##// END OF EJS Templates
rhodecode-enterprise-ce
RSS
config: update .ini file to latest installer defaults.
marcink -
r2506:41a55b98 default
parent child Browse files
Show More
Show file before | Show file after | Hide comments
@@ -1,717 +1,722 b''
1 1
2 2
3 3 ################################################################################
4 4 ## RHODECODE COMMUNITY EDITION CONFIGURATION ##
5 5 # The %(here)s variable will be replaced with the parent directory of this file#
6 6 ################################################################################
7 7
8 8 [DEFAULT]
9 9 debug = true
10 10
11 11 ################################################################################
12 12 ## EMAIL CONFIGURATION ##
13 13 ## Uncomment and replace with the email address which should receive ##
14 14 ## any error reports after an application crash ##
15 15 ## Additionally these settings will be used by the RhodeCode mailing system ##
16 16 ################################################################################
17 17
18 18 ## prefix all emails subjects with given prefix, helps filtering out emails
19 19 #email_prefix = [RhodeCode]
20 20
21 21 ## email FROM address all mails will be sent
22 22 #app_email_from = rhodecode-noreply@localhost
23 23
24 24 ## Uncomment and replace with the address which should receive any error report
25 25 ## note: using appenlight for error handling doesn't need this to be uncommented
26 26 #email_to = admin@localhost
27 27
28 28 ## in case of Application errors, sent an error email form
29 29 #error_email_from = rhodecode_error@localhost
30 30
31 31 ## additional error message to be send in case of server crash
32 32 #error_message =
33 33
34 34
35 35 #smtp_server = mail.server.com
36 36 #smtp_username =
37 37 #smtp_password =
38 38 #smtp_port =
39 39 #smtp_use_tls = false
40 40 #smtp_use_ssl = true
41 41 ## Specify available auth parameters here (e.g. LOGIN PLAIN CRAM-MD5, etc.)
42 42 #smtp_auth =
43 43
44 44 [server:main]
45 45 ## COMMON ##
46 46 host = 127.0.0.1
47 47 port = 5000
48 48
49 49 ##################################
50 50 ## WAITRESS WSGI SERVER ##
51 51 ## Recommended for Development ##
52 52 ##################################
53 53
54 54 use = egg:waitress#main
55 55 ## number of worker threads
56 56 threads = 5
57 57 ## MAX BODY SIZE 100GB
58 58 max_request_body_size = 107374182400
59 59 ## Use poll instead of select, fixes file descriptors limits problems.
60 60 ## May not work on old windows systems.
61 61 asyncore_use_poll = true
62 62
63 63
64 64 ##########################
65 65 ## GUNICORN WSGI SERVER ##
66 66 ##########################
67 67 ## run with gunicorn --log-config rhodecode.ini --paste rhodecode.ini
68 68
69 69 #use = egg:gunicorn#main
70 70 ## Sets the number of process workers. You must set `instance_id = *`
71 71 ## when this option is set to more than one worker, recommended
72 72 ## value is (2 * NUMBER_OF_CPUS + 1), eg 2CPU = 5 workers
73 73 ## The `instance_id = *` must be set in the [app:main] section below
74 74 #workers = 2
75 75 ## number of threads for each of the worker, must be set to 1 for gevent
76 76 ## generally recommended to be at 1
77 77 #threads = 1
78 78 ## process name
79 79 #proc_name = rhodecode
80 80 ## type of worker class, one of sync, gevent
81 81 ## recommended for bigger setup is using of of other than sync one
82 #worker_class = sync
82 #worker_class = gevent
83 83 ## The maximum number of simultaneous clients. Valid only for Gevent
84 84 #worker_connections = 10
85 85 ## max number of requests that worker will handle before being gracefully
86 86 ## restarted, could prevent memory leaks
87 87 #max_requests = 1000
88 88 #max_requests_jitter = 30
89 89 ## amount of time a worker can spend with handling a request before it
90 90 ## gets killed and restarted. Set to 6hrs
91 91 #timeout = 21600
92 92
93 93
94 94 ## prefix middleware for RhodeCode.
95 95 ## recommended when using proxy setup.
96 96 ## allows to set RhodeCode under a prefix in server.
97 97 ## eg https://server.com/custom_prefix. Enable `filter-with =` option below as well.
98 98 ## And set your prefix like: `prefix = /custom_prefix`
99 99 ## be sure to also set beaker.session.cookie_path = /custom_prefix if you need
100 100 ## to make your cookies only work on prefix url
101 101 [filter:proxy-prefix]
102 102 use = egg:PasteDeploy#prefix
103 103 prefix = /
104 104
105 105 [app:main]
106 106 use = egg:rhodecode-enterprise-ce
107 107
108 108 ## enable proxy prefix middleware, defined above
109 109 #filter-with = proxy-prefix
110 110
111 111 # During development the we want to have the debug toolbar enabled
112 112 pyramid.includes =
113 113 pyramid_debugtoolbar
114 114 rhodecode.lib.middleware.request_wrapper
115 115
116 116 pyramid.reload_templates = true
117 117
118 118 debugtoolbar.hosts = 0.0.0.0/0
119 119 debugtoolbar.exclude_prefixes =
120 120 /css
121 121 /fonts
122 122 /images
123 123 /js
124 124
125 125 ## RHODECODE PLUGINS ##
126 126 rhodecode.includes =
127 127 rhodecode.api
128 128
129 129
130 130 # api prefix url
131 131 rhodecode.api.url = /_admin/api
132 132
133 133
134 134 ## END RHODECODE PLUGINS ##
135 135
136 136 ## encryption key used to encrypt social plugin tokens,
137 137 ## remote_urls with credentials etc, if not set it defaults to
138 138 ## `beaker.session.secret`
139 139 #rhodecode.encrypted_values.secret =
140 140
141 141 ## decryption strict mode (enabled by default). It controls if decryption raises
142 142 ## `SignatureVerificationError` in case of wrong key, or damaged encryption data.
143 143 #rhodecode.encrypted_values.strict = false
144 144
145 145 ## return gzipped responses from Rhodecode (static files/application)
146 146 gzip_responses = false
147 147
148 148 ## autogenerate javascript routes file on startup
149 149 generate_js_files = false
150 150
151 151 ## Optional Languages
152 152 ## en(default), be, de, es, fr, it, ja, pl, pt, ru, zh
153 153 lang = en
154 154
155 155 ## perform a full repository scan on each server start, this should be
156 156 ## set to false after first startup, to allow faster server restarts.
157 157 startup.import_repos = false
158 158
159 159 ## Uncomment and set this path to use archive download cache.
160 160 ## Once enabled, generated archives will be cached at this location
161 161 ## and served from the cache during subsequent requests for the same archive of
162 162 ## the repository.
163 163 #archive_cache_dir = /tmp/tarballcache
164 164
165 165 ## URL at which the application is running. This is used for bootstraping
166 166 ## requests in context when no web request is available. Used in ishell, or
167 167 ## SSH calls. Set this for events to receive proper url for SSH calls.
168 168 app.base_url = http://rhodecode.local
169 169
170 170 ## change this to unique ID for security
171 171 app_instance_uuid = rc-production
172 172
173 173 ## cut off limit for large diffs (size in bytes). If overall diff size on
174 174 ## commit, or pull request exceeds this limit this diff will be displayed
175 175 ## partially. E.g 512000 == 512Kb
176 176 cut_off_limit_diff = 512000
177 177
178 178 ## cut off limit for large files inside diffs (size in bytes). Each individual
179 179 ## file inside diff which exceeds this limit will be displayed partially.
