##// END OF EJS Templates
rhodecode-enterprise-ce
RSS
config: small updated to .ini files
marcink -
r4171:0e77716f default
parent child Browse files
Show More
Show file before | Show file after | Hide comments
@@ -1,834 +1,829 b''
1 ## -*- coding: utf-8 -*-
1 ## -*- coding: utf-8 -*-
2
2
3 ; #########################################
3 ; #########################################
4 ; RHODECODE COMMUNITY EDITION CONFIGURATION
4 ; RHODECODE COMMUNITY EDITION CONFIGURATION
5 ; #########################################
5 ; #########################################
6
6
7 [DEFAULT]
7 [DEFAULT]
8 ; Debug flag sets all loggers to debug, and enables request tracking
8 ; Debug flag sets all loggers to debug, and enables request tracking
9 debug = true
9 debug = true
10
10
11 ; ########################################################################
11 ; ########################################################################
12 ; EMAIL CONFIGURATION
12 ; EMAIL CONFIGURATION
13 ; Uncomment and replace with the email address which should receive
13 ; These settings will be used by the RhodeCode mailing system
14 ; any error reports after an application crash
15 ; Additionally these settings will be used by the RhodeCode mailing system
16 ; ########################################################################
14 ; ########################################################################
17
15
18 ; prefix all emails subjects with given prefix, helps filtering out emails
16 ; prefix all emails subjects with given prefix, helps filtering out emails
19 #email_prefix = [RhodeCode]
17 #email_prefix = [RhodeCode]
20
18
21 ; email FROM address all mails will be sent
19 ; email FROM address all mails will be sent
22 #app_email_from = rhodecode-noreply@localhost
20 #app_email_from = rhodecode-noreply@localhost
23
21
24 #smtp_server = mail.server.com
22 #smtp_server = mail.server.com
25 #smtp_username =
23 #smtp_username =
26 #smtp_password =
24 #smtp_password =
27 #smtp_port =
25 #smtp_port =
28 #smtp_use_tls = false
26 #smtp_use_tls = false
29 #smtp_use_ssl = true
27 #smtp_use_ssl = true
30
28
31 [server:main]
29 [server:main]
32 ; COMMON HOST/IP CONFIG
30 ; COMMON HOST/IP CONFIG
33 host = 127.0.0.1
31 host = 127.0.0.1
34 port = 5000
32 port = 5000
35
33
36 ; ##################################################
34 ; ##################################################
37 ; WAITRESS WSGI SERVER - Recommended for Development
35 ; WAITRESS WSGI SERVER - Recommended for Development
38 ; ##################################################
36 ; ##################################################
39
37
40 ; use server type
38 ; use server type
41 use = egg:waitress#main
39 use = egg:waitress#main
42
40
43 ; number of worker threads
41 ; number of worker threads
44 threads = 5
42 threads = 5
45
43
46 ; MAX BODY SIZE 100GB
44 ; MAX BODY SIZE 100GB
47 max_request_body_size = 107374182400
45 max_request_body_size = 107374182400
48
46
49 ; Use poll instead of select, fixes file descriptors limits problems.
47 ; Use poll instead of select, fixes file descriptors limits problems.
50 ; May not work on old windows systems.
48 ; May not work on old windows systems.
51 asyncore_use_poll = true
49 asyncore_use_poll = true
52
50
53
51
54 ; ###########################
52 ; ###########################
55 ; GUNICORN APPLICATION SERVER
53 ; GUNICORN APPLICATION SERVER
56 ; ###########################
54 ; ###########################
57
55
58 ; run with gunicorn --log-config rhodecode.ini --paste rhodecode.ini
56 ; run with gunicorn --log-config rhodecode.ini --paste rhodecode.ini
59
57
60 ; Module to use, this setting shouldn't be changed
58 ; Module to use, this setting shouldn't be changed
61 #use = egg:gunicorn#main
59 #use = egg:gunicorn#main
62
60
63 ; Sets the number of process workers. More workers means more concurrent connections
61 ; Sets the number of process workers. More workers means more concurrent connections
64 ; RhodeCode can handle at the same time. Each additional worker also it increases
62 ; RhodeCode can handle at the same time. Each additional worker also it increases
65 ; memory usage as each has it's own set of caches.
63 ; memory usage as each has it's own set of caches.
66 ; Recommended value is (2 * NUMBER_OF_CPUS + 1), eg 2CPU = 5 workers, but no more
64 ; Recommended value is (2 * NUMBER_OF_CPUS + 1), eg 2CPU = 5 workers, but no more
67 ; than 8-10 unless for really big deployments .e.g 700-1000 users.
65 ; than 8-10 unless for really big deployments .e.g 700-1000 users.
68 ; `instance_id = *` must be set in the [app:main] section below (which is the default)
66 ; `instance_id = *` must be set in the [app:main] section below (which is the default)
69 ; when using more than 1 worker.
67 ; when using more than 1 worker.
70 #workers = 2
68 #workers = 2
71
69
72 ; Gunicorn access log level
70 ; Gunicorn access log level
73 #loglevel = info
71 #loglevel = info
74
72
75 ; Process name visible in process list
73 ; Process name visible in process list
76 #proc_name = rhodecode
74 #proc_name = rhodecode
77
75
78 ; Type of worker class, one of `sync`, `gevent`
76 ; Type of worker class, one of `sync`, `gevent`
79 ; Recommended type is `gevent`
77 ; Recommended type is `gevent`
80 #worker_class = gevent
78 #worker_class = gevent
81
79
82 ; The maximum number of simultaneous clients. Valid only for gevent
80 ; The maximum number of simultaneous clients. Valid only for gevent
83 #worker_connections = 10
81 #worker_connections = 10
84
82
85 ; Max number of requests that worker will handle before being gracefully restarted.
83 ; Max number of requests that worker will handle before being gracefully restarted.
86 ; Prevents memory leaks, jitter adds variability so not all workers are restarted at once.
84 ; Prevents memory leaks, jitter adds variability so not all workers are restarted at once.
87 #max_requests = 1000
85 #max_requests = 1000
88 #max_requests_jitter = 30
86 #max_requests_jitter = 30
89
87
90 ; Amount of time a worker can spend with handling a request before it
88 ; Amount of time a worker can spend with handling a request before it
91 ; gets killed and restarted. By default set to 21600 (6hrs)
89 ; gets killed and restarted. By default set to 21600 (6hrs)
92 ; Examples: 1800 (30min), 3600 (1hr), 7200 (2hr), 43200 (12h)
90 ; Examples: 1800 (30min), 3600 (1hr), 7200 (2hr), 43200 (12h)
93 #timeout = 21600
91 #timeout = 21600
94
92
95 ; The maximum size of HTTP request line in bytes.
93 ; The maximum size of HTTP request line in bytes.
96 ; 0 for unlimited
94 ; 0 for unlimited
97 #limit_request_line = 0
95 #limit_request_line = 0
98
96
99 ; Limit the number of HTTP headers fields in a request.
97 ; Limit the number of HTTP headers fields in a request.
100 ; By default this value is 100 and can't be larger than 32768.
98 ; By default this value is 100 and can't be larger than 32768.
101 #limit_request_fields = 32768
99 #limit_request_fields = 32768
102
100
103 ; Limit the allowed size of an HTTP request header field.
101 ; Limit the allowed size of an HTTP request header field.
104 ; Value is a positive number or 0.
102 ; Value is a positive number or 0.
105 ; Setting it to 0 will allow unlimited header field sizes.
103 ; Setting it to 0 will allow unlimited header field sizes.
106 #limit_request_field_size = 0
104 #limit_request_field_size = 0
107
105
108 ; Timeout for graceful workers restart.
106 ; Timeout for graceful workers restart.
109 ; After receiving a restart signal, workers have this much time to finish
107 ; After receiving a restart signal, workers have this much time to finish
110 ; serving requests. Workers still alive after the timeout (starting from the
108 ; serving requests. Workers still alive after the timeout (starting from the
111 ; receipt of the restart signal) are force killed.
109 ; receipt of the restart signal) are force killed.
112 ; Examples: 1800 (30min), 3600 (1hr), 7200 (2hr), 43200 (12h)
110 ; Examples: 1800 (30min), 3600 (1hr), 7200 (2hr), 43200 (12h)
113 #graceful_timeout = 3600
111 #graceful_timeout = 3600
114
112
115 # The number of seconds to wait for requests on a Keep-Alive connection.
