [handler_console_sql]
697 697 class = StreamHandler
698 698 args = (sys.stderr, )
699 699 level = DEBUG
700 700 formatter = color_formatter_sql
701 701
702 702 ################
703 703 ## FORMATTERS ##
704 704 ################
705 705
706 706 [formatter_generic]
707 707 class = rhodecode.lib.logging_formatter.ExceptionAwareFormatter
708 format = %(asctime)s.%(msecs)03d %(levelname)-5.5s [%(name)s] %(message)s
708 format = %(asctime)s.%(msecs)03d [%(process)d] %(levelname)-5.5s [%(name)s] %(message)s
709 709 datefmt = %Y-%m-%d %H:%M:%S
710 710
711 711 [formatter_color_formatter]
712 712 class = rhodecode.lib.logging_formatter.ColorFormatter
713 format = %(asctime)s.%(msecs)03d %(levelname)-5.5s [%(name)s] %(message)s
713 format = %(asctime)s.%(msecs)03d [%(process)d] %(levelname)-5.5s [%(name)s] %(message)s
714 714 datefmt = %Y-%m-%d %H:%M:%S
715 715
716 716 [formatter_color_formatter_sql]
717 717 class = rhodecode.lib.logging_formatter.ColorFormatterSql
718 718 format = %(asctime)s.%(msecs)03d %(levelname)-5.5s [%(name)s] %(message)s
719 719 datefmt = %Y-%m-%d %H:%M:%S
Show file before | Show file after | Hide comments
@@ -1,689 +1,689 b''
1 1
2 2
3 3 ################################################################################
4 4 ## RHODECODE COMMUNITY EDITION CONFIGURATION ##
5 5 # The %(here)s variable will be replaced with the parent directory of this file#
6 6 ################################################################################
7 7
8 8 [DEFAULT]
9 9 debug = true
10 10
11 11 ################################################################################
12 12 ## EMAIL CONFIGURATION ##
13 13 ## Uncomment and replace with the email address which should receive ##
14 14 ## any error reports after an application crash ##
15 15 ## Additionally these settings will be used by the RhodeCode mailing system ##
16 16 ################################################################################
17 17
18 18 ## prefix all emails subjects with given prefix, helps filtering out emails
19 19 #email_prefix = [RhodeCode]
20 20
21 21 ## email FROM address all mails will be sent
22 22 #app_email_from = rhodecode-noreply@localhost
23 23
24 24 ## Uncomment and replace with the address which should receive any error report
25 25 ## note: using appenlight for error handling doesn't need this to be uncommented
26 26 #email_to = admin@localhost
27 27
28 28 ## in case of Application errors, sent an error email form
29 29 #error_email_from = rhodecode_error@localhost
30 30
31 31 ## additional error message to be send in case of server crash
32 32 #error_message =
33 33
34 34
35 35 #smtp_server = mail.server.com
36 36 #smtp_username =
37 37 #smtp_password =
38 38 #smtp_port =
39 39 #smtp_use_tls = false
40 40 #smtp_use_ssl = true
41 41 ## Specify available auth parameters here (e.g. LOGIN PLAIN CRAM-MD5, etc.)
42 42 #smtp_auth =
43 43
44 44 [server:main]
45 45 ## COMMON ##
46 46 host = 127.0.0.1
47 47 port = 5000
48 48
49 49 ##################################
50 50 ## WAITRESS WSGI SERVER ##
51 51 ## Recommended for Development ##
52 52 ##################################
53 53
54 54 #use = egg:waitress#main
55 55 ## number of worker threads
56 56 #threads = 5
57 57 ## MAX BODY SIZE 100GB
58 58 #max_request_body_size = 107374182400
59 59 ## Use poll instead of select, fixes file descriptors limits problems.
60 60 ## May not work on old windows systems.