180 180 ## E.g 128000 == 128Kb
181 181 cut_off_limit_file = 128000
182 182
183 183 ## use cache version of scm repo everywhere
184 184 vcs_full_cache = true
185 185
186 186 ## force https in RhodeCode, fixes https redirects, assumes it's always https
187 187 ## Normally this is controlled by proper http flags sent from http server
188 188 force_https = false
189 189
190 190 ## use Strict-Transport-Security headers
191 191 use_htsts = false
192 192
193 193 ## number of commits stats will parse on each iteration
194 194 commit_parse_limit = 25
195 195
196 196 ## git rev filter option, --all is the default filter, if you need to
197 197 ## hide all refs in changelog switch this to --branches --tags
198 198 git_rev_filter = --branches --tags
199 199
200 200 # Set to true if your repos are exposed using the dumb protocol
201 201 git_update_server_info = false
202 202
203 203 ## RSS/ATOM feed options
204 204 rss_cut_off_limit = 256000
205 205 rss_items_per_page = 10
206 206 rss_include_diff = false
207 207
208 208 ## gist URL alias, used to create nicer urls for gist. This should be an
209 209 ## url that does rewrites to _admin/gists/{gistid}.
210 210 ## example: http://gist.rhodecode.org/{gistid}. Empty means use the internal
211 211 ## RhodeCode url, ie. http[s]://rhodecode.server/_admin/gists/{gistid}
212 212 gist_alias_url =
213 213
214 214 ## List of views (using glob pattern syntax) that AUTH TOKENS could be
215 215 ## used for access.
216 216 ## Adding ?auth_token=TOKEN_HASH to the url authenticates this request as if it
217 217 ## came from the the logged in user who own this authentication token.
218 218 ## Additionally @TOKEN syntaxt can be used to bound the view to specific
219 219 ## authentication token. Such view would be only accessible when used together
220 220 ## with this authentication token
221 221 ##
222 222 ## list of all views can be found under `/_admin/permissions/auth_token_access`
223 223 ## The list should be "," separated and on a single line.
224 224 ##
225 225 ## Most common views to enable:
226 226 # RepoCommitsView:repo_commit_download
227 227 # RepoCommitsView:repo_commit_patch
228 228 # RepoCommitsView:repo_commit_raw
229 229 # RepoCommitsView:repo_commit_raw@TOKEN
230 230 # RepoFilesView:repo_files_diff
231 231 # RepoFilesView:repo_archivefile
232 232 # RepoFilesView:repo_file_raw
233 233 # GistView:*
234 234 api_access_controllers_whitelist =
235 235
236 236 ## default encoding used to convert from and to unicode
237 237 ## can be also a comma separated list of encoding in case of mixed encodings
238 238 default_encoding = UTF-8
239 239
240 240 ## instance-id prefix
241 241 ## a prefix key for this instance used for cache invalidation when running
242 242 ## multiple instances of rhodecode, make sure it's globally unique for
243 243 ## all running rhodecode instances. Leave empty if you don't use it
244 244 instance_id =
245 245
246 246 ## Fallback authentication plugin. Set this to a plugin ID to force the usage
247 247 ## of an authentication plugin also if it is disabled by it's settings.
248 248 ## This could be useful if you are unable to log in to the system due to broken
249 249 ## authentication settings. Then you can enable e.g. the internal rhodecode auth
250 250 ## module to log in again and fix the settings.
251 251 ##
252 252 ## Available builtin plugin IDs (hash is part of the ID):
253 253 ## egg:rhodecode-enterprise-ce#rhodecode
254 254 ## egg:rhodecode-enterprise-ce#pam
255 255 ## egg:rhodecode-enterprise-ce#ldap
256 256 ## egg:rhodecode-enterprise-ce#jasig_cas
257 257 ## egg:rhodecode-enterprise-ce#headers
258 258 ## egg:rhodecode-enterprise-ce#crowd
259 259 #rhodecode.auth_plugin_fallback = egg:rhodecode-enterprise-ce#rhodecode
260 260
261 261 ## alternative return HTTP header for failed authentication. Default HTTP
262 262 ## response is 401 HTTPUnauthorized. Currently HG clients have troubles with
263 263 ## handling that causing a series of failed authentication calls.
264 264 ## Set this variable to 403 to return HTTPForbidden, or any other HTTP code
265 265 ## This will be served instead of default 401 on bad authnetication
266 266 auth_ret_code =
267 267
268 268 ## use special detection method when serving auth_ret_code, instead of serving
269 269 ## ret_code directly, use 401 initially (Which triggers credentials prompt)
270 270 ## and then serve auth_ret_code to clients
271 271 auth_ret_code_detection = false
272 272
273 273 ## locking return code. When repository is locked return this HTTP code. 2XX
274 274 ## codes don't break the transactions while 4XX codes do
275 275 lock_ret_code = 423
276 276
277 277 ## allows to change the repository location in settings page
278 278 allow_repo_location_change = true
279 279
280 280 ## allows to setup custom hooks in settings page
281 281 allow_custom_hooks_settings = true
282 282
283 283 ## generated license token, goto license page in RhodeCode settings to obtain
284 284 ## new token
285 285 license_token =
286 286
287 287 ## supervisor connection uri, for managing supervisor and logs.
288 288 supervisor.uri =
289 289 ## supervisord group name/id we only want this RC instance to handle
290 290 supervisor.group_id = dev
291 291
292 292 ## Display extended labs settings
293 293 labs_settings_active = true
294 294
295 295 ####################################
296 296 ### CELERY CONFIG ####
297 297 ####################################
298 ## run: /path/to/celery worker \
299 ## -E --beat --app rhodecode.lib.celerylib.loader \
300 ## --scheduler rhodecode.lib.celerylib.scheduler.RcScheduler \
301 ## --loglevel DEBUG --ini /path/to/rhodecode.ini
302
298 303 use_celery = false
299 304
300 # connection url to the message broker (default rabbitmq)
305 ## connection url to the message broker (default rabbitmq)
301 306 celery.broker_url = amqp://rabbitmq:qweqwe@localhost:5672/rabbitmqhost
302 307
303 # maximum tasks to execute before worker restart
308 ## maximum tasks to execute before worker restart
304 309 celery.max_tasks_per_child = 100
305 310
306 311 ## tasks will never be sent to the queue, but executed locally instead.
307 312 celery.task_always_eager = false
308 313
309 314 ####################################
310 315 ### BEAKER CACHE ####
311 316 ####################################
312 317 # default cache dir for templates. Putting this into a ramdisk
313 318 ## can boost performance, eg. %(here)s/data_ramdisk
314 319 cache_dir = %(here)s/data
315 320
316 321 ## locking and default file storage for Beaker. Putting this into a ramdisk
317 322 ## can boost performance, eg. %(here)s/data_ramdisk/cache/beaker_data
318 323 beaker.cache.data_dir = %(here)s/data/cache/beaker_data
319 324 beaker.cache.lock_dir = %(here)s/data/cache/beaker_lock
320 325
321 326 beaker.cache.regions = super_short_term, short_term, long_term, sql_cache_short, auth_plugins, repo_cache_long
322 327
323 328 beaker.cache.super_short_term.type = memory
324 329 beaker.cache.super_short_term.expire = 10
325 330 beaker.cache.super_short_term.key_length = 256
326 331
327 332 beaker.cache.short_term.type = memory
328 333 beaker.cache.short_term.expire = 60
329 334 beaker.cache.short_term.key_length = 256
330 335
331 336 beaker.cache.long_term.type = memory
332 337 beaker.cache.long_term.expire = 36000
333 338 beaker.cache.long_term.key_length = 256
334 339
335 340 beaker.cache.sql_cache_short.type = memory
336 341 beaker.cache.sql_cache_short.expire = 10
337 342 beaker.cache.sql_cache_short.key_length = 256
338 343
339 344 ## default is memory cache, configure only if required
340 345 ## using multi-node or multi-worker setup
341 346 #beaker.cache.auth_plugins.type = ext:database
342 347 #beaker.cache.auth_plugins.lock_dir = %(here)s/data/cache/auth_plugin_lock
343 348 #beaker.cache.auth_plugins.url = postgresql://postgres:secret@localhost/rhodecode
344 349 #beaker.cache.auth_plugins.url = mysql://root:secret@127.0.0.1/rhodecode
345 350 #beaker.cache.auth_plugins.sa.pool_recycle = 3600
346 351 #beaker.cache.auth_plugins.sa.pool_size = 10
347 352 #beaker.cache.auth_plugins.sa.max_overflow = 0
348 353
349 354 beaker.cache.repo_cache_long.type = memorylru_base
350 355 beaker.cache.repo_cache_long.max_items = 4096
351 356 beaker.cache.repo_cache_long.expire = 2592000
352 357
353 358 ## default is memorylru_base cache, configure only if required
354 359 ## using multi-node or multi-worker setup
355 360 #beaker.cache.repo_cache_long.type = ext:memcached
356 361 #beaker.cache.repo_cache_long.url = localhost:11211
357 362 #beaker.cache.repo_cache_long.expire = 1209600
358 363 #beaker.cache.repo_cache_long.key_length = 256
359 364
360 365 ####################################
361 366 ### BEAKER SESSION ####
362 367 ####################################
363 368
364 369 ## .session.type is type of storage options for the session, current allowed
365 370 ## types are file, ext:memcached, ext:database, and memory (default).
