Show More
@@ -305,7 +305,7 b' file_store.enabled = true' | |||||
305 | file_store.backend = local |
|
305 | file_store.backend = local | |
306 |
|
306 | |||
307 | ; path to store the uploaded binaries |
|
307 | ; path to store the uploaded binaries | |
308 |
file_store.storage_path = |
|
308 | file_store.storage_path = /var/opt/rhodecode_data/file_store | |
309 |
|
309 | |||
310 | ; Uncomment and set this path to control settings for archive download cache. |
|
310 | ; Uncomment and set this path to control settings for archive download cache. | |
311 | ; Generated repo archives will be cached at this location |
|
311 | ; Generated repo archives will be cached at this location | |
@@ -314,7 +314,7 b' file_store.storage_path = %(here)s/data/' | |||||
314 | ; RhodeCode and vcsserver |
|
314 | ; RhodeCode and vcsserver | |
315 |
|
315 | |||
316 | ; Default is $cache_dir/archive_cache if not set |
|
316 | ; Default is $cache_dir/archive_cache if not set | |
317 |
archive_cache.store_dir = |
|
317 | archive_cache.store_dir = /var/opt/rhodecode_data/tarballcache | |
318 |
|
318 | |||
319 | ; The limit in GB sets how much data we cache before recycling last used, defaults to 10 gb |
|
319 | ; The limit in GB sets how much data we cache before recycling last used, defaults to 10 gb | |
320 | archive_cache.cache_size_gb = 10 |
|
320 | archive_cache.cache_size_gb = 10 | |
@@ -328,7 +328,7 b' archive_cache.cache_shards = 10' | |||||
328 |
|
328 | |||
329 | ; manually run celery: /path/to/celery worker --task-events --beat --app rhodecode.lib.celerylib.loader --scheduler rhodecode.lib.celerylib.scheduler.RcScheduler --loglevel DEBUG --ini /path/to/rhodecode.ini |
|
329 | ; manually run celery: /path/to/celery worker --task-events --beat --app rhodecode.lib.celerylib.loader --scheduler rhodecode.lib.celerylib.scheduler.RcScheduler --loglevel DEBUG --ini /path/to/rhodecode.ini | |
330 |
|
330 | |||
331 |
use_celery = |
|
331 | use_celery = true | |
332 |
|
332 | |||
333 | ; path to store schedule database |
|
333 | ; path to store schedule database | |
334 | #celerybeat-schedule.path = |
|
334 | #celerybeat-schedule.path = | |
@@ -354,7 +354,7 b' celery.task_always_eager = false' | |||||
354 |
|
354 | |||
355 | ; Default cache dir for caches. Putting this into a ramdisk can boost performance. |
|
355 | ; Default cache dir for caches. Putting this into a ramdisk can boost performance. | |
356 | ; eg. /tmpfs/data_ramdisk, however this directory might require large amount of space |
|
356 | ; eg. /tmpfs/data_ramdisk, however this directory might require large amount of space | |
357 |
cache_dir = |
|
357 | cache_dir = /var/opt/rhodecode_data | |
358 |
|
358 | |||
359 | ; ********************************************* |
|
359 | ; ********************************************* | |
360 | ; `sql_cache_short` cache for heavy SQL queries |
|
360 | ; `sql_cache_short` cache for heavy SQL queries | |
@@ -463,12 +463,12 b' rc_cache.cache_repo.expiration_time = 25' | |||||
463 | ; beaker.session.type is type of storage options for the logged users sessions. Current allowed |
|
463 | ; beaker.session.type is type of storage options for the logged users sessions. Current allowed | |
464 | ; types are file, ext:redis, ext:database, ext:memcached |
|
464 | ; types are file, ext:redis, ext:database, ext:memcached | |
465 | ; Fastest ones are ext:redis and ext:database, DO NOT use memory type for session |
|
465 | ; Fastest ones are ext:redis and ext:database, DO NOT use memory type for session | |