61 61 #asyncore_use_poll = true
62 62
63 63
64 64 ##########################
65 65 ## GUNICORN WSGI SERVER ##
66 66 ##########################
67 67 ## run with gunicorn --log-config rhodecode.ini --paste rhodecode.ini
68 68
69 69 use = egg:gunicorn#main
70 70 ## Sets the number of process workers. You must set `instance_id = *`
71 71 ## when this option is set to more than one worker, recommended
72 72 ## value is (2 * NUMBER_OF_CPUS + 1), eg 2CPU = 5 workers
73 73 ## The `instance_id = *` must be set in the [app:main] section below
74 74 workers = 2
75 75 ## number of threads for each of the worker, must be set to 1 for gevent
76 76 ## generally recommended to be at 1
77 77 #threads = 1
78 78 ## process name
79 79 proc_name = rhodecode
80 80 ## type of worker class, one of sync, gevent
81 81 ## recommended for bigger setup is using of of other than sync one
82 82 worker_class = gevent
83 83 ## The maximum number of simultaneous clients. Valid only for Gevent
84 84 #worker_connections = 10
85 85 ## max number of requests that worker will handle before being gracefully
86 86 ## restarted, could prevent memory leaks
87 87 max_requests = 1000
88 88 max_requests_jitter = 30
89 89 ## amount of time a worker can spend with handling a request before it
90 90 ## gets killed and restarted. Set to 6hrs
91 91 timeout = 21600
92 92
93 93
94 94 ## prefix middleware for RhodeCode.
95 95 ## recommended when using proxy setup.
96 96 ## allows to set RhodeCode under a prefix in server.
97 97 ## eg https://server.com/custom_prefix. Enable `filter-with =` option below as well.
98 98 ## And set your prefix like: `prefix = /custom_prefix`
99 99 ## be sure to also set beaker.session.cookie_path = /custom_prefix if you need
100 100 ## to make your cookies only work on prefix url
101 101 [filter:proxy-prefix]
102 102 use = egg:PasteDeploy#prefix
103 103 prefix = /
104 104
105 105 [app:main]
106 106 use = egg:rhodecode-enterprise-ce
107 107
108 108 ## enable proxy prefix middleware, defined above
109 109 #filter-with = proxy-prefix
110 110
111 111 ## encryption key used to encrypt social plugin tokens,
112 112 ## remote_urls with credentials etc, if not set it defaults to
113 113 ## `beaker.session.secret`
114 114 #rhodecode.encrypted_values.secret =
115 115
116 116 ## decryption strict mode (enabled by default). It controls if decryption raises
117 117 ## `SignatureVerificationError` in case of wrong key, or damaged encryption data.
118 118 #rhodecode.encrypted_values.strict = false
119 119
120 120 ## return gzipped responses from Rhodecode (static files/application)
121 121 gzip_responses = false
122 122
123 123 ## autogenerate javascript routes file on startup
124 124 generate_js_files = false
125 125
126 126 ## Optional Languages
127 127 ## en(default), be, de, es, fr, it, ja, pl, pt, ru, zh
128 128 lang = en
129 129
130 130 ## perform a full repository scan on each server start, this should be
131 131 ## set to false after first startup, to allow faster server restarts.
132 132 startup.import_repos = false
133 133
134 134 ## Uncomment and set this path to use archive download cache.
135 135 ## Once enabled, generated archives will be cached at this location
136 136 ## and served from the cache during subsequent requests for the same archive of
137 137 ## the repository.
138 138 #archive_cache_dir = /tmp/tarballcache
139 139
140 140 ## URL at which the application is running. This is used for bootstraping
141 141 ## requests in context when no web request is available. Used in ishell, or
142 142 ## SSH calls. Set this for events to receive proper url for SSH calls.
143 143 app.base_url = http://rhodecode.local
144 144
145 145 ## change this to unique ID for security
146 146 app_instance_uuid = rc-production
147 147
148 148 ## cut off limit for large diffs (size in bytes). If overall diff size on
149 149 ## commit, or pull request exceeds this limit this diff will be displayed
150 150 ## partially. E.g 512000 == 512Kb
151 151 cut_off_limit_diff = 512000
152 152
153 153 ## cut off limit for large files inside diffs (size in bytes). Each individual
154 154 ## file inside diff which exceeds this limit will be displayed partially.