366 371 beaker.session.type = file
367 372 beaker.session.data_dir = %(here)s/data/sessions/data
368 373
369 374 ## db based session, fast, and allows easy management over logged in users
370 375 #beaker.session.type = ext:database
371 376 #beaker.session.table_name = db_session
372 377 #beaker.session.sa.url = postgresql://postgres:secret@localhost/rhodecode
373 378 #beaker.session.sa.url = mysql://root:secret@127.0.0.1/rhodecode
374 379 #beaker.session.sa.pool_recycle = 3600
375 380 #beaker.session.sa.echo = false
376 381
377 382 beaker.session.key = rhodecode
378 383 beaker.session.secret = develop-rc-uytcxaz
379 384 beaker.session.lock_dir = %(here)s/data/sessions/lock
380 385
381 386 ## Secure encrypted cookie. Requires AES and AES python libraries
382 387 ## you must disable beaker.session.secret to use this
383 388 #beaker.session.encrypt_key = key_for_encryption
384 389 #beaker.session.validate_key = validation_key
385 390
386 391 ## sets session as invalid(also logging out user) if it haven not been
387 392 ## accessed for given amount of time in seconds
388 393 beaker.session.timeout = 2592000
389 394 beaker.session.httponly = true
390 395 ## Path to use for the cookie. Set to prefix if you use prefix middleware
391 396 #beaker.session.cookie_path = /custom_prefix
392 397
393 398 ## uncomment for https secure cookie
394 399 beaker.session.secure = false
395 400
396 401 ## auto save the session to not to use .save()
397 402 beaker.session.auto = false
398 403
399 404 ## default cookie expiration time in seconds, set to `true` to set expire
400 405 ## at browser close
401 406 #beaker.session.cookie_expires = 3600
402 407
403 408 ###################################
404 409 ## SEARCH INDEXING CONFIGURATION ##
405 410 ###################################
406 411 ## Full text search indexer is available in rhodecode-tools under
407 412 ## `rhodecode-tools index` command
408 413
409 414 ## WHOOSH Backend, doesn't require additional services to run
410 415 ## it works good with few dozen repos
411 416 search.module = rhodecode.lib.index.whoosh
412 417 search.location = %(here)s/data/index
413 418
414 419 ########################################
415 420 ### CHANNELSTREAM CONFIG ####
416 421 ########################################
417 422 ## channelstream enables persistent connections and live notification
418 423 ## in the system. It's also used by the chat system
419 424 channelstream.enabled = false
420 425
421 426 ## server address for channelstream server on the backend
422 427 channelstream.server = 127.0.0.1:9800
423 428
424 429 ## location of the channelstream server from outside world
425 430 ## use ws:// for http or wss:// for https. This address needs to be handled
426 431 ## by external HTTP server such as Nginx or Apache
427 432 ## see nginx/apache configuration examples in our docs
428 433 channelstream.ws_url = ws://rhodecode.yourserver.com/_channelstream
429 434 channelstream.secret = secret
430 435 channelstream.history.location = %(here)s/channelstream_history
431 436
432 437 ## Internal application path that Javascript uses to connect into.
433 438 ## If you use proxy-prefix the prefix should be added before /_channelstream
434 439 channelstream.proxy_path = /_channelstream
435 440
436 441
437 442 ###################################
438 443 ## APPENLIGHT CONFIG ##
439 444 ###################################
440 445
441 446 ## Appenlight is tailored to work with RhodeCode, see
442 447 ## http://appenlight.com for details how to obtain an account
443 448
444 449 ## appenlight integration enabled
445 450 appenlight = false
446 451
447 452 appenlight.server_url = https://api.appenlight.com
448 453 appenlight.api_key = YOUR_API_KEY
449 454 #appenlight.transport_config = https://api.appenlight.com?threaded=1&timeout=5
450 455
451 456 # used for JS client
452 457 appenlight.api_public_key = YOUR_API_PUBLIC_KEY
453 458
454 459 ## TWEAK AMOUNT OF INFO SENT HERE
455 460
456 461 ## enables 404 error logging (default False)
457 462 appenlight.report_404 = false
458 463
459 464 ## time in seconds after request is considered being slow (default 1)
460 465 appenlight.slow_request_time = 1
461 466
462 467 ## record slow requests in application
463 468 ## (needs to be enabled for slow datastore recording and time tracking)
464 469 appenlight.slow_requests = true
465 470
466 471 ## enable hooking to application loggers
467 472 appenlight.logging = true
468 473
469 474 ## minimum log level for log capture
470 475 appenlight.logging.level = WARNING
471 476
472 477 ## send logs only from erroneous/slow requests
473 478 ## (saves API quota for intensive logging)
474 479 appenlight.logging_on_error = false
475 480
476 481 ## list of additonal keywords that should be grabbed from environ object
477 482 ## can be string with comma separated list of words in lowercase
478 483 ## (by default client will always send following info:
479 484 ## 'REMOTE_USER', 'REMOTE_ADDR', 'SERVER_NAME', 'CONTENT_TYPE' + all keys that
480 485 ## start with HTTP* this list be extended with additional keywords here
481 486 appenlight.environ_keys_whitelist =
482 487
483 488 ## list of keywords that should be blanked from request object
484 489 ## can be string with comma separated list of words in lowercase
485 490 ## (by default client will always blank keys that contain following words
486 491 ## 'password', 'passwd', 'pwd', 'auth_tkt', 'secret', 'csrf'
487 492 ## this list be extended with additional keywords set here
488 493 appenlight.request_keys_blacklist =
489 494
490 495 ## list of namespaces that should be ignores when gathering log entries
491 496 ## can be string with comma separated list of namespaces
492 497 ## (by default the client ignores own entries: appenlight_client.client)
493 498 appenlight.log_namespace_blacklist =
494 499
495 500
496 501 ################################################################################
497 502 ## WARNING: *THE LINE BELOW MUST BE UNCOMMENTED ON A PRODUCTION ENVIRONMENT* ##
498 503 ## Debug mode will enable the interactive debugging tool, allowing ANYONE to ##
499 504 ## execute malicious code after an exception is raised. ##
500 505 ################################################################################
501 506 #set debug = false
502 507
503 508
504 509 ##############
505 510 ## STYLING ##
506 511 ##############
507 512 debug_style = true
508 513
509 514 ###########################################
510 515 ### MAIN RHODECODE DATABASE CONFIG ###
511 516 ###########################################
512 517 #sqlalchemy.db1.url = sqlite:///%(here)s/rhodecode.db?timeout=30
513 518 #sqlalchemy.db1.url = postgresql://postgres:qweqwe@localhost/rhodecode
514 519 #sqlalchemy.db1.url = mysql://root:qweqwe@localhost/rhodecode
515 520 sqlalchemy.db1.url = sqlite:///%(here)s/rhodecode.db?timeout=30
516 521
517 522 # see sqlalchemy docs for other advanced settings
518 523
519 524 ## print the sql statements to output
520 525 sqlalchemy.db1.echo = false
521 526 ## recycle the connections after this amount of seconds
522 527 sqlalchemy.db1.pool_recycle = 3600
523 528 sqlalchemy.db1.convert_unicode = true
524 529
525 530 ## the number of connections to keep open inside the connection pool.