113 # The number of seconds to wait for requests on a Keep-Alive connection.
116 # Generally set in the 1-5 seconds range.
114 # Generally set in the 1-5 seconds range.
117 #keepalive = 2
115 #keepalive = 2
118
116
119 ; Maximum memory usage that each worker can use before it will receive a
117 ; Maximum memory usage that each worker can use before it will receive a
120 ; graceful restart signal 0 = memory monitoring is disabled
118 ; graceful restart signal 0 = memory monitoring is disabled
121 ; Examples: 268435456 (256MB), 536870912 (512MB)
119 ; Examples: 268435456 (256MB), 536870912 (512MB)
122 ; 1073741824 (1GB), 2147483648 (2GB), 4294967296 (4GB)
120 ; 1073741824 (1GB), 2147483648 (2GB), 4294967296 (4GB)
123 #memory_max_usage = 0
121 #memory_max_usage = 0
124
122
125 ; How often in seconds to check for memory usage for each gunicorn worker
123 ; How often in seconds to check for memory usage for each gunicorn worker
126 #memory_usage_check_interval = 60
124 #memory_usage_check_interval = 60
127
125
128 ; Threshold value for which we don't recycle worker if GarbageCollection
126 ; Threshold value for which we don't recycle worker if GarbageCollection
129 ; frees up enough resources. Before each restart we try to run GC on worker
127 ; frees up enough resources. Before each restart we try to run GC on worker
130 ; in case we get enough free memory after that, restart will not happen.
128 ; in case we get enough free memory after that, restart will not happen.
131 #memory_usage_recovery_threshold = 0.8
129 #memory_usage_recovery_threshold = 0.8
132
130
133
131
134 ; Prefix middleware for RhodeCode.
132 ; Prefix middleware for RhodeCode.
135 ; recommended when using proxy setup.
133 ; recommended when using proxy setup.
136 ; allows to set RhodeCode under a prefix in server.
134 ; allows to set RhodeCode under a prefix in server.
137 ; eg https://server.com/custom_prefix. Enable `filter-with =` option below as well.
135 ; eg https://server.com/custom_prefix. Enable `filter-with =` option below as well.
138 ; And set your prefix like: `prefix = /custom_prefix`
136 ; And set your prefix like: `prefix = /custom_prefix`
139 ; be sure to also set beaker.session.cookie_path = /custom_prefix if you need
137 ; be sure to also set beaker.session.cookie_path = /custom_prefix if you need
140 ; to make your cookies only work on prefix url
138 ; to make your cookies only work on prefix url
141 [filter:proxy-prefix]
139 [filter:proxy-prefix]
142 use = egg:PasteDeploy#prefix
140 use = egg:PasteDeploy#prefix
143 prefix = /
141 prefix = /
144
142
145 [app:main]
143 [app:main]
146 ; The %(here)s variable will be replaced with the absolute path of parent directory
144 ; The %(here)s variable will be replaced with the absolute path of parent directory
147 ; of this file
145 ; of this file
148 ; In addition ENVIRONMENT variables usage is possible, e.g
146 ; In addition ENVIRONMENT variables usage is possible, e.g
149 ; sqlalchemy.db1.url = {ENV_RC_DB_URL}
147 ; sqlalchemy.db1.url = {ENV_RC_DB_URL}
150
148
151 use = egg:rhodecode-enterprise-ce
149 use = egg:rhodecode-enterprise-ce
152
150
153 ; enable proxy prefix middleware, defined above
151 ; enable proxy prefix middleware, defined above
154 #filter-with = proxy-prefix
152 #filter-with = proxy-prefix
155
153
156 ; #############
154 ; #############
157 ; DEBUG OPTIONS
155 ; DEBUG OPTIONS
158 ; #############
156 ; #############
159
157
160 pyramid.reload_templates = true
158 pyramid.reload_templates = true
161
159
162 # During development the we want to have the debug toolbar enabled
160 # During development the we want to have the debug toolbar enabled
163 pyramid.includes =
161 pyramid.includes =
164 pyramid_debugtoolbar
162 pyramid_debugtoolbar
165
163
166 debugtoolbar.hosts = 0.0.0.0/0
164 debugtoolbar.hosts = 0.0.0.0/0
167 debugtoolbar.exclude_prefixes =
165 debugtoolbar.exclude_prefixes =
168 /css
166 /css
169 /fonts
167 /fonts
170 /images
168 /images
171 /js
169 /js
172
170
173 ## RHODECODE PLUGINS ##
171 ## RHODECODE PLUGINS ##
174 rhodecode.includes =
172 rhodecode.includes =
175 rhodecode.api
173 rhodecode.api
176
174
177
175
178 # api prefix url
176 # api prefix url
179 rhodecode.api.url = /_admin/api
177 rhodecode.api.url = /_admin/api
180
178
181 ; enable debug style page
179 ; enable debug style page
182 debug_style = true
180 debug_style = true
183
181
184 ; #################
182 ; #################
185 ; END DEBUG OPTIONS
183 ; END DEBUG OPTIONS
186 ; #################
184 ; #################
187
185
188 ; encryption key used to encrypt social plugin tokens,
186 ; encryption key used to encrypt social plugin tokens,
189 ; remote_urls with credentials etc, if not set it defaults to
187 ; remote_urls with credentials etc, if not set it defaults to
190 ; `beaker.session.secret`
188 ; `beaker.session.secret`
191 #rhodecode.encrypted_values.secret =
189 #rhodecode.encrypted_values.secret =
192
190
193 ; decryption strict mode (enabled by default). It controls if decryption raises
191 ; decryption strict mode (enabled by default). It controls if decryption raises
194 ; `SignatureVerificationError` in case of wrong key, or damaged encryption data.
192 ; `SignatureVerificationError` in case of wrong key, or damaged encryption data.
195 #rhodecode.encrypted_values.strict = false
193 #rhodecode.encrypted_values.strict = false
196
194
197 ; Pick algorithm for encryption. Either fernet (more secure) or aes (default)
195 ; Pick algorithm for encryption. Either fernet (more secure) or aes (default)
198 ; fernet is safer, and we strongly recommend switching to it.
196 ; fernet is safer, and we strongly recommend switching to it.
199 ; Due to backward compatibility aes is used as default.
197 ; Due to backward compatibility aes is used as default.
200 #rhodecode.encrypted_values.algorithm = fernet
198 #rhodecode.encrypted_values.algorithm = fernet
201
199
202 ; Return gzipped responses from RhodeCode (static files/application)
200 ; Return gzipped responses from RhodeCode (static files/application)
203 gzip_responses = false
201 gzip_responses = false
204
202
205 ; Auto-generate javascript routes file on startup
203 ; Auto-generate javascript routes file on startup
206 generate_js_files = false
204 generate_js_files = false
207
205
208 ; System global default language.
206 ; System global default language.
209 ; All available languages: en (default), be, de, es, fr, it, ja, pl, pt, ru, zh
207 ; All available languages: en (default), be, de, es, fr, it, ja, pl, pt, ru, zh
210 lang = en
208 lang = en
211
209
212 ; Perform a full repository scan and import on each server start.
210 ; Perform a full repository scan and import on each server start.
213 ; Settings this to true could lead to very long startup time.
211 ; Settings this to true could lead to very long startup time.
214 startup.import_repos = false
212 startup.import_repos = false
215
213
216 ; Uncomment and set this path to use archive download cache.
214 ; Uncomment and set this path to use archive download cache.
217 ; Once enabled, generated archives will be cached at this location
215 ; Once enabled, generated archives will be cached at this location
218 ; and served from the cache during subsequent requests for the same archive of
216 ; and served from the cache during subsequent requests for the same archive of
219 ; the repository.
217 ; the repository.
220 #archive_cache_dir = /tmp/tarballcache
218 #archive_cache_dir = /tmp/tarballcache
221
219
222 ; URL at which the application is running. This is used for Bootstrapping
220 ; URL at which the application is running. This is used for Bootstrapping
223 ; requests in context when no web request is available. Used in ishell, or
221 ; requests in context when no web request is available. Used in ishell, or
224 ; SSH calls. Set this for events to receive proper url for SSH calls.
222 ; SSH calls. Set this for events to receive proper url for SSH calls.