155 155 ## E.g 128000 == 128Kb
156 156 cut_off_limit_file = 128000
157 157
158 158 ## use cache version of scm repo everywhere
159 159 vcs_full_cache = true
160 160
161 161 ## force https in RhodeCode, fixes https redirects, assumes it's always https
162 162 ## Normally this is controlled by proper http flags sent from http server
163 163 force_https = false
164 164
165 165 ## use Strict-Transport-Security headers
166 166 use_htsts = false
167 167
168 168 ## git rev filter option, --all is the default filter, if you need to
169 169 ## hide all refs in changelog switch this to --branches --tags
170 170 git_rev_filter = --branches --tags
171 171
172 172 # Set to true if your repos are exposed using the dumb protocol
173 173 git_update_server_info = false
174 174
175 175 ## RSS/ATOM feed options
176 176 rss_cut_off_limit = 256000
177 177 rss_items_per_page = 10
178 178 rss_include_diff = false
179 179
180 180 ## gist URL alias, used to create nicer urls for gist. This should be an
181 181 ## url that does rewrites to _admin/gists/{gistid}.
182 182 ## example: http://gist.rhodecode.org/{gistid}. Empty means use the internal
183 183 ## RhodeCode url, ie. http[s]://rhodecode.server/_admin/gists/{gistid}
184 184 gist_alias_url =
185 185
186 186 ## List of views (using glob pattern syntax) that AUTH TOKENS could be
187 187 ## used for access.
188 188 ## Adding ?auth_token=TOKEN_HASH to the url authenticates this request as if it
189 189 ## came from the the logged in user who own this authentication token.
190 190 ## Additionally @TOKEN syntaxt can be used to bound the view to specific
191 191 ## authentication token. Such view would be only accessible when used together
192 192 ## with this authentication token
193 193 ##
194 194 ## list of all views can be found under `/_admin/permissions/auth_token_access`
195 195 ## The list should be "," separated and on a single line.
196 196 ##
197 197 ## Most common views to enable:
198 198 # RepoCommitsView:repo_commit_download
199 199 # RepoCommitsView:repo_commit_patch
200 200 # RepoCommitsView:repo_commit_raw
201 201 # RepoCommitsView:repo_commit_raw@TOKEN
202 202 # RepoFilesView:repo_files_diff
203 203 # RepoFilesView:repo_archivefile
204 204 # RepoFilesView:repo_file_raw
205 205 # GistView:*
206 206 api_access_controllers_whitelist =
207 207
208 208 ## default encoding used to convert from and to unicode
209 209 ## can be also a comma separated list of encoding in case of mixed encodings
210 210 default_encoding = UTF-8
211 211
212 212 ## instance-id prefix
213 213 ## a prefix key for this instance used for cache invalidation when running
214 214 ## multiple instances of rhodecode, make sure it's globally unique for
215 215 ## all running rhodecode instances. Leave empty if you don't use it
216 216 instance_id =
217 217
218 218 ## Fallback authentication plugin. Set this to a plugin ID to force the usage
219 219 ## of an authentication plugin also if it is disabled by it's settings.
220 220 ## This could be useful if you are unable to log in to the system due to broken
221 221 ## authentication settings. Then you can enable e.g. the internal rhodecode auth
222 222 ## module to log in again and fix the settings.
223 223 ##
224 224 ## Available builtin plugin IDs (hash is part of the ID):
225 225 ## egg:rhodecode-enterprise-ce#rhodecode
226 226 ## egg:rhodecode-enterprise-ce#pam
227 227 ## egg:rhodecode-enterprise-ce#ldap
228 228 ## egg:rhodecode-enterprise-ce#jasig_cas
229 229 ## egg:rhodecode-enterprise-ce#headers
230 230 ## egg:rhodecode-enterprise-ce#crowd
231 231 #rhodecode.auth_plugin_fallback = egg:rhodecode-enterprise-ce#rhodecode
232 232
233 233 ## alternative return HTTP header for failed authentication. Default HTTP
234 234 ## response is 401 HTTPUnauthorized. Currently HG clients have troubles with
235 235 ## handling that causing a series of failed authentication calls.