466 | beaker.session.type = file |
|
466 | #beaker.session.type = file | |
467 | beaker.session.data_dir = %(here)s/data/sessions |
|
467 | #beaker.session.data_dir = %(here)s/data/sessions | |
468 |
|
468 | |||
469 | ; Redis based sessions |
|
469 | ; Redis based sessions | |
470 |
|
|
470 | beaker.session.type = ext:redis | |
471 |
|
|
471 | beaker.session.url = redis://redis:6379/2 | |
472 |
|
472 | |||
473 | ; DB based session, fast, and allows easy management over logged in users |
|
473 | ; DB based session, fast, and allows easy management over logged in users | |
474 | #beaker.session.type = ext:database |
|
474 | #beaker.session.type = ext:database | |
@@ -480,7 +480,7 b' beaker.session.data_dir = %(here)s/data/' | |||||
480 |
|
480 | |||
481 | beaker.session.key = rhodecode |
|
481 | beaker.session.key = rhodecode | |
482 | beaker.session.secret = develop-rc-uytcxaz |
|
482 | beaker.session.secret = develop-rc-uytcxaz | |
483 |
beaker.session.lock_dir = |
|
483 | beaker.session.lock_dir = /data_ramdisk/lock | |
484 |
|
484 | |||
485 | ; Secure encrypted cookie. Requires AES and AES python libraries |
|
485 | ; Secure encrypted cookie. Requires AES and AES python libraries | |
486 | ; you must disable beaker.session.secret to use this |
|
486 | ; you must disable beaker.session.secret to use this | |
@@ -521,18 +521,18 b' search.location = %(here)s/data/index' | |||||
521 | ; channelstream enables persistent connections and live notification |
|
521 | ; channelstream enables persistent connections and live notification | |
522 | ; in the system. It's also used by the chat system |
|
522 | ; in the system. It's also used by the chat system | |
523 |
|
523 | |||
524 |
channelstream.enabled = |
|
524 | channelstream.enabled = true | |
525 |
|
525 | |||
526 | ; server address for channelstream server on the backend |
|
526 | ; server address for channelstream server on the backend | |
527 |
channelstream.server = |
|
527 | channelstream.server = channelstream:9800 | |
528 |
|
528 | |||
529 | ; location of the channelstream server from outside world |
|
529 | ; location of the channelstream server from outside world | |
530 | ; use ws:// for http or wss:// for https. This address needs to be handled |
|
530 | ; use ws:// for http or wss:// for https. This address needs to be handled | |
531 | ; by external HTTP server such as Nginx or Apache |
|
531 | ; by external HTTP server such as Nginx or Apache | |
532 | ; see Nginx/Apache configuration examples in our docs |
|
532 | ; see Nginx/Apache configuration examples in our docs | |
533 | channelstream.ws_url = ws://rhodecode.yourserver.com/_channelstream |
|
533 | channelstream.ws_url = ws://rhodecode.yourserver.com/_channelstream | |
534 |
channelstream.secret = |
|
534 | channelstream.secret = ENV_GENERATED | |
535 |
channelstream.history.location = |
|
535 | channelstream.history.location = /var/opt/rhodecode_data/channelstream_history | |
536 |
|
536 | |||
537 | ; Internal application path that Javascript uses to connect into. |
|
537 | ; Internal application path that Javascript uses to connect into. | |
538 | ; If you use proxy-prefix the prefix should be added before /_channelstream |
|
538 | ; If you use proxy-prefix the prefix should be added before /_channelstream | |
@@ -578,7 +578,7 b' sqlalchemy.db1.pool_recycle = 3600' | |||||
578 | ; VCS CONFIG |
|
578 | ; VCS CONFIG | |
579 | ; ########## |
|
579 | ; ########## | |