526 531 ## 0 indicates no limit
527 532 #sqlalchemy.db1.pool_size = 5
528 533
529 534 ## the number of connections to allow in connection pool "overflow", that is
530 535 ## connections that can be opened above and beyond the pool_size setting,
531 536 ## which defaults to five.
532 537 #sqlalchemy.db1.max_overflow = 10
533 538
534 539
535 540 ##################
536 541 ### VCS CONFIG ###
537 542 ##################
538 543 vcs.server.enable = true
539 544 vcs.server = localhost:9900
540 545
541 546 ## Web server connectivity protocol, responsible for web based VCS operatations
542 547 ## Available protocols are:
543 548 ## `http` - use http-rpc backend (default)
544 549 vcs.server.protocol = http
545 550
546 551 ## Push/Pull operations protocol, available options are:
547 552 ## `http` - use http-rpc backend (default)
548 553 ##
549 554 vcs.scm_app_implementation = http
550 555
551 556 ## Push/Pull operations hooks protocol, available options are:
552 557 ## `http` - use http-rpc backend (default)
553 558 vcs.hooks.protocol = http
554 559
555 560 vcs.server.log_level = debug
556 561 ## Start VCSServer with this instance as a subprocess, usefull for development
557 vcs.start_server = true
562 vcs.start_server = false
558 563
559 564 ## List of enabled VCS backends, available options are:
560 565 ## `hg` - mercurial
561 566 ## `git` - git
562 567 ## `svn` - subversion
563 568 vcs.backends = hg, git, svn
564 569
565 570 vcs.connection_timeout = 3600
566 571 ## Compatibility version when creating SVN repositories. Defaults to newest version when commented out.
567 572 ## Available options are: pre-1.4-compatible, pre-1.5-compatible, pre-1.6-compatible, pre-1.8-compatible, pre-1.9-compatible
568 573 #vcs.svn.compatible_version = pre-1.8-compatible
569 574
570 575
571 576 ############################################################
572 577 ### Subversion proxy support (mod_dav_svn) ###
573 578 ### Maps RhodeCode repo groups into SVN paths for Apache ###
574 579 ############################################################
575 580 ## Enable or disable the config file generation.
576 581 svn.proxy.generate_config = false
577 582 ## Generate config file with `SVNListParentPath` set to `On`.
578 583 svn.proxy.list_parent_path = true
579 584 ## Set location and file name of generated config file.
580 585 svn.proxy.config_file_path = %(here)s/mod_dav_svn.conf
581 586 ## alternative mod_dav config template. This needs to be a mako template
582 587 #svn.proxy.config_template = ~/.rccontrol/enterprise-1/custom_svn_conf.mako
583 588 ## Used as a prefix to the `Location` block in the generated config file.
584 589 ## In most cases it should be set to `/`.
585 590 svn.proxy.location_root = /
586 591 ## Command to reload the mod dav svn configuration on change.
587 592 ## Example: `/etc/init.d/apache2 reload`
588 593 #svn.proxy.reload_cmd = /etc/init.d/apache2 reload
589 594 ## If the timeout expires before the reload command finishes, the command will
590 595 ## be killed. Setting it to zero means no timeout. Defaults to 10 seconds.
591 596 #svn.proxy.reload_timeout = 10
592 597
593 598 ############################################################
594 599 ### SSH Support Settings ###
595 600 ############################################################
596 601
597 602 ## Defines if a custom authorized_keys file should be created and written on
598 603 ## any change user ssh keys. Setting this to false also disables posibility
599 604 ## of adding SSH keys by users from web interface. Super admins can still
600 605 ## manage SSH Keys.
601 606 ssh.generate_authorized_keyfile = false
602 607
603 608 ## Options for ssh, default is `no-pty,no-port-forwarding,no-X11-forwarding,no-agent-forwarding`
604 609 # ssh.authorized_keys_ssh_opts =
605 610
606 611 ## Path to the authrozied_keys file where the generate entries are placed.
607 612 ## It is possible to have multiple key files specified in `sshd_config` e.g.
608 613 ## AuthorizedKeysFile %h/.ssh/authorized_keys %h/.ssh/authorized_keys_rhodecode
609 614 ssh.authorized_keys_file_path = ~/.ssh/authorized_keys_rhodecode
610 615
611 616 ## Command to execute the SSH wrapper. The binary is available in the
612 617 ## rhodecode installation directory.
613 618 ## e.g ~/.rccontrol/community-1/profile/bin/rc-ssh-wrapper
614 619 ssh.wrapper_cmd = ~/.rccontrol/community-1/rc-ssh-wrapper
615 620
616 621 ## Allow shell when executing the ssh-wrapper command
617 622 ssh.wrapper_cmd_allow_shell = false
618 623
619 624 ## Enables logging, and detailed output send back to the client during SSH
620 625 ## operations. Usefull for debugging, shouldn't be used in production.
621 626 ssh.enable_debug_logging = true
622 627
623 628 ## Paths to binary executable, by default they are the names, but we can
624 629 ## override them if we want to use a custom one
625 630 ssh.executable.hg = ~/.rccontrol/vcsserver-1/profile/bin/hg
626 631 ssh.executable.git = ~/.rccontrol/vcsserver-1/profile/bin/git
627 632 ssh.executable.svn = ~/.rccontrol/vcsserver-1/profile/bin/svnserve
628 633
629 634
630 635 ## Dummy marker to add new entries after.
631 636 ## Add any custom entries below. Please don't remove.
632 637 custom.conf = 1
633 638
634 639
635 640 ################################
636 641 ### LOGGING CONFIGURATION ####
637 642 ################################
638 643 [loggers]
639 644 keys = root, sqlalchemy, beaker, rhodecode, ssh_wrapper, celery
640 645
641 646 [handlers]
642 647 keys = console, console_sql
643 648
644 649 [formatters]
645 650 keys = generic, color_formatter, color_formatter_sql
646 651
647 652 #############
648 653 ## LOGGERS ##
649 654 #############
650 655 [logger_root]
651 656 level = NOTSET
652 657 handlers = console
653 658
654 659 [logger_sqlalchemy]
655 660 level = INFO
656 661 handlers = console_sql
657 662 qualname = sqlalchemy.engine
658 663 propagate = 0
659 664
660 665 [logger_beaker]
661 666 level = DEBUG
662 667 handlers =
663 668 qualname = beaker.container
664 669 propagate = 1
665 670
666 671 [logger_rhodecode]
667 672 level = DEBUG
668 673 handlers =
669 674 qualname = rhodecode
670 675 propagate = 1
671 676
672 677 [logger_ssh_wrapper]
673 678 level = DEBUG
674 679 handlers =
675 680 qualname = ssh_wrapper
676 681 propagate = 1
677 682
678 683 [logger_celery]
679 684 level = DEBUG
680 685 handlers =
681 686 qualname = celery
682 687
683 688
684 689 ##############
685 690 ## HANDLERS ##
686 691 ##############
687 692
688 693 [handler_console]
689 694 class = StreamHandler
690 695 args = (sys.stderr, )
691 696 level = DEBUG
692 697 formatter = color_formatter
693 698
694 699 [handler_console_sql]
695 700 class = StreamHandler
696 701 args = (sys.stderr, )
697 702 level = DEBUG
698 703 formatter = color_formatter_sql
699 704
700 705 ################
701 706 ## FORMATTERS ##
702 707 ################
703 708
704 709 [formatter_generic]
705 710 class = rhodecode.lib.logging_formatter.ExceptionAwareFormatter
706 711 format = %(asctime)s.%(msecs)03d %(levelname)-5.5s [%(name)s] %(message)s
707 712 datefmt = %Y-%m-%d %H:%M:%S
708 713
709 714 [formatter_color_formatter]
710 715 class = rhodecode.lib.logging_formatter.ColorFormatter
711 716 format = %(asctime)s.%(msecs)03d %(levelname)-5.5s [%(name)s] %(message)s
712 717 datefmt = %Y-%m-%d %H:%M:%S
713 718
714 719 [formatter_color_formatter_sql]
715 720 class = rhodecode.lib.logging_formatter.ColorFormatterSql
716 721 format = %(asctime)s.%(msecs)03d %(levelname)-5.5s [%(name)s] %(message)s
717 722 datefmt = %Y-%m-%d %H:%M:%S
Show file before | Show file after | Hide comments
@@ -1,687 +1,692 b''
1 1
2 2
3 3 ################################################################################
4 4 ## RHODECODE COMMUNITY EDITION CONFIGURATION ##
5 5 # The %(here)s variable will be replaced with the parent directory of this file#
6 6 ################################################################################
7 7
8 8 [DEFAULT]
9 9 debug = true
10 10
11 11 ################################################################################
12 12 ## EMAIL CONFIGURATION ##
13 13 ## Uncomment and replace with the email address which should receive ##
14 14 ## any error reports after an application crash ##
15 15 ## Additionally these settings will be used by the RhodeCode mailing system ##
16 16 ################################################################################
17 17
18 18 ## prefix all emails subjects with given prefix, helps filtering out emails
19 19 #email_prefix = [RhodeCode]
20 20
21 21 ## email FROM address all mails will be sent
22 22 #app_email_from = rhodecode-noreply@localhost
23 23
24 24 ## Uncomment and replace with the address which should receive any error report
25 25 ## note: using appenlight for error handling doesn't need this to be uncommented
26 26 #email_to = admin@localhost
27 27
28 28 ## in case of Application errors, sent an error email form
29 29 #error_email_from = rhodecode_error@localhost
30 30
31 31 ## additional error message to be send in case of server crash
32 32 #error_message =
33 33
34 34
35 35 #smtp_server = mail.server.com
36 36 #smtp_username =
37 37 #smtp_password =
38 38 #smtp_port =
39 39 #smtp_use_tls = false
40 40 #smtp_use_ssl = true
41 41 ## Specify available auth parameters here (e.g. LOGIN PLAIN CRAM-MD5, etc.)