236 236 ## Set this variable to 403 to return HTTPForbidden, or any other HTTP code
237 237 ## This will be served instead of default 401 on bad authnetication
238 238 auth_ret_code =
239 239
240 240 ## use special detection method when serving auth_ret_code, instead of serving
241 241 ## ret_code directly, use 401 initially (Which triggers credentials prompt)
242 242 ## and then serve auth_ret_code to clients
243 243 auth_ret_code_detection = false
244 244
245 245 ## locking return code. When repository is locked return this HTTP code. 2XX
246 246 ## codes don't break the transactions while 4XX codes do
247 247 lock_ret_code = 423
248 248
249 249 ## allows to change the repository location in settings page
250 250 allow_repo_location_change = true
251 251
252 252 ## allows to setup custom hooks in settings page
253 253 allow_custom_hooks_settings = true
254 254
255 255 ## generated license token, goto license page in RhodeCode settings to obtain
256 256 ## new token
257 257 license_token =
258 258
259 259 ## supervisor connection uri, for managing supervisor and logs.
260 260 supervisor.uri =
261 261 ## supervisord group name/id we only want this RC instance to handle
262 262 supervisor.group_id = prod
263 263
264 264 ## Display extended labs settings
265 265 labs_settings_active = true
266 266
267 267 ####################################
268 268 ### CELERY CONFIG ####
269 269 ####################################
270 270 ## run: /path/to/celery worker \
271 271 ## -E --beat --app rhodecode.lib.celerylib.loader \
272 272 ## --scheduler rhodecode.lib.celerylib.scheduler.RcScheduler \
273 273 ## --loglevel DEBUG --ini /path/to/rhodecode.ini
274 274
275 275 use_celery = false
276 276
277 277 ## connection url to the message broker (default rabbitmq)
278 278 celery.broker_url = amqp://rabbitmq:qweqwe@localhost:5672/rabbitmqhost
279 279
280 280 ## maximum tasks to execute before worker restart
281 281 celery.max_tasks_per_child = 100
282 282
283 283 ## tasks will never be sent to the queue, but executed locally instead.
284 284 celery.task_always_eager = false
285 285
286 286 ####################################
287 287 ### BEAKER CACHE ####
288 288 ####################################
289 289 # default cache dir for templates. Putting this into a ramdisk
290 290 ## can boost performance, eg. %(here)s/data_ramdisk
291 291 cache_dir = %(here)s/data
292 292
293 293 ## locking and default file storage for Beaker. Putting this into a ramdisk
294 294 ## can boost performance, eg. %(here)s/data_ramdisk/cache/beaker_data
295 295 beaker.cache.data_dir = %(here)s/data/cache/beaker_data
296 296 beaker.cache.lock_dir = %(here)s/data/cache/beaker_lock
297 297
298 298 beaker.cache.regions = super_short_term, short_term, long_term, sql_cache_short, auth_plugins, repo_cache_long
299 299
300 300 beaker.cache.super_short_term.type = memory
301 301 beaker.cache.super_short_term.expire = 10
302 302 beaker.cache.super_short_term.key_length = 256
303 303
304 304 beaker.cache.short_term.type = memory
305 305 beaker.cache.short_term.expire = 60
306 306 beaker.cache.short_term.key_length = 256
307 307
308 308 beaker.cache.long_term.type = memory
309 309 beaker.cache.long_term.expire = 36000
310 310 beaker.cache.long_term.key_length = 256
311 311
312 312 beaker.cache.sql_cache_short.type = memory
313 313 beaker.cache.sql_cache_short.expire = 10
314 314 beaker.cache.sql_cache_short.key_length = 256
315 315
316 316 ## default is memory cache, configure only if required
317 317 ## using multi-node or multi-worker setup
318 318 #beaker.cache.auth_plugins.type = ext:database
319 319 #beaker.cache.auth_plugins.lock_dir = %(here)s/data/cache/auth_plugin_lock
320 320 #beaker.cache.auth_plugins.url = postgresql://postgres:secret@localhost/rhodecode
321 321 #beaker.cache.auth_plugins.url = mysql://root:secret@127.0.0.1/rhodecode
322 322 #beaker.cache.auth_plugins.sa.pool_recycle = 3600
323 323 #beaker.cache.auth_plugins.sa.pool_size = 10
324 324 #beaker.cache.auth_plugins.sa.max_overflow = 0
325 325
326 326 beaker.cache.repo_cache_long.type = memorylru_base
327 327 beaker.cache.repo_cache_long.max_items = 4096
328 328 beaker.cache.repo_cache_long.expire = 2592000
329 329
330 330 ## default is memorylru_base cache, configure only if required
331 331 ## using multi-node or multi-worker setup
332 332 #beaker.cache.repo_cache_long.type = ext:memcached
333 333 #beaker.cache.repo_cache_long.url = localhost:11211
334 334 #beaker.cache.repo_cache_long.expire = 1209600
335 335 #beaker.cache.repo_cache_long.key_length = 256
336 336
337 337 ####################################
338 338 ### BEAKER SESSION ####
339 339 ####################################
340 340
341 341 ## .session.type is type of storage options for the session, current allowed
342 342 ## types are file, ext:memcached, ext:database, and memory (default).