580 | vcs.server.enable = true |
|
580 | vcs.server.enable = true | |
581 |
vcs.server = |
|
581 | vcs.server = vcsserver:10010 | |
582 |
|
582 | |||
583 | ; Web server connectivity protocol, responsible for web based VCS operations |
|
583 | ; Web server connectivity protocol, responsible for web based VCS operations | |
584 | ; Available protocols are: |
|
584 | ; Available protocols are: | |
@@ -610,6 +610,15 b' vcs.backends = hg, git, svn' | |||||
610 | ; Wait this number of seconds before killing connection to the vcsserver |
|
610 | ; Wait this number of seconds before killing connection to the vcsserver | |
611 | vcs.connection_timeout = 3600 |
|
611 | vcs.connection_timeout = 3600 | |
612 |
|
612 | |||
|
613 | ; Cache flag to cache vcsserver remote calls locally | |||
|
614 | ; It uses cache_region `cache_repo` | |||
|
615 | vcs.methods.cache = true | |||
|
616 | ||||
|
617 | ; #################################################### | |||
|
618 | ; Subversion proxy support (mod_dav_svn) | |||
|
619 | ; Maps RhodeCode repo groups into SVN paths for Apache | |||
|
620 | ; #################################################### | |||
|
621 | ||||
613 | ; Compatibility version when creating SVN repositories. Defaults to newest version when commented out. |
|
622 | ; Compatibility version when creating SVN repositories. Defaults to newest version when commented out. | |
614 | ; Set a numeric version for your current SVN e.g 1.8, or 1.12 |
|
623 | ; Set a numeric version for your current SVN e.g 1.8, or 1.12 | |
615 | ; Legacy available options are: pre-1.4-compatible, pre-1.5-compatible, pre-1.6-compatible, pre-1.8-compatible, pre-1.9-compatible |
|
624 | ; Legacy available options are: pre-1.4-compatible, pre-1.5-compatible, pre-1.6-compatible, pre-1.8-compatible, pre-1.9-compatible | |
@@ -621,23 +630,14 b' vcs.svn.proxy.enabled = true' | |||||
621 | ; host to connect to running SVN subsystem |
|
630 | ; host to connect to running SVN subsystem | |
622 | vcs.svn.proxy.host = http://svn:8090 |
|
631 | vcs.svn.proxy.host = http://svn:8090 | |
623 |
|
632 | |||
624 | ; Cache flag to cache vcsserver remote calls locally |
|
|||
625 | ; It uses cache_region `cache_repo` |
|
|||
626 | vcs.methods.cache = true |
|
|||
627 |
|
||||
628 | ; #################################################### |
|
|||
629 | ; Subversion proxy support (mod_dav_svn) |
|
|||
630 | ; Maps RhodeCode repo groups into SVN paths for Apache |
|
|||
631 | ; #################################################### |
|
|||
632 |
|
||||
633 | ; Enable or disable the config file generation. |
|
633 | ; Enable or disable the config file generation. | |
634 |
svn.proxy.generate_config = |
|
634 | svn.proxy.generate_config = true | |
635 |
|
635 | |||
636 | ; Generate config file with `SVNListParentPath` set to `On`. |
|
636 | ; Generate config file with `SVNListParentPath` set to `On`. | |
637 | svn.proxy.list_parent_path = true |
|
637 | svn.proxy.list_parent_path = true | |
638 |
|
638 | |||
639 | ; Set location and file name of generated config file. |
|
639 | ; Set location and file name of generated config file. | |
640 |
svn.proxy.config_file_path = |
|
640 | svn.proxy.config_file_path = /etc/rhodecode/conf/svn/mod_dav_svn.conf | |
641 |
|
641 | |||
642 | ; alternative mod_dav config template. This needs to be a valid mako template |
|
642 | ; alternative mod_dav config template. This needs to be a valid mako template | |
643 | ; Example template can be found in the source code: |