42 42 #smtp_auth =
43 43
44 44 [server:main]
45 45 ## COMMON ##
46 46 host = 127.0.0.1
47 47 port = 5000
48 48
49 49 ##################################
50 50 ## WAITRESS WSGI SERVER ##
51 51 ## Recommended for Development ##
52 52 ##################################
53 53
54 54 #use = egg:waitress#main
55 55 ## number of worker threads
56 56 #threads = 5
57 57 ## MAX BODY SIZE 100GB
58 58 #max_request_body_size = 107374182400
59 59 ## Use poll instead of select, fixes file descriptors limits problems.
60 60 ## May not work on old windows systems.
61 61 #asyncore_use_poll = true
62 62
63 63
64 64 ##########################
65 65 ## GUNICORN WSGI SERVER ##
66 66 ##########################
67 67 ## run with gunicorn --log-config rhodecode.ini --paste rhodecode.ini
68 68
69 69 use = egg:gunicorn#main
70 70 ## Sets the number of process workers. You must set `instance_id = *`
71 71 ## when this option is set to more than one worker, recommended
72 72 ## value is (2 * NUMBER_OF_CPUS + 1), eg 2CPU = 5 workers
73 73 ## The `instance_id = *` must be set in the [app:main] section below
74 74 workers = 2
75 75 ## number of threads for each of the worker, must be set to 1 for gevent
76 76 ## generally recommended to be at 1
77 77 #threads = 1
78 78 ## process name
79 79 proc_name = rhodecode
80 80 ## type of worker class, one of sync, gevent
81 81 ## recommended for bigger setup is using of of other than sync one
82 worker_class = sync
82 worker_class = gevent
83 83 ## The maximum number of simultaneous clients. Valid only for Gevent
84 84 #worker_connections = 10
85 85 ## max number of requests that worker will handle before being gracefully
86 86 ## restarted, could prevent memory leaks
87 87 max_requests = 1000
88 88 max_requests_jitter = 30
89 89 ## amount of time a worker can spend with handling a request before it
90 90 ## gets killed and restarted. Set to 6hrs
91 91 timeout = 21600
92 92
93 93
94 94 ## prefix middleware for RhodeCode.
95 95 ## recommended when using proxy setup.
96 96 ## allows to set RhodeCode under a prefix in server.
97 97 ## eg https://server.com/custom_prefix. Enable `filter-with =` option below as well.
98 98 ## And set your prefix like: `prefix = /custom_prefix`
99 99 ## be sure to also set beaker.session.cookie_path = /custom_prefix if you need
100 100 ## to make your cookies only work on prefix url
101 101 [filter:proxy-prefix]
102 102 use = egg:PasteDeploy#prefix
103 103 prefix = /
104 104
105 105 [app:main]
106 106 use = egg:rhodecode-enterprise-ce
107 107
108 108 ## enable proxy prefix middleware, defined above
109 109 #filter-with = proxy-prefix
110 110
111 111 ## encryption key used to encrypt social plugin tokens,
112 112 ## remote_urls with credentials etc, if not set it defaults to
113 113 ## `beaker.session.secret`
114 114 #rhodecode.encrypted_values.secret =
115 115
116 116 ## decryption strict mode (enabled by default). It controls if decryption raises
117 117 ## `SignatureVerificationError` in case of wrong key, or damaged encryption data.
118 118 #rhodecode.encrypted_values.strict = false
119 119
120 120 ## return gzipped responses from Rhodecode (static files/application)
121 121 gzip_responses = false
122 122
123 123 ## autogenerate javascript routes file on startup
124 124 generate_js_files = false
125 125
126 126 ## Optional Languages
127 127 ## en(default), be, de, es, fr, it, ja, pl, pt, ru, zh
128 128 lang = en
129 129
130 130 ## perform a full repository scan on each server start, this should be
131 131 ## set to false after first startup, to allow faster server restarts.
132 132 startup.import_repos = false
133 133
134 134 ## Uncomment and set this path to use archive download cache.
135 135 ## Once enabled, generated archives will be cached at this location
136 136 ## and served from the cache during subsequent requests for the same archive of
137 137 ## the repository.
138 138 #archive_cache_dir = /tmp/tarballcache
139 139
140 140 ## URL at which the application is running. This is used for bootstraping
141 141 ## requests in context when no web request is available. Used in ishell, or
142 142 ## SSH calls. Set this for events to receive proper url for SSH calls.
143 143 app.base_url = http://rhodecode.local
144 144
145 145 ## change this to unique ID for security
146 146 app_instance_uuid = rc-production
147 147
148 148 ## cut off limit for large diffs (size in bytes). If overall diff size on
149 149 ## commit, or pull request exceeds this limit this diff will be displayed
150 150 ## partially. E.g 512000 == 512Kb
151 151 cut_off_limit_diff = 512000
152 152
153 153 ## cut off limit for large files inside diffs (size in bytes). Each individual
154 154 ## file inside diff which exceeds this limit will be displayed partially.
155 155 ## E.g 128000 == 128Kb
156 156 cut_off_limit_file = 128000
157 157
158 158 ## use cache version of scm repo everywhere
159 159 vcs_full_cache = true
160 160
161 161 ## force https in RhodeCode, fixes https redirects, assumes it's always https
162 162 ## Normally this is controlled by proper http flags sent from http server
163 163 force_https = false
164 164
165 165 ## use Strict-Transport-Security headers
166 166 use_htsts = false
167 167
168 168 ## number of commits stats will parse on each iteration
169 169 commit_parse_limit = 25
170 170
171 171 ## git rev filter option, --all is the default filter, if you need to
172 172 ## hide all refs in changelog switch this to --branches --tags
173 173 git_rev_filter = --branches --tags
174 174
175 175 # Set to true if your repos are exposed using the dumb protocol
176 176 git_update_server_info = false
177 177
178 178 ## RSS/ATOM feed options
179 179 rss_cut_off_limit = 256000
180 180 rss_items_per_page = 10
181 181 rss_include_diff = false
182 182
183 183 ## gist URL alias, used to create nicer urls for gist. This should be an
184 184 ## url that does rewrites to _admin/gists/{gistid}.