343 343 beaker.session.type = file
344 344 beaker.session.data_dir = %(here)s/data/sessions/data
345 345
346 346 ## db based session, fast, and allows easy management over logged in users
347 347 #beaker.session.type = ext:database
348 348 #beaker.session.table_name = db_session
349 349 #beaker.session.sa.url = postgresql://postgres:secret@localhost/rhodecode
350 350 #beaker.session.sa.url = mysql://root:secret@127.0.0.1/rhodecode
351 351 #beaker.session.sa.pool_recycle = 3600
352 352 #beaker.session.sa.echo = false
353 353
354 354 beaker.session.key = rhodecode
355 355 beaker.session.secret = production-rc-uytcxaz
356 356 beaker.session.lock_dir = %(here)s/data/sessions/lock
357 357
358 358 ## Secure encrypted cookie. Requires AES and AES python libraries
359 359 ## you must disable beaker.session.secret to use this
360 360 #beaker.session.encrypt_key = key_for_encryption
361 361 #beaker.session.validate_key = validation_key
362 362
363 363 ## sets session as invalid(also logging out user) if it haven not been
364 364 ## accessed for given amount of time in seconds
365 365 beaker.session.timeout = 2592000
366 366 beaker.session.httponly = true
367 367 ## Path to use for the cookie. Set to prefix if you use prefix middleware
368 368 #beaker.session.cookie_path = /custom_prefix
369 369
370 370 ## uncomment for https secure cookie
371 371 beaker.session.secure = false
372 372
373 373 ## auto save the session to not to use .save()
374 374 beaker.session.auto = false
375 375
376 376 ## default cookie expiration time in seconds, set to `true` to set expire
377 377 ## at browser close
378 378 #beaker.session.cookie_expires = 3600
379 379
380 380 ###################################
381 381 ## SEARCH INDEXING CONFIGURATION ##
382 382 ###################################
383 383 ## Full text search indexer is available in rhodecode-tools under
384 384 ## `rhodecode-tools index` command
385 385
386 386 ## WHOOSH Backend, doesn't require additional services to run
387 387 ## it works good with few dozen repos
388 388 search.module = rhodecode.lib.index.whoosh
389 389 search.location = %(here)s/data/index
390 390
391 391 ########################################
392 392 ### CHANNELSTREAM CONFIG ####
393 393 ########################################
394 394 ## channelstream enables persistent connections and live notification
395 395 ## in the system. It's also used by the chat system
396 396 channelstream.enabled = false
397 397
398 398 ## server address for channelstream server on the backend
399 399 channelstream.server = 127.0.0.1:9800
400 400
401 401 ## location of the channelstream server from outside world
402 402 ## use ws:// for http or wss:// for https. This address needs to be handled
403 403 ## by external HTTP server such as Nginx or Apache
404 404 ## see nginx/apache configuration examples in our docs
405 405 channelstream.ws_url = ws://rhodecode.yourserver.com/_channelstream
406 406 channelstream.secret = secret
407 407 channelstream.history.location = %(here)s/channelstream_history
408 408
409 409 ## Internal application path that Javascript uses to connect into.