|
643 | ; Example template can be found in the source code: | |
@@ -665,7 +665,7 b' svn.proxy.location_root = /' | |||||
665 | ; any change user ssh keys. Setting this to false also disables possibility |
|
665 | ; any change user ssh keys. Setting this to false also disables possibility | |
666 | ; of adding SSH keys by users from web interface. Super admins can still |
|
666 | ; of adding SSH keys by users from web interface. Super admins can still | |
667 | ; manage SSH Keys. |
|
667 | ; manage SSH Keys. | |
668 |
ssh.generate_authorized_keyfile = |
|
668 | ssh.generate_authorized_keyfile = true | |
669 |
|
669 | |||
670 | ; Options for ssh, default is `no-pty,no-port-forwarding,no-X11-forwarding,no-agent-forwarding` |
|
670 | ; Options for ssh, default is `no-pty,no-port-forwarding,no-X11-forwarding,no-agent-forwarding` | |
671 | # ssh.authorized_keys_ssh_opts = |
|
671 | # ssh.authorized_keys_ssh_opts = | |
@@ -673,12 +673,12 b' ssh.generate_authorized_keyfile = false' | |||||
673 | ; Path to the authorized_keys file where the generate entries are placed. |
|
673 | ; Path to the authorized_keys file where the generate entries are placed. | |
674 | ; It is possible to have multiple key files specified in `sshd_config` e.g. |
|
674 | ; It is possible to have multiple key files specified in `sshd_config` e.g. | |
675 | ; AuthorizedKeysFile %h/.ssh/authorized_keys %h/.ssh/authorized_keys_rhodecode |
|
675 | ; AuthorizedKeysFile %h/.ssh/authorized_keys %h/.ssh/authorized_keys_rhodecode | |
676 |
ssh.authorized_keys_file_path = |
|
676 | ssh.authorized_keys_file_path = /etc/rhodecode/conf/ssh/authorized_keys_rhodecode | |
677 |
|
677 | |||
678 | ; Command to execute the SSH wrapper. The binary is available in the |
|
678 | ; Command to execute the SSH wrapper. The binary is available in the | |
679 | ; RhodeCode installation directory. |
|
679 | ; RhodeCode installation directory. | |
680 | ; e.g ~/.rccontrol/community-1/profile/bin/rc-ssh-wrapper |
|
680 | ; e.g /usr/local/bin/rhodecode_bin/bin/rc-ssh-wrapper | |
681 |
ssh.wrapper_cmd = |
|
681 | ssh.wrapper_cmd = /usr/local/bin/rhodecode_bin/bin/rc-ssh-wrapper | |
682 |
|
682 | |||
683 | ; Allow shell when executing the ssh-wrapper command |
|
683 | ; Allow shell when executing the ssh-wrapper command | |
684 | ssh.wrapper_cmd_allow_shell = false |
|
684 | ssh.wrapper_cmd_allow_shell = false | |
@@ -689,73 +689,14 b' ssh.enable_debug_logging = true' | |||||
689 |
|
689 | |||
690 | ; Paths to binary executable, by default they are the names, but we can |
|
690 | ; Paths to binary executable, by default they are the names, but we can | |
691 | ; override them if we want to use a custom one |
|
691 | ; override them if we want to use a custom one | |
692 |
ssh.executable.hg = |
|
692 | ssh.executable.hg = /usr/local/bin/rhodecode_bin/vcs_bin/hg | |
693 |
ssh.executable.git = |
|
693 | ssh.executable.git = /usr/local/bin/rhodecode_bin/vcs_bin/git | |
694 |
ssh.executable.svn = |
|
694 | ssh.executable.svn = /usr/local/bin/rhodecode_bin/vcs_bin/svnserve | |
695 |
|
695 | |||
696 | ; Enables SSH key generator web interface. Disabling this still allows users |
|
696 | ; Enables SSH key generator web interface. Disabling this still allows users | |
697 | ; to add their own keys. |
|
697 | ; to add their own keys. | |
698 | ssh.enable_ui_key_generator = true |
|
698 | ssh.enable_ui_key_generator = true | |
699 |
|
699 | |||
700 |
|
||||
701 | ; ################# |