185 185 ## example: http://gist.rhodecode.org/{gistid}. Empty means use the internal
186 186 ## RhodeCode url, ie. http[s]://rhodecode.server/_admin/gists/{gistid}
187 187 gist_alias_url =
188 188
189 189 ## List of views (using glob pattern syntax) that AUTH TOKENS could be
190 190 ## used for access.
191 191 ## Adding ?auth_token=TOKEN_HASH to the url authenticates this request as if it
192 192 ## came from the the logged in user who own this authentication token.
193 193 ## Additionally @TOKEN syntaxt can be used to bound the view to specific
194 194 ## authentication token. Such view would be only accessible when used together
195 195 ## with this authentication token
196 196 ##
197 197 ## list of all views can be found under `/_admin/permissions/auth_token_access`
198 198 ## The list should be "," separated and on a single line.
199 199 ##
200 200 ## Most common views to enable:
201 201 # RepoCommitsView:repo_commit_download
202 202 # RepoCommitsView:repo_commit_patch
203 203 # RepoCommitsView:repo_commit_raw
204 204 # RepoCommitsView:repo_commit_raw@TOKEN
205 205 # RepoFilesView:repo_files_diff
206 206 # RepoFilesView:repo_archivefile
207 207 # RepoFilesView:repo_file_raw
208 208 # GistView:*
209 209 api_access_controllers_whitelist =
210 210
211 211 ## default encoding used to convert from and to unicode
212 212 ## can be also a comma separated list of encoding in case of mixed encodings
213 213 default_encoding = UTF-8
214 214
215 215 ## instance-id prefix
216 216 ## a prefix key for this instance used for cache invalidation when running
217 217 ## multiple instances of rhodecode, make sure it's globally unique for
218 218 ## all running rhodecode instances. Leave empty if you don't use it
219 219 instance_id =
220 220
221 221 ## Fallback authentication plugin. Set this to a plugin ID to force the usage
222 222 ## of an authentication plugin also if it is disabled by it's settings.
223 223 ## This could be useful if you are unable to log in to the system due to broken
224 224 ## authentication settings. Then you can enable e.g. the internal rhodecode auth
225 225 ## module to log in again and fix the settings.
226 226 ##
227 227 ## Available builtin plugin IDs (hash is part of the ID):
228 228 ## egg:rhodecode-enterprise-ce#rhodecode
229 229 ## egg:rhodecode-enterprise-ce#pam
230 230 ## egg:rhodecode-enterprise-ce#ldap
231 231 ## egg:rhodecode-enterprise-ce#jasig_cas
232 232 ## egg:rhodecode-enterprise-ce#headers
233 233 ## egg:rhodecode-enterprise-ce#crowd
234 234 #rhodecode.auth_plugin_fallback = egg:rhodecode-enterprise-ce#rhodecode
235 235
236 236 ## alternative return HTTP header for failed authentication. Default HTTP
237 237 ## response is 401 HTTPUnauthorized. Currently HG clients have troubles with
238 238 ## handling that causing a series of failed authentication calls.
239 239 ## Set this variable to 403 to return HTTPForbidden, or any other HTTP code
240 240 ## This will be served instead of default 401 on bad authnetication
241 241 auth_ret_code =
242 242
243 243 ## use special detection method when serving auth_ret_code, instead of serving
244 244 ## ret_code directly, use 401 initially (Which triggers credentials prompt)
245 245 ## and then serve auth_ret_code to clients
246 246 auth_ret_code_detection = false
247 247
248 248 ## locking return code. When repository is locked return this HTTP code. 2XX
249 249 ## codes don't break the transactions while 4XX codes do
250 250 lock_ret_code = 423
251 251
252 252 ## allows to change the repository location in settings page
253 253 allow_repo_location_change = true
254 254
255 255 ## allows to setup custom hooks in settings page
256 256 allow_custom_hooks_settings = true
257 257
258 258 ## generated license token, goto license page in RhodeCode settings to obtain
259 259 ## new token
260 260 license_token =
261 261
262 262 ## supervisor connection uri, for managing supervisor and logs.
263 263 supervisor.uri =
264 264 ## supervisord group name/id we only want this RC instance to handle
265 265 supervisor.group_id = prod
266 266
267 267 ## Display extended labs settings
268 268 labs_settings_active = true
269 269
270 270 ####################################
271 271 ### CELERY CONFIG ####
272 272 ####################################
273 ## run: /path/to/celery worker \
274 ## -E --beat --app rhodecode.lib.celerylib.loader \
275 ## --scheduler rhodecode.lib.celerylib.scheduler.RcScheduler \
276 ## --loglevel DEBUG --ini /path/to/rhodecode.ini
277
273 278 use_celery = false
274 279
275 # connection url to the message broker (default rabbitmq)
280 ## connection url to the message broker (default rabbitmq)
276 281 celery.broker_url = amqp://rabbitmq:qweqwe@localhost:5672/rabbitmqhost
277 282
278 # maximum tasks to execute before worker restart
283 ## maximum tasks to execute before worker restart
279 284 celery.max_tasks_per_child = 100
280 285
281 286 ## tasks will never be sent to the queue, but executed locally instead.
282 287 celery.task_always_eager = false
283 288
284 289 ####################################
285 290 ### BEAKER CACHE ####
286 291 ####################################
287 292 # default cache dir for templates. Putting this into a ramdisk
288 293 ## can boost performance, eg. %(here)s/data_ramdisk
289 294 cache_dir = %(here)s/data
290 295
291 296 ## locking and default file storage for Beaker. Putting this into a ramdisk
292 297 ## can boost performance, eg. %(here)s/data_ramdisk/cache/beaker_data
293 298 beaker.cache.data_dir = %(here)s/data/cache/beaker_data
294 299 beaker.cache.lock_dir = %(here)s/data/cache/beaker_lock
295 300
296 301 beaker.cache.regions = super_short_term, short_term, long_term, sql_cache_short, auth_plugins, repo_cache_long
297 302
298 303 beaker.cache.super_short_term.type = memory
299 304 beaker.cache.super_short_term.expire = 10
300 305 beaker.cache.super_short_term.key_length = 256
301 306
302 307 beaker.cache.short_term.type = memory
303 308 beaker.cache.short_term.expire = 60
304 309 beaker.cache.short_term.key_length = 256
305 310
306 311 beaker.cache.long_term.type = memory
307 312 beaker.cache.long_term.expire = 36000
308 313 beaker.cache.long_term.key_length = 256
309 314
310 315 beaker.cache.sql_cache_short.type = memory
311 316 beaker.cache.sql_cache_short.expire = 10
312 317 beaker.cache.sql_cache_short.key_length = 256
313 318
314 319 ## default is memory cache, configure only if required
315 320 ## using multi-node or multi-worker setup
316 321 #beaker.cache.auth_plugins.type = ext:database
317 322 #beaker.cache.auth_plugins.lock_dir = %(here)s/data/cache/auth_plugin_lock
318 323 #beaker.cache.auth_plugins.url = postgresql://postgres:secret@localhost/rhodecode
319 324 #beaker.cache.auth_plugins.url = mysql://root:secret@127.0.0.1/rhodecode
320 325 #beaker.cache.auth_plugins.sa.pool_recycle = 3600
321 326 #beaker.cache.auth_plugins.sa.pool_size = 10
322 327 #beaker.cache.auth_plugins.sa.max_overflow = 0
323 328
324 329 beaker.cache.repo_cache_long.type = memorylru_base
325 330 beaker.cache.repo_cache_long.max_items = 4096
326 331 beaker.cache.repo_cache_long.expire = 2592000
327 332
328 333 ## default is memorylru_base cache, configure only if required
329 334 ## using multi-node or multi-worker setup
330 335 #beaker.cache.repo_cache_long.type = ext:memcached
331 336 #beaker.cache.repo_cache_long.url = localhost:11211
332 337 #beaker.cache.repo_cache_long.expire = 1209600
333 338 #beaker.cache.repo_cache_long.key_length = 256
334 339
335 340 ####################################
336 341 ### BEAKER SESSION ####
337 342 ####################################
338 343
339 344 ## .session.type is type of storage options for the session, current allowed
340 345 ## types are file, ext:memcached, ext:database, and memory (default).