410 410 ## If you use proxy-prefix the prefix should be added before /_channelstream
411 411 channelstream.proxy_path = /_channelstream
412 412
413 413
414 414 ###################################
415 415 ## APPENLIGHT CONFIG ##
416 416 ###################################
417 417
418 418 ## Appenlight is tailored to work with RhodeCode, see
419 419 ## http://appenlight.com for details how to obtain an account
420 420
421 421 ## appenlight integration enabled
422 422 appenlight = false
423 423
424 424 appenlight.server_url = https://api.appenlight.com
425 425 appenlight.api_key = YOUR_API_KEY
426 426 #appenlight.transport_config = https://api.appenlight.com?threaded=1&timeout=5
427 427
428 428 # used for JS client
429 429 appenlight.api_public_key = YOUR_API_PUBLIC_KEY
430 430
431 431 ## TWEAK AMOUNT OF INFO SENT HERE
432 432
433 433 ## enables 404 error logging (default False)
434 434 appenlight.report_404 = false
435 435
436 436 ## time in seconds after request is considered being slow (default 1)
437 437 appenlight.slow_request_time = 1
438 438
439 439 ## record slow requests in application
440 440 ## (needs to be enabled for slow datastore recording and time tracking)
441 441 appenlight.slow_requests = true
442 442
443 443 ## enable hooking to application loggers
444 444 appenlight.logging = true
445 445
446 446 ## minimum log level for log capture
447 447 appenlight.logging.level = WARNING
448 448
449 449 ## send logs only from erroneous/slow requests
450 450 ## (saves API quota for intensive logging)
451 451 appenlight.logging_on_error = false
452 452
453 453 ## list of additonal keywords that should be grabbed from environ object
454 454 ## can be string with comma separated list of words in lowercase
455 455 ## (by default client will always send following info:
456 456 ## 'REMOTE_USER', 'REMOTE_ADDR', 'SERVER_NAME', 'CONTENT_TYPE' + all keys that
457 457 ## start with HTTP* this list be extended with additional keywords here
458 458 appenlight.environ_keys_whitelist =
459 459
460 460 ## list of keywords that should be blanked from request object
461 461 ## can be string with comma separated list of words in lowercase
462 462 ## (by default client will always blank keys that contain following words
463 463 ## 'password', 'passwd', 'pwd', 'auth_tkt', 'secret', 'csrf'
464 464 ## this list be extended with additional keywords set here
465 465 appenlight.request_keys_blacklist =
466 466
467 467 ## list of namespaces that should be ignores when gathering log entries
468 468 ## can be string with comma separated list of namespaces
469 469 ## (by default the client ignores own entries: appenlight_client.client)
470 470 appenlight.log_namespace_blacklist =
471 471
472 472
473 473 ################################################################################
474 474 ## WARNING: *THE LINE BELOW MUST BE UNCOMMENTED ON A PRODUCTION ENVIRONMENT* ##
475 475 ## Debug mode will enable the interactive debugging tool, allowing ANYONE to ##
476 476 ## execute malicious code after an exception is raised. ##
477 477 ################################################################################
478 478 set debug = false
479 479
480 480
481 481 ###########################################
482 482 ### MAIN RHODECODE DATABASE CONFIG ###
483 483 ###########################################
484 484 #sqlalchemy.db1.url = sqlite:///%(here)s/rhodecode.db?timeout=30
485 485 #sqlalchemy.db1.url = postgresql://postgres:qweqwe@localhost/rhodecode
486 486 #sqlalchemy.db1.url = mysql://root:qweqwe@localhost/rhodecode
487 487 sqlalchemy.db1.url = postgresql://postgres:qweqwe@localhost/rhodecode
488 488
489 489 # see sqlalchemy docs for other advanced settings
490 490
491 491 ## print the sql statements to output
492 492 sqlalchemy.db1.echo = false
493 493 ## recycle the connections after this amount of seconds
494 494 sqlalchemy.db1.pool_recycle = 3600
495 495 sqlalchemy.db1.convert_unicode = true
496 496
497 497 ## the number of connections to keep open inside the connection pool.
498 498 ## 0 indicates no limit
499 499 #sqlalchemy.db1.pool_size = 5
500 500
501 501 ## the number of connections to allow in connection pool "overflow", that is
502 502 ## connections that can be opened above and beyond the pool_size setting,
503 503 ## which defaults to five.