|
|||
702 | ; APPENLIGHT CONFIG |
|
|||
703 | ; ################# |
|
|||
704 |
|
||||
705 | ; Appenlight is tailored to work with RhodeCode, see |
|
|||
706 | ; http://appenlight.rhodecode.com for details how to obtain an account |
|
|||
707 |
|
||||
708 | ; Appenlight integration enabled |
|
|||
709 | #appenlight = false |
|
|||
710 |
|
||||
711 | #appenlight.server_url = https://api.appenlight.com |
|
|||
712 | #appenlight.api_key = YOUR_API_KEY |
|
|||
713 | #appenlight.transport_config = https://api.appenlight.com?threaded=1&timeout=5 |
|
|||
714 |
|
||||
715 | ; used for JS client |
|
|||
716 | #appenlight.api_public_key = YOUR_API_PUBLIC_KEY |
|
|||
717 |
|
||||
718 | ; TWEAK AMOUNT OF INFO SENT HERE |
|
|||
719 |
|
||||
720 | ; enables 404 error logging (default False) |
|
|||
721 | #appenlight.report_404 = false |
|
|||
722 |
|
||||
723 | ; time in seconds after request is considered being slow (default 1) |
|
|||
724 | #appenlight.slow_request_time = 1 |
|
|||
725 |
|
||||
726 | ; record slow requests in application |
|
|||
727 | ; (needs to be enabled for slow datastore recording and time tracking) |
|
|||
728 | #appenlight.slow_requests = true |
|
|||
729 |
|
||||
730 | ; enable hooking to application loggers |
|
|||
731 | #appenlight.logging = true |
|
|||
732 |
|
||||
733 | ; minimum log level for log capture |
|
|||
734 | #ppenlight.logging.level = WARNING |
|
|||
735 |
|
||||
736 | ; send logs only from erroneous/slow requests |
|
|||
737 | ; (saves API quota for intensive logging) |
|
|||
738 | #appenlight.logging_on_error = false |
|
|||
739 |
|
||||
740 | ; list of additional keywords that should be grabbed from environ object |
|
|||
741 | ; can be string with comma separated list of words in lowercase |
|
|||
742 | ; (by default client will always send following info: |
|
|||
743 | ; 'REMOTE_USER', 'REMOTE_ADDR', 'SERVER_NAME', 'CONTENT_TYPE' + all keys that |
|
|||
744 | ; start with HTTP* this list be extended with additional keywords here |
|
|||
745 | #appenlight.environ_keys_whitelist = |
|
|||
746 |
|
||||
747 | ; list of keywords that should be blanked from request object |
|
|||
748 | ; can be string with comma separated list of words in lowercase |
|
|||
749 | ; (by default client will always blank keys that contain following words |
|
|||
750 | ; 'password', 'passwd', 'pwd', 'auth_tkt', 'secret', 'csrf' |
|
|||
751 | ; this list be extended with additional keywords set here |
|
|||
752 | #appenlight.request_keys_blacklist = |
|
|||
753 |
|
||||
754 | ; list of namespaces that should be ignores when gathering log entries |
|
|||
755 | ; can be string with comma separated list of namespaces |
|
|||
756 | ; (by default the client ignores own entries: appenlight_client.client) |
|
|||
757 | #appenlight.log_namespace_blacklist = |
|
|||
758 |
|
||||
759 | ; Statsd client config, this is used to send metrics to statsd |
|
700 | ; Statsd client config, this is used to send metrics to statsd | |
760 | ; We recommend setting statsd_exported and scrape them using Prometheus |
|
701 | ; We recommend setting statsd_exported and scrape them using Prometheus | |
761 | #statsd.enabled = false |
|
702 | #statsd.enabled = false |
@@ -256,7 +256,7 b' file_store.enabled = true' | |||||
256 | file_store.backend = local |
|
256 | file_store.backend = local | |
257 |
|
257 | |||
258 | ; path to store the uploaded binaries |
|
258 | ; path to store the uploaded binaries | |
259 |
file_store.storage_path = |