225 app.base_url = http://rhodecode.local
223 app.base_url = http://rhodecode.local
226
224
227 ; Unique application ID. Should be a random unique string for security.
225 ; Unique application ID. Should be a random unique string for security.
228 app_instance_uuid = rc-production
226 app_instance_uuid = rc-production
229
227
230 ; Cut off limit for large diffs (size in bytes). If overall diff size on
228 ; Cut off limit for large diffs (size in bytes). If overall diff size on
231 ; commit, or pull request exceeds this limit this diff will be displayed
229 ; commit, or pull request exceeds this limit this diff will be displayed
232 ; partially. E.g 512000 == 512Kb
230 ; partially. E.g 512000 == 512Kb
233 cut_off_limit_diff = 512000
231 cut_off_limit_diff = 512000
234
232
235 ; Cut off limit for large files inside diffs (size in bytes). Each individual
233 ; Cut off limit for large files inside diffs (size in bytes). Each individual
236 ; file inside diff which exceeds this limit will be displayed partially.
234 ; file inside diff which exceeds this limit will be displayed partially.
237 ; E.g 128000 == 128Kb
235 ; E.g 128000 == 128Kb
238 cut_off_limit_file = 128000
236 cut_off_limit_file = 128000
239
237
240 ; Use cached version of vcs repositories everywhere. Recommended to be `true`
238 ; Use cached version of vcs repositories everywhere. Recommended to be `true`
241 vcs_full_cache = true
239 vcs_full_cache = true
242
240
243 ; Force https in RhodeCode, fixes https redirects, assumes it's always https.
241 ; Force https in RhodeCode, fixes https redirects, assumes it's always https.
244 ; Normally this is controlled by proper flags sent from http server such as Nginx or Apache
242 ; Normally this is controlled by proper flags sent from http server such as Nginx or Apache
245 force_https = false
243 force_https = false
246
244
247 ; use Strict-Transport-Security headers
245 ; use Strict-Transport-Security headers
248 use_htsts = false
246 use_htsts = false
249
247
250 ; Set to true if your repos are exposed using the dumb protocol
248 ; Set to true if your repos are exposed using the dumb protocol
251 git_update_server_info = false
249 git_update_server_info = false
252
250
253 ; RSS/ATOM feed options
251 ; RSS/ATOM feed options
254 rss_cut_off_limit = 256000
252 rss_cut_off_limit = 256000
255 rss_items_per_page = 10
253 rss_items_per_page = 10
256 rss_include_diff = false
254 rss_include_diff = false
257
255
258 ; gist URL alias, used to create nicer urls for gist. This should be an
256 ; gist URL alias, used to create nicer urls for gist. This should be an
259 ; url that does rewrites to _admin/gists/{gistid}.
257 ; url that does rewrites to _admin/gists/{gistid}.
260 ; example: http://gist.rhodecode.org/{gistid}. Empty means use the internal
258 ; example: http://gist.rhodecode.org/{gistid}. Empty means use the internal
261 ; RhodeCode url, ie. http[s]://rhodecode.server/_admin/gists/{gistid}
259 ; RhodeCode url, ie. http[s]://rhodecode.server/_admin/gists/{gistid}
262 gist_alias_url =
260 gist_alias_url =
263
261
264 ; List of views (using glob pattern syntax) that AUTH TOKENS could be
262 ; List of views (using glob pattern syntax) that AUTH TOKENS could be
265 ; used for access.
263 ; used for access.
266 ; Adding ?auth_token=TOKEN_HASH to the url authenticates this request as if it
264 ; Adding ?auth_token=TOKEN_HASH to the url authenticates this request as if it
267 ; came from the the logged in user who own this authentication token.
265 ; came from the the logged in user who own this authentication token.
268 ; Additionally @TOKEN syntax can be used to bound the view to specific
266 ; Additionally @TOKEN syntax can be used to bound the view to specific
269 ; authentication token. Such view would be only accessible when used together
267 ; authentication token. Such view would be only accessible when used together
270 ; with this authentication token
268 ; with this authentication token
271 ; list of all views can be found under `/_admin/permissions/auth_token_access`
269 ; list of all views can be found under `/_admin/permissions/auth_token_access`
272 ; The list should be "," separated and on a single line.
270 ; The list should be "," separated and on a single line.
273 ; Most common views to enable:
271 ; Most common views to enable:
274
272
275 # RepoCommitsView:repo_commit_download
273 # RepoCommitsView:repo_commit_download
276 # RepoCommitsView:repo_commit_patch
274 # RepoCommitsView:repo_commit_patch
277 # RepoCommitsView:repo_commit_raw
275 # RepoCommitsView:repo_commit_raw
278 # RepoCommitsView:repo_commit_raw@TOKEN
276 # RepoCommitsView:repo_commit_raw@TOKEN
279 # RepoFilesView:repo_files_diff
277 # RepoFilesView:repo_files_diff
280 # RepoFilesView:repo_archivefile
278 # RepoFilesView:repo_archivefile
281 # RepoFilesView:repo_file_raw
279 # RepoFilesView:repo_file_raw
282 # GistView:*
280 # GistView:*
283 api_access_controllers_whitelist =
281 api_access_controllers_whitelist =
284
282
285 ; Default encoding used to convert from and to unicode
283 ; Default encoding used to convert from and to unicode
286 ; can be also a comma separated list of encoding in case of mixed encodings
284 ; can be also a comma separated list of encoding in case of mixed encodings
287 default_encoding = UTF-8
285 default_encoding = UTF-8
288
286
289 ; instance-id prefix
287 ; instance-id prefix
290 ; a prefix key for this instance used for cache invalidation when running
288 ; a prefix key for this instance used for cache invalidation when running
291 ; multiple instances of RhodeCode, make sure it's globally unique for
289 ; multiple instances of RhodeCode, make sure it's globally unique for
292 ; all running RhodeCode instances. Leave empty if you don't use it
290 ; all running RhodeCode instances. Leave empty if you don't use it
293 instance_id =
291 instance_id =
294
292
295 ; Fallback authentication plugin. Set this to a plugin ID to force the usage
293 ; Fallback authentication plugin. Set this to a plugin ID to force the usage
296 ; of an authentication plugin also if it is disabled by it's settings.
294 ; of an authentication plugin also if it is disabled by it's settings.
297 ; This could be useful if you are unable to log in to the system due to broken
295 ; This could be useful if you are unable to log in to the system due to broken
298 ; authentication settings. Then you can enable e.g. the internal RhodeCode auth
296 ; authentication settings. Then you can enable e.g. the internal RhodeCode auth
299 ; module to log in again and fix the settings.
297 ; module to log in again and fix the settings.
300 ; Available builtin plugin IDs (hash is part of the ID):
298 ; Available builtin plugin IDs (hash is part of the ID):
301 ; egg:rhodecode-enterprise-ce#rhodecode
299 ; egg:rhodecode-enterprise-ce#rhodecode
302 ; egg:rhodecode-enterprise-ce#pam
300 ; egg:rhodecode-enterprise-ce#pam
303 ; egg:rhodecode-enterprise-ce#ldap
301 ; egg:rhodecode-enterprise-ce#ldap
304 ; egg:rhodecode-enterprise-ce#jasig_cas
302 ; egg:rhodecode-enterprise-ce#jasig_cas
305 ; egg:rhodecode-enterprise-ce#headers
303 ; egg:rhodecode-enterprise-ce#headers
306 ; egg:rhodecode-enterprise-ce#crowd
304 ; egg:rhodecode-enterprise-ce#crowd
307
305
308 #rhodecode.auth_plugin_fallback = egg:rhodecode-enterprise-ce#rhodecode
306 #rhodecode.auth_plugin_fallback = egg:rhodecode-enterprise-ce#rhodecode
309
307
310 ; Flag to control loading of legacy plugins in py:/path format
308 ; Flag to control loading of legacy plugins in py:/path format
311 auth_plugin.import_legacy_plugins = true
309 auth_plugin.import_legacy_plugins = true
312
310
313 ; alternative return HTTP header for failed authentication. Default HTTP
311 ; alternative return HTTP header for failed authentication. Default HTTP
314 ; response is 401 HTTPUnauthorized. Currently HG clients have troubles with
312 ; response is 401 HTTPUnauthorized. Currently HG clients have troubles with
315 ; handling that causing a series of failed authentication calls.