504 504 #sqlalchemy.db1.max_overflow = 10
505 505
506 506
507 507 ##################
508 508 ### VCS CONFIG ###
509 509 ##################
510 510 vcs.server.enable = true
511 511 vcs.server = localhost:9900
512 512
513 513 ## Web server connectivity protocol, responsible for web based VCS operatations
514 514 ## Available protocols are:
515 515 ## `http` - use http-rpc backend (default)
516 516 vcs.server.protocol = http
517 517
518 518 ## Push/Pull operations protocol, available options are:
519 519 ## `http` - use http-rpc backend (default)
520 520 ##
521 521 vcs.scm_app_implementation = http
522 522
523 523 ## Push/Pull operations hooks protocol, available options are:
524 524 ## `http` - use http-rpc backend (default)
525 525 vcs.hooks.protocol = http
526 526
527 527 vcs.server.log_level = info
528 528 ## Start VCSServer with this instance as a subprocess, usefull for development
529 529 vcs.start_server = false
530 530
531 531 ## List of enabled VCS backends, available options are:
532 532 ## `hg` - mercurial
533 533 ## `git` - git
534 534 ## `svn` - subversion
535 535 vcs.backends = hg, git, svn
536 536
537 537 vcs.connection_timeout = 3600
538 538 ## Compatibility version when creating SVN repositories. Defaults to newest version when commented out.
539 539 ## Available options are: pre-1.4-compatible, pre-1.5-compatible, pre-1.6-compatible, pre-1.8-compatible, pre-1.9-compatible
540 540 #vcs.svn.compatible_version = pre-1.8-compatible
541 541
542 542
543 543 ############################################################
544 544 ### Subversion proxy support (mod_dav_svn) ###
545 545 ### Maps RhodeCode repo groups into SVN paths for Apache ###
546 546 ############################################################
547 547 ## Enable or disable the config file generation.
548 548 svn.proxy.generate_config = false
549 549 ## Generate config file with `SVNListParentPath` set to `On`.
550 550 svn.proxy.list_parent_path = true
551 551 ## Set location and file name of generated config file.
552 552 svn.proxy.config_file_path = %(here)s/mod_dav_svn.conf
553 553 ## alternative mod_dav config template. This needs to be a mako template
554 554 #svn.proxy.config_template = ~/.rccontrol/enterprise-1/custom_svn_conf.mako
555 555 ## Used as a prefix to the `Location` block in the generated config file.
556 556 ## In most cases it should be set to `/`.
557 557 svn.proxy.location_root = /
558 558 ## Command to reload the mod dav svn configuration on change.
559 559 ## Example: `/etc/init.d/apache2 reload`
560 560 #svn.proxy.reload_cmd = /etc/init.d/apache2 reload
561 561 ## If the timeout expires before the reload command finishes, the command will
562 562 ## be killed. Setting it to zero means no timeout. Defaults to 10 seconds.
563 563 #svn.proxy.reload_timeout = 10
564 564
565 565 ############################################################
566 566 ### SSH Support Settings ###
567 567 ############################################################
568 568
569 569 ## Defines if a custom authorized_keys file should be created and written on
570 570 ## any change user ssh keys. Setting this to false also disables posibility
571 571 ## of adding SSH keys by users from web interface. Super admins can still
572 572 ## manage SSH Keys.
573 573 ssh.generate_authorized_keyfile = false
574 574
575 575 ## Options for ssh, default is `no-pty,no-port-forwarding,no-X11-forwarding,no-agent-forwarding`
576 576 # ssh.authorized_keys_ssh_opts =
577 577
578 578 ## Path to the authrozied_keys file where the generate entries are placed.
579 579 ## It is possible to have multiple key files specified in `sshd_config` e.g.
580 580 ## AuthorizedKeysFile %h/.ssh/authorized_keys %h/.ssh/authorized_keys_rhodecode
581 581 ssh.authorized_keys_file_path = ~/.ssh/authorized_keys_rhodecode
582 582
583 583 ## Command to execute the SSH wrapper. The binary is available in the
584 584 ## rhodecode installation directory.