|
259 | file_store.storage_path = /var/opt/rhodecode_data/file_store | |
260 |
|
260 | |||
261 | ; Uncomment and set this path to control settings for archive download cache. |
|
261 | ; Uncomment and set this path to control settings for archive download cache. | |
262 | ; Generated repo archives will be cached at this location |
|
262 | ; Generated repo archives will be cached at this location | |
@@ -265,7 +265,7 b' file_store.storage_path = %(here)s/data/' | |||||
265 | ; RhodeCode and vcsserver |
|
265 | ; RhodeCode and vcsserver | |
266 |
|
266 | |||
267 | ; Default is $cache_dir/archive_cache if not set |
|
267 | ; Default is $cache_dir/archive_cache if not set | |
268 |
archive_cache.store_dir = |
|
268 | archive_cache.store_dir = /var/opt/rhodecode_data/tarballcache | |
269 |
|
269 | |||
270 | ; The limit in GB sets how much data we cache before recycling last used, defaults to 10 gb |
|
270 | ; The limit in GB sets how much data we cache before recycling last used, defaults to 10 gb | |
271 | archive_cache.cache_size_gb = 40 |
|
271 | archive_cache.cache_size_gb = 40 | |
@@ -279,7 +279,7 b' archive_cache.cache_shards = 4' | |||||
279 |
|
279 | |||
280 | ; manually run celery: /path/to/celery worker --task-events --beat --app rhodecode.lib.celerylib.loader --scheduler rhodecode.lib.celerylib.scheduler.RcScheduler --loglevel DEBUG --ini /path/to/rhodecode.ini |
|
280 | ; manually run celery: /path/to/celery worker --task-events --beat --app rhodecode.lib.celerylib.loader --scheduler rhodecode.lib.celerylib.scheduler.RcScheduler --loglevel DEBUG --ini /path/to/rhodecode.ini | |
281 |
|
281 | |||
282 |
use_celery = |
|
282 | use_celery = true | |
283 |
|
283 | |||
284 | ; path to store schedule database |
|
284 | ; path to store schedule database | |
285 | #celerybeat-schedule.path = |
|
285 | #celerybeat-schedule.path = | |
@@ -305,7 +305,7 b' celery.task_always_eager = false' | |||||
305 |
|
305 | |||
306 | ; Default cache dir for caches. Putting this into a ramdisk can boost performance. |
|
306 | ; Default cache dir for caches. Putting this into a ramdisk can boost performance. | |
307 | ; eg. /tmpfs/data_ramdisk, however this directory might require large amount of space |
|
307 | ; eg. /tmpfs/data_ramdisk, however this directory might require large amount of space | |
308 |
cache_dir = |
|
308 | cache_dir = /var/opt/rhodecode_data | |
309 |
|
309 | |||
310 | ; ********************************************* |
|
310 | ; ********************************************* | |
311 | ; `sql_cache_short` cache for heavy SQL queries |
|
311 | ; `sql_cache_short` cache for heavy SQL queries | |
@@ -414,12 +414,12 b' rc_cache.cache_repo.expiration_time = 25' | |||||
414 | ; beaker.session.type is type of storage options for the logged users sessions. Current allowed |
|
414 | ; beaker.session.type is type of storage options for the logged users sessions. Current allowed | |
415 | ; types are file, ext:redis, ext:database, ext:memcached |
|
415 | ; types are file, ext:redis, ext:database, ext:memcached | |
416 | ; Fastest ones are ext:redis and ext:database, DO NOT use memory type for session |
|
416 | ; Fastest ones are ext:redis and ext:database, DO NOT use memory type for session | |
417 | beaker.session.type = file |
|
417 | #beaker.session.type = file | |
418 | beaker.session.data_dir = %(here)s/data/sessions |
|
418 | #beaker.session.data_dir = %(here)s/data/sessions | |
419 |
|
419 | |||
420 | ; Redis based sessions |