313 ; handling that causing a series of failed authentication calls.
316 ; Set this variable to 403 to return HTTPForbidden, or any other HTTP code
314 ; Set this variable to 403 to return HTTPForbidden, or any other HTTP code
317 ; This will be served instead of default 401 on bad authentication
315 ; This will be served instead of default 401 on bad authentication
318 auth_ret_code =
316 auth_ret_code =
319
317
320 ; use special detection method when serving auth_ret_code, instead of serving
318 ; use special detection method when serving auth_ret_code, instead of serving
321 ; ret_code directly, use 401 initially (Which triggers credentials prompt)
319 ; ret_code directly, use 401 initially (Which triggers credentials prompt)
322 ; and then serve auth_ret_code to clients
320 ; and then serve auth_ret_code to clients
323 auth_ret_code_detection = false
321 auth_ret_code_detection = false
324
322
325 ; locking return code. When repository is locked return this HTTP code. 2XX
323 ; locking return code. When repository is locked return this HTTP code. 2XX
326 ; codes don't break the transactions while 4XX codes do
324 ; codes don't break the transactions while 4XX codes do
327 lock_ret_code = 423
325 lock_ret_code = 423
328
326
329 ; allows to change the repository location in settings page
327 ; allows to change the repository location in settings page
330 allow_repo_location_change = true
328 allow_repo_location_change = true
331
329
332 ; allows to setup custom hooks in settings page
330 ; allows to setup custom hooks in settings page
333 allow_custom_hooks_settings = true
331 allow_custom_hooks_settings = true
334
332
335 ; Generated license token required for EE edition license.
333 ; Generated license token required for EE edition license.
336 ; New generated token value can be found in Admin > settings > license page.
334 ; New generated token value can be found in Admin > settings > license page.
337 license_token =
335 license_token =
338
336
339 ; This flag hides sensitive information on the license page such as token, and license data
337 ; This flag hides sensitive information on the license page such as token, and license data
340 license.hide_license_info = false
338 license.hide_license_info = false
341
339
342 ; supervisor connection uri, for managing supervisor and logs.
340 ; supervisor connection uri, for managing supervisor and logs.
343 supervisor.uri =
341 supervisor.uri =
344
342
345 ; supervisord group name/id we only want this RC instance to handle
343 ; supervisord group name/id we only want this RC instance to handle
346 supervisor.group_id = dev
344 supervisor.group_id = dev
347
345
348 ; Display extended labs settings
346 ; Display extended labs settings
349 labs_settings_active = true
347 labs_settings_active = true
350
348
351 ; Custom exception store path, defaults to TMPDIR
349 ; Custom exception store path, defaults to TMPDIR
352 ; This is used to store exception from RhodeCode in shared directory
350 ; This is used to store exception from RhodeCode in shared directory
353 #exception_tracker.store_path =
351 #exception_tracker.store_path =
354
352
355 ; File store configuration. This is used to store and serve uploaded files
353 ; File store configuration. This is used to store and serve uploaded files
356 file_store.enabled = true
354 file_store.enabled = true
357
355
358 ; Storage backend, available options are: local
356 ; Storage backend, available options are: local
359 file_store.backend = local
357 file_store.backend = local
360
358
361 ; path to store the uploaded binaries
359 ; path to store the uploaded binaries
362 file_store.storage_path = %(here)s/data/file_store
360 file_store.storage_path = %(here)s/data/file_store
363
361
364
362
365 ; #############
363 ; #############
366 ; CELERY CONFIG
364 ; CELERY CONFIG
367 ; #############
365 ; #############
368
366
369 ; run: /path/to/celery worker \
367 ; manually run celery: /path/to/celery worker -E --beat --app rhodecode.lib.celerylib.loader --scheduler rhodecode.lib.celerylib.scheduler.RcScheduler --loglevel DEBUG --ini /path/to/rhodecode.ini
370 ; -E --beat --app rhodecode.lib.celerylib.loader \
371 ; --scheduler rhodecode.lib.celerylib.scheduler.RcScheduler \
372 ; --loglevel DEBUG --ini /path/to/rhodecode.ini
373
368
374 use_celery = false
369 use_celery = false
375
370
376 ; connection url to the message broker (default redis)
371 ; connection url to the message broker (default redis)
377 celery.broker_url = redis://localhost:6379/8
372 celery.broker_url = redis://localhost:6379/8
378
373
379 ; rabbitmq example
374 ; rabbitmq example
380 #celery.broker_url = amqp://rabbitmq:qweqwe@localhost:5672/rabbitmqhost
375 #celery.broker_url = amqp://rabbitmq:qweqwe@localhost:5672/rabbitmqhost
381
376
382 ; maximum tasks to execute before worker restart
377 ; maximum tasks to execute before worker restart
383 celery.max_tasks_per_child = 100
378 celery.max_tasks_per_child = 100
384
379
385 ; tasks will never be sent to the queue, but executed locally instead.
380 ; tasks will never be sent to the queue, but executed locally instead.
386 celery.task_always_eager = false
381 celery.task_always_eager = false
387
382
388 ; #############
383 ; #############
389 ; DOGPILE CACHE
384 ; DOGPILE CACHE
390 ; #############
385 ; #############
391
386
392 ; Default cache dir for caches. Putting this into a ramdisk can boost performance.
387 ; Default cache dir for caches. Putting this into a ramdisk can boost performance.
393 ; eg. /tmpfs/data_ramdisk, however this directory might require large amount of space
388 ; eg. /tmpfs/data_ramdisk, however this directory might require large amount of space
394 cache_dir = %(here)s/data
389 cache_dir = %(here)s/data
395
390
396 ; *********************************************
391 ; *********************************************
397 ; `sql_cache_short` cache for heavy SQL queries
392 ; `sql_cache_short` cache for heavy SQL queries
398 ; Only supported backend is `memory_lru`
393 ; Only supported backend is `memory_lru`
399 ; *********************************************
394 ; *********************************************
400 rc_cache.sql_cache_short.backend = dogpile.cache.rc.memory_lru
395 rc_cache.sql_cache_short.backend = dogpile.cache.rc.memory_lru
401 rc_cache.sql_cache_short.expiration_time = 30
396 rc_cache.sql_cache_short.expiration_time = 30
402
397
403
398
404 ; *****************************************************
399 ; *****************************************************
405 ; `cache_repo_longterm` cache for repo object instances
400 ; `cache_repo_longterm` cache for repo object instances
406 ; Only supported backend is `memory_lru`
401 ; Only supported backend is `memory_lru`
407 ; *****************************************************
402 ; *****************************************************
408 rc_cache.cache_repo_longterm.backend = dogpile.cache.rc.memory_lru
403 rc_cache.cache_repo_longterm.backend = dogpile.cache.rc.memory_lru
409 ; by default we use 30 Days, cache is still invalidated on push
404 ; by default we use 30 Days, cache is still invalidated on push
410 rc_cache.cache_repo_longterm.expiration_time = 2592000
405 rc_cache.cache_repo_longterm.expiration_time = 2592000
411 ; max items in LRU cache, set to smaller number to save memory, and expire last used caches
406 ; max items in LRU cache, set to smaller number to save memory, and expire last used caches
412 rc_cache.cache_repo_longterm.max_size = 10000
407 rc_cache.cache_repo_longterm.max_size = 10000
413
408
414
409
415 ; *************************************************
410 ; *************************************************
416 ; `cache_perms` cache for permission tree, auth TTL
411 ; `cache_perms` cache for permission tree, auth TTL
417 ; *************************************************
412 ; *************************************************
418 rc_cache.cache_perms.backend = dogpile.cache.rc.file_namespace
413 rc_cache.cache_perms.backend = dogpile.cache.rc.file_namespace
419 rc_cache.cache_perms.expiration_time = 300
414 rc_cache.cache_perms.expiration_time = 300
420
415
421 ; alternative `cache_perms` redis backend with distributed lock
416 ; alternative `cache_perms` redis backend with distributed lock
422 #rc_cache.cache_perms.backend = dogpile.cache.rc.redis
417 #rc_cache.cache_perms.backend = dogpile.cache.rc.redis
423 #rc_cache.cache_perms.expiration_time = 300
418 #rc_cache.cache_perms.expiration_time = 300
424
419
425 ; redis_expiration_time needs to be greater then expiration_time
420 ; redis_expiration_time needs to be greater then expiration_time
426 #rc_cache.cache_perms.arguments.redis_expiration_time = 7200
421 #rc_cache.cache_perms.arguments.redis_expiration_time = 7200
427
422
428 #rc_cache.cache_perms.arguments.host = localhost