585 585 ## e.g ~/.rccontrol/community-1/profile/bin/rc-ssh-wrapper
586 586 ssh.wrapper_cmd = ~/.rccontrol/community-1/rc-ssh-wrapper
587 587
588 588 ## Allow shell when executing the ssh-wrapper command
589 589 ssh.wrapper_cmd_allow_shell = false
590 590
591 591 ## Enables logging, and detailed output send back to the client during SSH
592 592 ## operations. Usefull for debugging, shouldn't be used in production.
593 593 ssh.enable_debug_logging = false
594 594
595 595 ## Paths to binary executable, by default they are the names, but we can
596 596 ## override them if we want to use a custom one
597 597 ssh.executable.hg = ~/.rccontrol/vcsserver-1/profile/bin/hg
598 598 ssh.executable.git = ~/.rccontrol/vcsserver-1/profile/bin/git
599 599 ssh.executable.svn = ~/.rccontrol/vcsserver-1/profile/bin/svnserve
600 600
601 601
602 602 ## Dummy marker to add new entries after.
603 603 ## Add any custom entries below. Please don't remove.
604 604 custom.conf = 1
605 605
606 606
607 607 ################################
608 608 ### LOGGING CONFIGURATION ####
609 609 ################################
610 610 [loggers]
611 611 keys = root, sqlalchemy, beaker, rhodecode, ssh_wrapper, celery
612 612
613 613 [handlers]
614 614 keys = console, console_sql
615 615
616 616 [formatters]
617 617 keys = generic, color_formatter, color_formatter_sql
618 618
619 619 #############
620 620 ## LOGGERS ##
621 621 #############
622 622 [logger_root]
623 623 level = NOTSET
624 624 handlers = console
625 625
626 626 [logger_sqlalchemy]
627 627 level = INFO
628 628 handlers = console_sql
629 629 qualname = sqlalchemy.engine
630 630 propagate = 0
631 631
632 632 [logger_beaker]
633 633 level = DEBUG
634 634 handlers =
635 635 qualname = beaker.container
636 636 propagate = 1
637 637
638 638 [logger_rhodecode]
639 639 level = DEBUG
640 640 handlers =
641 641 qualname = rhodecode
642 642 propagate = 1
643 643
644 644 [logger_ssh_wrapper]
645 645 level = DEBUG
646 646 handlers =
647 647 qualname = ssh_wrapper
648 648 propagate = 1
649 649
650 650 [logger_celery]
651 651 level = DEBUG
652 652 handlers =
653 653 qualname = celery
654 654
655 655
656 656 ##############
657 657 ## HANDLERS ##
658 658 ##############
659 659
660 660 [handler_console]
661 661 class = StreamHandler
662 662 args = (sys.stderr, )
663 663 level = INFO
664 664 formatter = generic
665 665
666 666 [handler_console_sql]
667 667 class = StreamHandler
668 668 args = (sys.stderr, )
669 669 level = WARN
670 670 formatter = generic
671 671
672 672 ################
673 673 ## FORMATTERS ##
674 674 ################
675 675
676 676 [formatter_generic]
677 677 class = rhodecode.lib.logging_formatter.ExceptionAwareFormatter
678 format = %(asctime)s.%(msecs)03d %(levelname)-5.5s [%(name)s] %(message)s
678 format = %(asctime)s.%(msecs)03d [%(process)d] %(levelname)-5.5s [%(name)s] %(message)s
679 679 datefmt = %Y-%m-%d %H:%M:%S
680 680
681 681 [formatter_color_formatter]
682 682 class = rhodecode.lib.logging_formatter.ColorFormatter
683 format = %(asctime)s.%(msecs)03d %(levelname)-5.5s [%(name)s] %(message)s
683 format = %(asctime)s.%(msecs)03d [%(process)d] %(levelname)-5.5s [%(name)s] %(message)s
684 684 datefmt = %Y-%m-%d %H:%M:%S
685 685
686 686 [formatter_color_formatter_sql]
687 687 class = rhodecode.lib.logging_formatter.ColorFormatterSql
688 688 format = %(asctime)s.%(msecs)03d %(levelname)-5.5s [%(name)s] %(message)s
689 689 datefmt = %Y-%m-%d %H:%M:%S
General Comments 0
You need to be logged in to leave comments. Login now