341 346 beaker.session.type = file
342 347 beaker.session.data_dir = %(here)s/data/sessions/data
343 348
344 349 ## db based session, fast, and allows easy management over logged in users
345 350 #beaker.session.type = ext:database
346 351 #beaker.session.table_name = db_session
347 352 #beaker.session.sa.url = postgresql://postgres:secret@localhost/rhodecode
348 353 #beaker.session.sa.url = mysql://root:secret@127.0.0.1/rhodecode
349 354 #beaker.session.sa.pool_recycle = 3600
350 355 #beaker.session.sa.echo = false
351 356
352 357 beaker.session.key = rhodecode
353 358 beaker.session.secret = production-rc-uytcxaz
354 359 beaker.session.lock_dir = %(here)s/data/sessions/lock
355 360
356 361 ## Secure encrypted cookie. Requires AES and AES python libraries
357 362 ## you must disable beaker.session.secret to use this
358 363 #beaker.session.encrypt_key = key_for_encryption
359 364 #beaker.session.validate_key = validation_key
360 365
361 366 ## sets session as invalid(also logging out user) if it haven not been
362 367 ## accessed for given amount of time in seconds
363 368 beaker.session.timeout = 2592000
364 369 beaker.session.httponly = true
365 370 ## Path to use for the cookie. Set to prefix if you use prefix middleware
366 371 #beaker.session.cookie_path = /custom_prefix
367 372
368 373 ## uncomment for https secure cookie
369 374 beaker.session.secure = false
370 375
371 376 ## auto save the session to not to use .save()
372 377 beaker.session.auto = false
373 378
374 379 ## default cookie expiration time in seconds, set to `true` to set expire
375 380 ## at browser close
376 381 #beaker.session.cookie_expires = 3600
377 382
378 383 ###################################
379 384 ## SEARCH INDEXING CONFIGURATION ##
380 385 ###################################
381 386 ## Full text search indexer is available in rhodecode-tools under
382 387 ## `rhodecode-tools index` command
383 388
384 389 ## WHOOSH Backend, doesn't require additional services to run
385 390 ## it works good with few dozen repos
386 391 search.module = rhodecode.lib.index.whoosh
387 392 search.location = %(here)s/data/index
388 393
389 394 ########################################
390 395 ### CHANNELSTREAM CONFIG ####
391 396 ########################################
392 397 ## channelstream enables persistent connections and live notification
393 398 ## in the system. It's also used by the chat system
394 399 channelstream.enabled = false
395 400
396 401 ## server address for channelstream server on the backend
397 402 channelstream.server = 127.0.0.1:9800
398 403
399 404 ## location of the channelstream server from outside world
400 405 ## use ws:// for http or wss:// for https. This address needs to be handled
401 406 ## by external HTTP server such as Nginx or Apache
402 407 ## see nginx/apache configuration examples in our docs
403 408 channelstream.ws_url = ws://rhodecode.yourserver.com/_channelstream
404 409 channelstream.secret = secret
405 410 channelstream.history.location = %(here)s/channelstream_history
406 411
407 412 ## Internal application path that Javascript uses to connect into.
408 413 ## If you use proxy-prefix the prefix should be added before /_channelstream
409 414 channelstream.proxy_path = /_channelstream
410 415
411 416
412 417 ###################################
413 418 ## APPENLIGHT CONFIG ##
414 419 ###################################
415 420
416 421 ## Appenlight is tailored to work with RhodeCode, see
417 422 ## http://appenlight.com for details how to obtain an account
418 423
419 424 ## appenlight integration enabled
420 425 appenlight = false
421 426
422 427 appenlight.server_url = https://api.appenlight.com
423 428 appenlight.api_key = YOUR_API_KEY
424 429 #appenlight.transport_config = https://api.appenlight.com?threaded=1&timeout=5
425 430
426 431 # used for JS client
427 432 appenlight.api_public_key = YOUR_API_PUBLIC_KEY
428 433
429 434 ## TWEAK AMOUNT OF INFO SENT HERE
430 435
431 436 ## enables 404 error logging (default False)
432 437 appenlight.report_404 = false
433 438
434 439 ## time in seconds after request is considered being slow (default 1)
435 440 appenlight.slow_request_time = 1
436 441
437 442 ## record slow requests in application
438 443 ## (needs to be enabled for slow datastore recording and time tracking)
439 444 appenlight.slow_requests = true
440 445
441 446 ## enable hooking to application loggers
442 447 appenlight.logging = true
443 448
444 449 ## minimum log level for log capture
445 450 appenlight.logging.level = WARNING
446 451
447 452 ## send logs only from erroneous/slow requests
448 453 ## (saves API quota for intensive logging)
449 454 appenlight.logging_on_error = false
450 455
451 456 ## list of additonal keywords that should be grabbed from environ object
452 457 ## can be string with comma separated list of words in lowercase
453 458 ## (by default client will always send following info:
454 459 ## 'REMOTE_USER', 'REMOTE_ADDR', 'SERVER_NAME', 'CONTENT_TYPE' + all keys that
455 460 ## start with HTTP* this list be extended with additional keywords here
456 461 appenlight.environ_keys_whitelist =
457 462
458 463 ## list of keywords that should be blanked from request object
459 464 ## can be string with comma separated list of words in lowercase
460 465 ## (by default client will always blank keys that contain following words
461 466 ## 'password', 'passwd', 'pwd', 'auth_tkt', 'secret', 'csrf'
462 467 ## this list be extended with additional keywords set here
463 468 appenlight.request_keys_blacklist =
464 469
465 470 ## list of namespaces that should be ignores when gathering log entries
466 471 ## can be string with comma separated list of namespaces
467 472 ## (by default the client ignores own entries: appenlight_client.client)
468 473 appenlight.log_namespace_blacklist =
469 474
470 475
471 476 ################################################################################
472 477 ## WARNING: *THE LINE BELOW MUST BE UNCOMMENTED ON A PRODUCTION ENVIRONMENT* ##
473 478 ## Debug mode will enable the interactive debugging tool, allowing ANYONE to ##
474 479 ## execute malicious code after an exception is raised. ##
475 480 ################################################################################
476 481 set debug = false
477 482
478 483
479 484 ###########################################
480 485 ### MAIN RHODECODE DATABASE CONFIG ###
481 486 ###########################################
482 487 #sqlalchemy.db1.url = sqlite:///%(here)s/rhodecode.db?timeout=30
483 488 #sqlalchemy.db1.url = postgresql://postgres:qweqwe@localhost/rhodecode
484 489 #sqlalchemy.db1.url = mysql://root:qweqwe@localhost/rhodecode
485 490 sqlalchemy.db1.url = postgresql://postgres:qweqwe@localhost/rhodecode
486 491
487 492 # see sqlalchemy docs for other advanced settings
488 493
489 494 ## print the sql statements to output
490 495 sqlalchemy.db1.echo = false
491 496 ## recycle the connections after this amount of seconds
492 497 sqlalchemy.db1.pool_recycle = 3600
493 498 sqlalchemy.db1.convert_unicode = true
494 499
495 500 ## the number of connections to keep open inside the connection pool.
496 501 ## 0 indicates no limit
497 502 #sqlalchemy.db1.pool_size = 5
498 503
499 504 ## the number of connections to allow in connection pool "overflow", that is
500 505 ## connections that can be opened above and beyond the pool_size setting,
501 506 ## which defaults to five.