423 #rc_cache.cache_perms.arguments.host = localhost
429 #rc_cache.cache_perms.arguments.port = 6379
424 #rc_cache.cache_perms.arguments.port = 6379
430 #rc_cache.cache_perms.arguments.db = 0
425 #rc_cache.cache_perms.arguments.db = 0
431 #rc_cache.cache_perms.arguments.socket_timeout = 30
426 #rc_cache.cache_perms.arguments.socket_timeout = 30
432 ; more Redis options: https://dogpilecache.sqlalchemy.org/en/latest/api.html#redis-backends
427 ; more Redis options: https://dogpilecache.sqlalchemy.org/en/latest/api.html#redis-backends
433 #rc_cache.cache_perms.arguments.distributed_lock = true
428 #rc_cache.cache_perms.arguments.distributed_lock = true
434
429
435
430
436 ; ***************************************************
431 ; ***************************************************
437 ; `cache_repo` cache for file tree, Readme, RSS FEEDS
432 ; `cache_repo` cache for file tree, Readme, RSS FEEDS
438 ; ***************************************************
433 ; ***************************************************
439 rc_cache.cache_repo.backend = dogpile.cache.rc.file_namespace
434 rc_cache.cache_repo.backend = dogpile.cache.rc.file_namespace
440 rc_cache.cache_repo.expiration_time = 2592000
435 rc_cache.cache_repo.expiration_time = 2592000
441
436
442 ; alternative `cache_repo` redis backend with distributed lock
437 ; alternative `cache_repo` redis backend with distributed lock
443 #rc_cache.cache_repo.backend = dogpile.cache.rc.redis
438 #rc_cache.cache_repo.backend = dogpile.cache.rc.redis
444 #rc_cache.cache_repo.expiration_time = 2592000
439 #rc_cache.cache_repo.expiration_time = 2592000
445
440
446 ; redis_expiration_time needs to be greater then expiration_time
441 ; redis_expiration_time needs to be greater then expiration_time
447 #rc_cache.cache_repo.arguments.redis_expiration_time = 2678400
442 #rc_cache.cache_repo.arguments.redis_expiration_time = 2678400
448
443
449 #rc_cache.cache_repo.arguments.host = localhost
444 #rc_cache.cache_repo.arguments.host = localhost
450 #rc_cache.cache_repo.arguments.port = 6379
445 #rc_cache.cache_repo.arguments.port = 6379
451 #rc_cache.cache_repo.arguments.db = 1
446 #rc_cache.cache_repo.arguments.db = 1
452 #rc_cache.cache_repo.arguments.socket_timeout = 30
447 #rc_cache.cache_repo.arguments.socket_timeout = 30
453 ; more Redis options: https://dogpilecache.sqlalchemy.org/en/latest/api.html#redis-backends
448 ; more Redis options: https://dogpilecache.sqlalchemy.org/en/latest/api.html#redis-backends
454 #rc_cache.cache_repo.arguments.distributed_lock = true
449 #rc_cache.cache_repo.arguments.distributed_lock = true
455
450
456
451
457 ; ##############
452 ; ##############
458 ; BEAKER SESSION
453 ; BEAKER SESSION
459 ; ##############
454 ; ##############
460
455
461 ; beaker.session.type is type of storage options for the logged users sessions. Current allowed
456 ; beaker.session.type is type of storage options for the logged users sessions. Current allowed
462 ; types are file, ext:redis, ext:database, ext:memcached, and memory (default if not specified).
457 ; types are file, ext:redis, ext:database, ext:memcached, and memory (default if not specified).
463 ; Fastest ones are Redis and ext:database
458 ; Fastest ones are Redis and ext:database
464 beaker.session.type = file
459 beaker.session.type = file
465 beaker.session.data_dir = %(here)s/data/sessions
460 beaker.session.data_dir = %(here)s/data/sessions
466
461
467 ; Redis based sessions
462 ; Redis based sessions
468 #beaker.session.type = ext:redis
463 #beaker.session.type = ext:redis
469 #beaker.session.url = redis://127.0.0.1:6379/2
464 #beaker.session.url = redis://127.0.0.1:6379/2
470
465
471 ; DB based session, fast, and allows easy management over logged in users
466 ; DB based session, fast, and allows easy management over logged in users
472 #beaker.session.type = ext:database
467 #beaker.session.type = ext:database
473 #beaker.session.table_name = db_session
468 #beaker.session.table_name = db_session
474 #beaker.session.sa.url = postgresql://postgres:secret@localhost/rhodecode
469 #beaker.session.sa.url = postgresql://postgres:secret@localhost/rhodecode
475 #beaker.session.sa.url = mysql://root:secret@127.0.0.1/rhodecode
470 #beaker.session.sa.url = mysql://root:secret@127.0.0.1/rhodecode
476 #beaker.session.sa.pool_recycle = 3600
471 #beaker.session.sa.pool_recycle = 3600
477 #beaker.session.sa.echo = false
472 #beaker.session.sa.echo = false
478
473
479 beaker.session.key = rhodecode
474 beaker.session.key = rhodecode
480 beaker.session.secret = develop-rc-uytcxaz
475 beaker.session.secret = develop-rc-uytcxaz
481 beaker.session.lock_dir = %(here)s/data/sessions/lock
476 beaker.session.lock_dir = %(here)s/data/sessions/lock
482
477
483 ; Secure encrypted cookie. Requires AES and AES python libraries
478 ; Secure encrypted cookie. Requires AES and AES python libraries
484 ; you must disable beaker.session.secret to use this
479 ; you must disable beaker.session.secret to use this
485 #beaker.session.encrypt_key = key_for_encryption
480 #beaker.session.encrypt_key = key_for_encryption
486 #beaker.session.validate_key = validation_key
481 #beaker.session.validate_key = validation_key
487
482
488 ; Sets session as invalid (also logging out user) if it haven not been
483 ; Sets session as invalid (also logging out user) if it haven not been
489 ; accessed for given amount of time in seconds
484 ; accessed for given amount of time in seconds
490 beaker.session.timeout = 2592000
485 beaker.session.timeout = 2592000
491 beaker.session.httponly = true
486 beaker.session.httponly = true
492
487
493 ; Path to use for the cookie. Set to prefix if you use prefix middleware
488 ; Path to use for the cookie. Set to prefix if you use prefix middleware
494 #beaker.session.cookie_path = /custom_prefix
489 #beaker.session.cookie_path = /custom_prefix
495
490
496 ; Set https secure cookie
491 ; Set https secure cookie
497 beaker.session.secure = false
492 beaker.session.secure = false
498
493
499 ; default cookie expiration time in seconds, set to `true` to set expire
494 ; default cookie expiration time in seconds, set to `true` to set expire
500 ; at browser close
495 ; at browser close
501 #beaker.session.cookie_expires = 3600
496 #beaker.session.cookie_expires = 3600
502
497
503 ; #############################
498 ; #############################
504 ; SEARCH INDEXING CONFIGURATION
499 ; SEARCH INDEXING CONFIGURATION
505 ; #############################
500 ; #############################
506
501
507 ; Full text search indexer is available in rhodecode-tools under
502 ; Full text search indexer is available in rhodecode-tools under
508 ; `rhodecode-tools index` command
503 ; `rhodecode-tools index` command
509
504
510 ; WHOOSH Backend, doesn't require additional services to run
505 ; WHOOSH Backend, doesn't require additional services to run
511 ; it works good with few dozen repos
506 ; it works good with few dozen repos
512 search.module = rhodecode.lib.index.whoosh
507 search.module = rhodecode.lib.index.whoosh
513 search.location = %(here)s/data/index
508 search.location = %(here)s/data/index
514
509
515 ; ####################
510 ; ####################
516 ; CHANNELSTREAM CONFIG
511 ; CHANNELSTREAM CONFIG
517 ; ####################
512 ; ####################
518
513
519 ; channelstream enables persistent connections and live notification
514 ; channelstream enables persistent connections and live notification
520 ; in the system. It's also used by the chat system
515 ; in the system. It's also used by the chat system
521
516
522 channelstream.enabled = false
517 channelstream.enabled = false
523
518
524 ; server address for channelstream server on the backend
519 ; server address for channelstream server on the backend
525 channelstream.server = 127.0.0.1:9800
520 channelstream.server = 127.0.0.1:9800
526
521
527 ; location of the channelstream server from outside world
522 ; location of the channelstream server from outside world
528 ; use ws:// for http or wss:// for https. This address needs to be handled
523 ; use ws:// for http or wss:// for https. This address needs to be handled
529 ; by external HTTP server such as Nginx or Apache
524 ; by external HTTP server such as Nginx or Apache
530 ; see Nginx/Apache configuration examples in our docs
525 ; see Nginx/Apache configuration examples in our docs
531 channelstream.ws_url = ws://rhodecode.yourserver.com/_channelstream
526 channelstream.ws_url = ws://rhodecode.yourserver.com/_channelstream
532 channelstream.secret = secret
527 channelstream.secret = secret
533 channelstream.history.location = %(here)s/channelstream_history
528 channelstream.history.location = %(here)s/channelstream_history
534
529
535 ; Internal application path that Javascript uses to connect into.
530 ; Internal application path that Javascript uses to connect into.
536 ; If you use proxy-prefix the prefix should be added before /_channelstream
531 ; If you use proxy-prefix the prefix should be added before /_channelstream
537 channelstream.proxy_path = /_channelstream
532 channelstream.proxy_path = /_channelstream
538
533
539
534
540 ; ##############################
535 ; ##############################
541 ; MAIN RHODECODE DATABASE CONFIG
536 ; MAIN RHODECODE DATABASE CONFIG
542 ; ##############################
537 ; ##############################
543
538
544 #sqlalchemy.db1.url = sqlite:///%(here)s/rhodecode.db?timeout=30
539 #sqlalchemy.db1.url = sqlite:///%(here)s/rhodecode.db?timeout=30
545 #sqlalchemy.db1.url = postgresql://postgres:qweqwe@localhost/rhodecode
540 #sqlalchemy.db1.url = postgresql://postgres:qweqwe@localhost/rhodecode
546 #sqlalchemy.db1.url = mysql://root:qweqwe@localhost/rhodecode?charset=utf8
541 #sqlalchemy.db1.url = mysql://root:qweqwe@localhost/rhodecode?charset=utf8
547 ; pymysql is an alternative driver for MySQL, use in case of problems with default one
542 ; pymysql is an alternative driver for MySQL, use in case of problems with default one
548 #sqlalchemy.db1.url = mysql+pymysql://root:qweqwe@localhost/rhodecode
543 #sqlalchemy.db1.url = mysql+pymysql://root:qweqwe@localhost/rhodecode
549
544
550 sqlalchemy.db1.url = sqlite:///%(here)s/rhodecode.db?timeout=30
545 sqlalchemy.db1.url = sqlite:///%(here)s/rhodecode.db?timeout=30
551
546
552 ; see sqlalchemy docs for other advanced settings
547 ; see sqlalchemy docs for other advanced settings
553 ; print the sql statements to output
548 ; print the sql statements to output
554 sqlalchemy.db1.echo = false
549 sqlalchemy.db1.echo = false
555
550
556 ; recycle the connections after this amount of seconds
551 ; recycle the connections after this amount of seconds
557 sqlalchemy.db1.pool_recycle = 3600
552 sqlalchemy.db1.pool_recycle = 3600
558 sqlalchemy.db1.convert_unicode = true
553 sqlalchemy.db1.convert_unicode = true
559
554
560 ; the number of connections to keep open inside the connection pool.
555 ; the number of connections to keep open inside the connection pool.
561 ; 0 indicates no limit
556 ; 0 indicates no limit
562 #sqlalchemy.db1.pool_size = 5
557 #sqlalchemy.db1.pool_size = 5
563
558
564 ; The number of connections to allow in connection pool "overflow", that is
559 ; The number of connections to allow in connection pool "overflow", that is
565 ; connections that can be opened above and beyond the pool_size setting,
560 ; connections that can be opened above and beyond the pool_size setting,
566 ; which defaults to five.
561 ; which defaults to five.
567 #sqlalchemy.db1.max_overflow = 10
562 #sqlalchemy.db1.max_overflow = 10
568
563
569 ; Connection check ping, used to detect broken database connections
564 ; Connection check ping, used to detect broken database connections
570 ; could be enabled to better handle cases if MySQL has gone away errors
565 ; could be enabled to better handle cases if MySQL has gone away errors
571 #sqlalchemy.db1.ping_connection = true
566 #sqlalchemy.db1.ping_connection = true
572
567
573 ; ##########
568 ; ##########
574 ; VCS CONFIG
569 ; VCS CONFIG
575 ; ##########
570 ; ##########
576 vcs.server.enable = true
571 vcs.server.enable = true
577 vcs.server = localhost:9900
572 vcs.server = localhost:9900
578
573
579 ; Web server connectivity protocol, responsible for web based VCS operations
574 ; Web server connectivity protocol, responsible for web based VCS operations
580 ; Available protocols are:
575 ; Available protocols are:
581 ; `http` - use http-rpc backend (default)
576 ; `http` - use http-rpc backend (default)
582 vcs.server.protocol = http
577 vcs.server.protocol = http
583
578
584 ; Push/Pull operations protocol, available options are:
579 ; Push/Pull operations protocol, available options are:
585 ; `http` - use http-rpc backend (default)
580 ; `http` - use http-rpc backend (default)
586 vcs.scm_app_implementation = http
581 vcs.scm_app_implementation = http
587
582
588 ; Push/Pull operations hooks protocol, available options are:
583 ; Push/Pull operations hooks protocol, available options are:
589 ; `http` - use http-rpc backend (default)
584 ; `http` - use http-rpc backend (default)
590 vcs.hooks.protocol = http
585 vcs.hooks.protocol = http
591
586
592 ; Host on which this instance is listening for hooks. If vcsserver is in other location
587 ; Host on which this instance is listening for hooks. If vcsserver is in other location
593 ; this should be adjusted.
588 ; this should be adjusted.
594 vcs.hooks.host = 127.0.0.1
589 vcs.hooks.host = 127.0.0.1
595
590
596 ; Start VCSServer with this instance as a subprocess, useful for development
591 ; Start VCSServer with this instance as a subprocess, useful for development
597 vcs.start_server = false
592 vcs.start_server = false
598
593
599 ; List of enabled VCS backends, available options are:
594 ; List of enabled VCS backends, available options are:
600 ; `hg` - mercurial
595 ; `hg` - mercurial
601 ; `git` - git
596 ; `git` - git
602 ; `svn` - subversion
597 ; `svn` - subversion
603 vcs.backends = hg, git, svn
598 vcs.backends = hg, git, svn
604
599
605 ; Wait this number of seconds before killing connection to the vcsserver
600 ; Wait this number of seconds before killing connection to the vcsserver
606 vcs.connection_timeout = 3600
601 vcs.connection_timeout = 3600
607
602
608 ; Compatibility version when creating SVN repositories. Defaults to newest version when commented out.
603 ; Compatibility version when creating SVN repositories. Defaults to newest version when commented out.
609 ; Available options are: pre-1.4-compatible, pre-1.5-compatible, pre-1.6-compatible, pre-1.8-compatible, pre-1.9-compatible
604 ; Available options are: pre-1.4-compatible, pre-1.5-compatible, pre-1.6-compatible, pre-1.8-compatible, pre-1.9-compatible
610 #vcs.svn.compatible_version = pre-1.8-compatible
605 #vcs.svn.compatible_version = pre-1.8-compatible
611
606
612
607
613 ; ####################################################
608 ; ####################################################
614 ; Subversion proxy support (mod_dav_svn)
609 ; Subversion proxy support (mod_dav_svn)
615 ; Maps RhodeCode repo groups into SVN paths for Apache
610 ; Maps RhodeCode repo groups into SVN paths for Apache
616 ; ####################################################
611 ; ####################################################
617
612
618 ; Enable or disable the config file generation.
613 ; Enable or disable the config file generation.
619 svn.proxy.generate_config = false
614 svn.proxy.generate_config = false
620
615
621 ; Generate config file with `SVNListParentPath` set to `On`.