502 507 #sqlalchemy.db1.max_overflow = 10
503 508
504 509
505 510 ##################
506 511 ### VCS CONFIG ###
507 512 ##################
508 513 vcs.server.enable = true
509 514 vcs.server = localhost:9900
510 515
511 516 ## Web server connectivity protocol, responsible for web based VCS operatations
512 517 ## Available protocols are:
513 518 ## `http` - use http-rpc backend (default)
514 519 vcs.server.protocol = http
515 520
516 521 ## Push/Pull operations protocol, available options are:
517 522 ## `http` - use http-rpc backend (default)
518 523 ##
519 524 vcs.scm_app_implementation = http
520 525
521 526 ## Push/Pull operations hooks protocol, available options are:
522 527 ## `http` - use http-rpc backend (default)
523 528 vcs.hooks.protocol = http
524 529
525 530 vcs.server.log_level = info
526 531 ## Start VCSServer with this instance as a subprocess, usefull for development
527 532 vcs.start_server = false
528 533
529 534 ## List of enabled VCS backends, available options are:
530 535 ## `hg` - mercurial
531 536 ## `git` - git
532 537 ## `svn` - subversion
533 538 vcs.backends = hg, git, svn
534 539
535 540 vcs.connection_timeout = 3600
536 541 ## Compatibility version when creating SVN repositories. Defaults to newest version when commented out.
537 542 ## Available options are: pre-1.4-compatible, pre-1.5-compatible, pre-1.6-compatible, pre-1.8-compatible, pre-1.9-compatible
538 543 #vcs.svn.compatible_version = pre-1.8-compatible
539 544
540 545
541 546 ############################################################
542 547 ### Subversion proxy support (mod_dav_svn) ###
543 548 ### Maps RhodeCode repo groups into SVN paths for Apache ###
544 549 ############################################################
545 550 ## Enable or disable the config file generation.
546 551 svn.proxy.generate_config = false
547 552 ## Generate config file with `SVNListParentPath` set to `On`.
548 553 svn.proxy.list_parent_path = true
549 554 ## Set location and file name of generated config file.
550 555 svn.proxy.config_file_path = %(here)s/mod_dav_svn.conf
551 556 ## alternative mod_dav config template. This needs to be a mako template
552 557 #svn.proxy.config_template = ~/.rccontrol/enterprise-1/custom_svn_conf.mako
553 558 ## Used as a prefix to the `Location` block in the generated config file.
554 559 ## In most cases it should be set to `/`.
555 560 svn.proxy.location_root = /
556 561 ## Command to reload the mod dav svn configuration on change.
557 562 ## Example: `/etc/init.d/apache2 reload`
558 563 #svn.proxy.reload_cmd = /etc/init.d/apache2 reload
559 564 ## If the timeout expires before the reload command finishes, the command will
560 565 ## be killed. Setting it to zero means no timeout. Defaults to 10 seconds.
561 566 #svn.proxy.reload_timeout = 10
562 567
563 568 ############################################################
564 569 ### SSH Support Settings ###
565 570 ############################################################
566 571
567 572 ## Defines if a custom authorized_keys file should be created and written on
568 573 ## any change user ssh keys. Setting this to false also disables posibility
569 574 ## of adding SSH keys by users from web interface. Super admins can still
570 575 ## manage SSH Keys.
571 576 ssh.generate_authorized_keyfile = false
572 577
573 578 ## Options for ssh, default is `no-pty,no-port-forwarding,no-X11-forwarding,no-agent-forwarding`
574 579 # ssh.authorized_keys_ssh_opts =
575 580
576 581 ## Path to the authrozied_keys file where the generate entries are placed.
577 582 ## It is possible to have multiple key files specified in `sshd_config` e.g.
578 583 ## AuthorizedKeysFile %h/.ssh/authorized_keys %h/.ssh/authorized_keys_rhodecode
579 584 ssh.authorized_keys_file_path = ~/.ssh/authorized_keys_rhodecode
580 585
581 586 ## Command to execute the SSH wrapper. The binary is available in the
582 587 ## rhodecode installation directory.
583 588 ## e.g ~/.rccontrol/community-1/profile/bin/rc-ssh-wrapper
584 589 ssh.wrapper_cmd = ~/.rccontrol/community-1/rc-ssh-wrapper
585 590
586 591 ## Allow shell when executing the ssh-wrapper command
587 592 ssh.wrapper_cmd_allow_shell = false
588 593
589 594 ## Enables logging, and detailed output send back to the client during SSH
590 595 ## operations. Usefull for debugging, shouldn't be used in production.
591 596 ssh.enable_debug_logging = false
592 597
593 598 ## Paths to binary executable, by default they are the names, but we can
594 599 ## override them if we want to use a custom one
595 600 ssh.executable.hg = ~/.rccontrol/vcsserver-1/profile/bin/hg
596 601 ssh.executable.git = ~/.rccontrol/vcsserver-1/profile/bin/git
597 602 ssh.executable.svn = ~/.rccontrol/vcsserver-1/profile/bin/svnserve
598 603
599 604
600 605 ## Dummy marker to add new entries after.
601 606 ## Add any custom entries below. Please don't remove.
602 607 custom.conf = 1
603 608
604 609
605 610 ################################
606 611 ### LOGGING CONFIGURATION ####
607 612 ################################
608 613 [loggers]
609 614 keys = root, sqlalchemy, beaker, rhodecode, ssh_wrapper, celery
610 615
611 616 [handlers]
612 617 keys = console, console_sql
613 618
614 619 [formatters]
615 620 keys = generic, color_formatter, color_formatter_sql
616 621
617 622 #############
618 623 ## LOGGERS ##
619 624 #############
620 625 [logger_root]
621 626 level = NOTSET
622 627 handlers = console
623 628
624 629 [logger_sqlalchemy]
625 630 level = INFO
626 631 handlers = console_sql
627 632 qualname = sqlalchemy.engine
628 633 propagate = 0
629 634
630 635 [logger_beaker]
631 636 level = DEBUG
632 637 handlers =
633 638 qualname = beaker.container
634 639 propagate = 1
635 640
636 641 [logger_rhodecode]
637 642 level = DEBUG
638 643 handlers =
639 644 qualname = rhodecode
640 645 propagate = 1
641 646
642 647 [logger_ssh_wrapper]
643 648 level = DEBUG
644 649 handlers =
645 650 qualname = ssh_wrapper
646 651 propagate = 1
647 652
648 653 [logger_celery]
649 654 level = DEBUG
650 655 handlers =
651 656 qualname = celery
652 657
653 658
654 659 ##############
655 660 ## HANDLERS ##
656 661 ##############
657 662
658 663 [handler_console]
659 664 class = StreamHandler
660 665 args = (sys.stderr, )
661 666 level = INFO
662 667 formatter = generic
663 668
664 669 [handler_console_sql]
665 670 class = StreamHandler
666 671 args = (sys.stderr, )
667 672 level = WARN
668 673 formatter = generic
669 674
670 675 ################
671 676 ## FORMATTERS ##
672 677 ################
673 678
674 679 [formatter_generic]
675 680 class = rhodecode.lib.logging_formatter.ExceptionAwareFormatter
676 681 format = %(asctime)s.%(msecs)03d %(levelname)-5.5s [%(name)s] %(message)s
677 682 datefmt = %Y-%m-%d %H:%M:%S
678 683
679 684 [formatter_color_formatter]
680 685 class = rhodecode.lib.logging_formatter.ColorFormatter
681 686 format = %(asctime)s.%(msecs)03d %(levelname)-5.5s [%(name)s] %(message)s
682 687 datefmt = %Y-%m-%d %H:%M:%S
683 688
684 689 [formatter_color_formatter_sql]
685 690 class = rhodecode.lib.logging_formatter.ColorFormatterSql
686 691 format = %(asctime)s.%(msecs)03d %(levelname)-5.5s [%(name)s] %(message)s
687 692 datefmt = %Y-%m-%d %H:%M:%S
General Comments 0
You need to be logged in to leave comments. Login now