616 ; Generate config file with `SVNListParentPath` set to `On`.
622 svn.proxy.list_parent_path = true
617 svn.proxy.list_parent_path = true
623
618
624 ; Set location and file name of generated config file.
619 ; Set location and file name of generated config file.
625 svn.proxy.config_file_path = %(here)s/mod_dav_svn.conf
620 svn.proxy.config_file_path = %(here)s/mod_dav_svn.conf
626
621
627 ; alternative mod_dav config template. This needs to be a valid mako template
622 ; alternative mod_dav config template. This needs to be a valid mako template
628 ; Example template can be found in the source code:
623 ; Example template can be found in the source code:
629 ; rhodecode/apps/svn_support/templates/mod-dav-svn.conf.mako
624 ; rhodecode/apps/svn_support/templates/mod-dav-svn.conf.mako
630 #svn.proxy.config_template = ~/.rccontrol/enterprise-1/custom_svn_conf.mako
625 #svn.proxy.config_template = ~/.rccontrol/enterprise-1/custom_svn_conf.mako
631
626
632 ; Used as a prefix to the `Location` block in the generated config file.
627 ; Used as a prefix to the `Location` block in the generated config file.
633 ; In most cases it should be set to `/`.
628 ; In most cases it should be set to `/`.
634 svn.proxy.location_root = /
629 svn.proxy.location_root = /
635
630
636 ; Command to reload the mod dav svn configuration on change.
631 ; Command to reload the mod dav svn configuration on change.
637 ; Example: `/etc/init.d/apache2 reload` or /home/USER/apache_reload.sh
632 ; Example: `/etc/init.d/apache2 reload` or /home/USER/apache_reload.sh
638 ; Make sure user who runs RhodeCode process is allowed to reload Apache
633 ; Make sure user who runs RhodeCode process is allowed to reload Apache
639 #svn.proxy.reload_cmd = /etc/init.d/apache2 reload
634 #svn.proxy.reload_cmd = /etc/init.d/apache2 reload
640
635
641 ; If the timeout expires before the reload command finishes, the command will
636 ; If the timeout expires before the reload command finishes, the command will
642 ; be killed. Setting it to zero means no timeout. Defaults to 10 seconds.
637 ; be killed. Setting it to zero means no timeout. Defaults to 10 seconds.
643 #svn.proxy.reload_timeout = 10
638 #svn.proxy.reload_timeout = 10
644
639
645 ; ####################
640 ; ####################
646 ; SSH Support Settings
641 ; SSH Support Settings
647 ; ####################
642 ; ####################
648
643
649 ; Defines if a custom authorized_keys file should be created and written on
644 ; Defines if a custom authorized_keys file should be created and written on
650 ; any change user ssh keys. Setting this to false also disables possibility
645 ; any change user ssh keys. Setting this to false also disables possibility
651 ; of adding SSH keys by users from web interface. Super admins can still
646 ; of adding SSH keys by users from web interface. Super admins can still
652 ; manage SSH Keys.
647 ; manage SSH Keys.
653 ssh.generate_authorized_keyfile = false
648 ssh.generate_authorized_keyfile = false
654
649
655 ; Options for ssh, default is `no-pty,no-port-forwarding,no-X11-forwarding,no-agent-forwarding`
650 ; Options for ssh, default is `no-pty,no-port-forwarding,no-X11-forwarding,no-agent-forwarding`
656 # ssh.authorized_keys_ssh_opts =
651 # ssh.authorized_keys_ssh_opts =
657
652
658 ; Path to the authorized_keys file where the generate entries are placed.
653 ; Path to the authorized_keys file where the generate entries are placed.
659 ; It is possible to have multiple key files specified in `sshd_config` e.g.
654 ; It is possible to have multiple key files specified in `sshd_config` e.g.
660 ; AuthorizedKeysFile %h/.ssh/authorized_keys %h/.ssh/authorized_keys_rhodecode
655 ; AuthorizedKeysFile %h/.ssh/authorized_keys %h/.ssh/authorized_keys_rhodecode
661 ssh.authorized_keys_file_path = ~/.ssh/authorized_keys_rhodecode
656 ssh.authorized_keys_file_path = ~/.ssh/authorized_keys_rhodecode
662
657
663 ; Command to execute the SSH wrapper. The binary is available in the
658 ; Command to execute the SSH wrapper. The binary is available in the
664 ; RhodeCode installation directory.
659 ; RhodeCode installation directory.
665 ; e.g ~/.rccontrol/community-1/profile/bin/rc-ssh-wrapper
660 ; e.g ~/.rccontrol/community-1/profile/bin/rc-ssh-wrapper
666 ssh.wrapper_cmd = ~/.rccontrol/community-1/rc-ssh-wrapper
661 ssh.wrapper_cmd = ~/.rccontrol/community-1/rc-ssh-wrapper
667
662
668 ; Allow shell when executing the ssh-wrapper command
663 ; Allow shell when executing the ssh-wrapper command
669 ssh.wrapper_cmd_allow_shell = false
664 ssh.wrapper_cmd_allow_shell = false
670
665
671 ; Enables logging, and detailed output send back to the client during SSH
666 ; Enables logging, and detailed output send back to the client during SSH
672 ; operations. Useful for debugging, shouldn't be used in production.
667 ; operations. Useful for debugging, shouldn't be used in production.
673 ssh.enable_debug_logging = true
668 ssh.enable_debug_logging = true
674
669
675 ; Paths to binary executable, by default they are the names, but we can
670 ; Paths to binary executable, by default they are the names, but we can
676 ; override them if we want to use a custom one
671 ; override them if we want to use a custom one
677 ssh.executable.hg = ~/.rccontrol/vcsserver-1/profile/bin/hg
672 ssh.executable.hg = ~/.rccontrol/vcsserver-1/profile/bin/hg
678 ssh.executable.git = ~/.rccontrol/vcsserver-1/profile/bin/git
673 ssh.executable.git = ~/.rccontrol/vcsserver-1/profile/bin/git
679 ssh.executable.svn = ~/.rccontrol/vcsserver-1/profile/bin/svnserve
674 ssh.executable.svn = ~/.rccontrol/vcsserver-1/profile/bin/svnserve
680
675
681 ; Enables SSH key generator web interface. Disabling this still allows users
676 ; Enables SSH key generator web interface. Disabling this still allows users
682 ; to add their own keys.
677 ; to add their own keys.
683 ssh.enable_ui_key_generator = true
678 ssh.enable_ui_key_generator = true
684
679
685
680
686 ; #################
681 ; #################
687 ; APPENLIGHT CONFIG
682 ; APPENLIGHT CONFIG
688 ; #################
683 ; #################
689
684
690 ; Appenlight is tailored to work with RhodeCode, see
685 ; Appenlight is tailored to work with RhodeCode, see
691 ; http://appenlight.rhodecode.com for details how to obtain an account
686 ; http://appenlight.rhodecode.com for details how to obtain an account
692
687
693 ; Appenlight integration enabled
688 ; Appenlight integration enabled
694 appenlight = false
689 appenlight = false
695
690
696 appenlight.server_url = https://api.appenlight.com
691 appenlight.server_url = https://api.appenlight.com
697 appenlight.api_key = YOUR_API_KEY
692 appenlight.api_key = YOUR_API_KEY
698 #appenlight.transport_config = https://api.appenlight.com?threaded=1&timeout=5
693 #appenlight.transport_config = https://api.appenlight.com?threaded=1&timeout=5
699
694
700 ; used for JS client
695 ; used for JS client
701 appenlight.api_public_key = YOUR_API_PUBLIC_KEY
696 appenlight.api_public_key = YOUR_API_PUBLIC_KEY
702
697
703 ; TWEAK AMOUNT OF INFO SENT HERE
698 ; TWEAK AMOUNT OF INFO SENT HERE
704
699
705 ; enables 404 error logging (default False)
700 ; enables 404 error logging (default False)
706 appenlight.report_404 = false
701 appenlight.report_404 = false
707
702
708 ; time in seconds after request is considered being slow (default 1)
703 ; time in seconds after request is considered being slow (default 1)
709 appenlight.slow_request_time = 1
704 appenlight.slow_request_time = 1
710
705
711 ; record slow requests in application
706 ; record slow requests in application
712 ; (needs to be enabled for slow datastore recording and time tracking)
707 ; (needs to be enabled for slow datastore recording and time tracking)
713 appenlight.slow_requests = true
708 appenlight.slow_requests = true
714
709
715 ; enable hooking to application loggers
710 ; enable hooking to application loggers
716 appenlight.logging = true
711 appenlight.logging = true
717
712
718 ; minimum log level for log capture
713 ; minimum log level for log capture
719 appenlight.logging.level = WARNING
714 appenlight.logging.level = WARNING
720
715
721 ; send logs only from erroneous/slow requests
716 ; send logs only from erroneous/slow requests
722 ; (saves API quota for intensive logging)
717 ; (saves API quota for intensive logging)
723 appenlight.logging_on_error = false
718 appenlight.logging_on_error = false
724
719
725 ; list of additional keywords that should be grabbed from environ object
720 ; list of additional keywords that should be grabbed from environ object
726 ; can be string with comma separated list of words in lowercase
721 ; can be string with comma separated list of words in lowercase
727 ; (by default client will always send following info:
722 ; (by default client will always send following info:
728 ; 'REMOTE_USER', 'REMOTE_ADDR', 'SERVER_NAME', 'CONTENT_TYPE' + all keys that
723 ; 'REMOTE_USER', 'REMOTE_ADDR', 'SERVER_NAME', 'CONTENT_TYPE' + all keys that
729 ; start with HTTP* this list be extended with additional keywords here
724 ; start with HTTP* this list be extended with additional keywords here
730 appenlight.environ_keys_whitelist =
725 appenlight.environ_keys_whitelist =
731
726
732 ; list of keywords that should be blanked from request object
727 ; list of keywords that should be blanked from request object
733 ; can be string with comma separated list of words in lowercase
728 ; can be string with comma separated list of words in lowercase
734 ; (by default client will always blank keys that contain following words
729 ; (by default client will always blank keys that contain following words
735 ; 'password', 'passwd', 'pwd', 'auth_tkt', 'secret', 'csrf'
730 ; 'password', 'passwd', 'pwd', 'auth_tkt', 'secret', 'csrf'
736 ; this list be extended with additional keywords set here
731 ; this list be extended with additional keywords set here
737 appenlight.request_keys_blacklist =
732 appenlight.request_keys_blacklist =
738
733
739 ; list of namespaces that should be ignores when gathering log entries
734 ; list of namespaces that should be ignores when gathering log entries
740 ; can be string with comma separated list of namespaces
735 ; can be string with comma separated list of namespaces
741 ; (by default the client ignores own entries: appenlight_client.client)
736 ; (by default the client ignores own entries: appenlight_client.client)
742 appenlight.log_namespace_blacklist =
737 appenlight.log_namespace_blacklist =
743
738
744 ; Dummy marker to add new entries after.
739 ; Dummy marker to add new entries after.
745 ; Add any custom entries below. Please don't remove this marker.
740 ; Add any custom entries below. Please don't remove this marker.
746 custom.conf = 1
741 custom.conf = 1
747
742
748
743
749 ; #####################
744 ; #####################
750 ; LOGGING CONFIGURATION
745 ; LOGGING CONFIGURATION
751 ; #####################
746 ; #####################
752 [loggers]
747 [loggers]
753 keys = root, sqlalchemy, beaker, celery, rhodecode, ssh_wrapper
748 keys = root, sqlalchemy, beaker, celery, rhodecode, ssh_wrapper
754
749
755 [handlers]
750 [handlers]
756 keys = console, console_sql
751 keys = console, console_sql
757
752
758 [formatters]
753 [formatters]
759 keys = generic, color_formatter, color_formatter_sql
754 keys = generic, color_formatter, color_formatter_sql
760
755
761 ; #######
756 ; #######
762 ; LOGGERS
757 ; LOGGERS
763 ; #######
758 ; #######
764 [logger_root]
759 [logger_root]
765 level = NOTSET
760 level = NOTSET
766 handlers = console
761 handlers = console
767
762
768 [logger_sqlalchemy]
763 [logger_sqlalchemy]
769 level = INFO
764 level = INFO
770 handlers = console_sql
765 handlers = console_sql
771 qualname = sqlalchemy.engine
766 qualname = sqlalchemy.engine
772 propagate = 0
767 propagate = 0
773
768
774 [logger_beaker]
769 [logger_beaker]
775 level = DEBUG
770 level = DEBUG
776 handlers =
771 handlers =
777 qualname = beaker.container
772 qualname = beaker.container
778 propagate = 1
773 propagate = 1
779
774
780 [logger_rhodecode]
775 [logger_rhodecode]
781 level = DEBUG
776 level = DEBUG
782 handlers =
777 handlers =
783 qualname = rhodecode
778 qualname = rhodecode
784 propagate = 1
779 propagate = 1
785
780
786 [logger_ssh_wrapper]
781 [logger_ssh_wrapper]
787 level = DEBUG
782 level = DEBUG
788 handlers =
783 handlers =
789 qualname = ssh_wrapper
784 qualname = ssh_wrapper
790 propagate = 1
785 propagate = 1
791
786
792 [logger_celery]
787 [logger_celery]
793 level = DEBUG
788 level = DEBUG
794 handlers =
789 handlers =
795 qualname = celery
790 qualname = celery
796
791
797
792
798 ; ########
793 ; ########
799 ; HANDLERS
794 ; HANDLERS
800 ; ########
795 ; ########
801
796
802 [handler_console]
797 [handler_console]
803 class = StreamHandler
798 class = StreamHandler
804 args = (sys.stderr, )
799 args = (sys.stderr, )
805 level = DEBUG
800 level = DEBUG
806 formatter = color_formatter
801 formatter = color_formatter
807
802
808 [handler_console_sql]
803 [handler_console_sql]
809 ; "level = DEBUG" logs SQL queries and results.
804 ; "level = DEBUG" logs SQL queries and results.
810 ; "level = INFO" logs SQL queries.
805 ; "level = INFO" logs SQL queries.
811 ; "level = WARN" logs neither. (Recommended for production systems.)
806 ; "level = WARN" logs neither. (Recommended for production systems.)
812 class = StreamHandler
807 class = StreamHandler
813 args = (sys.stderr, )
808 args = (sys.stderr, )
814 level = WARN
809 level = WARN
815 formatter = color_formatter_sql
810 formatter = color_formatter_sql
816
811
817 ; ##########
812 ; ##########
818 ; FORMATTERS
813 ; FORMATTERS
819 ; ##########
814 ; ##########
820
815
821 [formatter_generic]
816 [formatter_generic]
822 class = rhodecode.lib.logging_formatter.ExceptionAwareFormatter
817 class = rhodecode.lib.logging_formatter.ExceptionAwareFormatter
823 format = %(asctime)s.%(msecs)03d [%(process)d] %(levelname)-5.5s [%(name)s] %(message)s
818 format = %(asctime)s.%(msecs)03d [%(process)d] %(levelname)-5.5s [%(name)s] %(message)s
824 datefmt = %Y-%m-%d %H:%M:%S
819 datefmt = %Y-%m-%d %H:%M:%S
825
820
826 [formatter_color_formatter]
821 [formatter_color_formatter]
827 class = rhodecode.lib.logging_formatter.ColorFormatter
822 class = rhodecode.lib.logging_formatter.ColorFormatter
828 format = %(asctime)s.%(msecs)03d [%(process)d] %(levelname)-5.5s [%(name)s] %(message)s
823 format = %(asctime)s.%(msecs)03d [%(process)d] %(levelname)-5.5s [%(name)s] %(message)s
829 datefmt = %Y-%m-%d %H:%M:%S
824 datefmt = %Y-%m-%d %H:%M:%S
830
825
831 [formatter_color_formatter_sql]
826 [formatter_color_formatter_sql]
832 class = rhodecode.lib.logging_formatter.ColorFormatterSql
827 class = rhodecode.lib.logging_formatter.ColorFormatterSql
833 format = %(asctime)s.%(msecs)03d [%(process)d] %(levelname)-5.5s [%(name)s] %(message)s
828 format = %(asctime)s.%(msecs)03d [%(process)d] %(levelname)-5.5s [%(name)s] %(message)s
834 datefmt = %Y-%m-%d %H:%M:%S
829 datefmt = %Y-%m-%d %H:%M:%S
General Comments 0
You need to be logged in to leave comments. Login now