|
420 | ; Redis based sessions | |
421 |
|
|
421 | beaker.session.type = ext:redis | |
422 |
|
|
422 | beaker.session.url = redis://redis:6379/2 | |
423 |
|
423 | |||
424 | ; DB based session, fast, and allows easy management over logged in users |
|
424 | ; DB based session, fast, and allows easy management over logged in users | |
425 | #beaker.session.type = ext:database |
|
425 | #beaker.session.type = ext:database | |
@@ -431,7 +431,7 b' beaker.session.data_dir = %(here)s/data/' | |||||
431 |
|
431 | |||
432 | beaker.session.key = rhodecode |
|
432 | beaker.session.key = rhodecode | |
433 | beaker.session.secret = production-rc-uytcxaz |
|
433 | beaker.session.secret = production-rc-uytcxaz | |
434 |
beaker.session.lock_dir = |
|
434 | beaker.session.lock_dir = /data_ramdisk/lock | |
435 |
|
435 | |||
436 | ; Secure encrypted cookie. Requires AES and AES python libraries |
|
436 | ; Secure encrypted cookie. Requires AES and AES python libraries | |
437 | ; you must disable beaker.session.secret to use this |
|
437 | ; you must disable beaker.session.secret to use this | |
@@ -472,18 +472,18 b' search.location = %(here)s/data/index' | |||||
472 | ; channelstream enables persistent connections and live notification |
|
472 | ; channelstream enables persistent connections and live notification | |
473 | ; in the system. It's also used by the chat system |
|
473 | ; in the system. It's also used by the chat system | |
474 |
|
474 | |||
475 |
channelstream.enabled = |
|
475 | channelstream.enabled = true | |
476 |
|
476 | |||
477 | ; server address for channelstream server on the backend |
|
477 | ; server address for channelstream server on the backend | |
478 |
channelstream.server = |
|
478 | channelstream.server = channelstream:9800 | |
479 |
|
479 | |||
480 | ; location of the channelstream server from outside world |
|
480 | ; location of the channelstream server from outside world | |
481 | ; use ws:// for http or wss:// for https. This address needs to be handled |
|
481 | ; use ws:// for http or wss:// for https. This address needs to be handled | |
482 | ; by external HTTP server such as Nginx or Apache |
|
482 | ; by external HTTP server such as Nginx or Apache | |
483 | ; see Nginx/Apache configuration examples in our docs |
|
483 | ; see Nginx/Apache configuration examples in our docs | |
484 | channelstream.ws_url = ws://rhodecode.yourserver.com/_channelstream |
|
484 | channelstream.ws_url = ws://rhodecode.yourserver.com/_channelstream | |
485 |
channelstream.secret = |
|
485 | channelstream.secret = ENV_GENERATED | |
486 |
channelstream.history.location = |
|
486 | channelstream.history.location = /var/opt/rhodecode_data/channelstream_history | |
487 |
|
487 | |||
488 | ; Internal application path that Javascript uses to connect into. |
|
488 | ; Internal application path that Javascript uses to connect into. | |
489 | ; If you use proxy-prefix the prefix should be added before /_channelstream |
|
489 | ; If you use proxy-prefix the prefix should be added before /_channelstream | |
@@ -529,7 +529,7 b' sqlalchemy.db1.pool_recycle = 3600' | |||||
529 | ; VCS CONFIG |
|
529 | ; VCS CONFIG | |
530 | ; ########## |
|
530 | ; ########## | |
531 | vcs.server.enable = true |
|
531 | vcs.server.enable = true | |
532 |
vcs.server = |
|
532 | vcs.server = vcsserver:10010 | |
533 |
|
533 | |||
534 | ; Web server connectivity protocol, responsible for web based VCS operations |
|
534 | ; Web server connectivity protocol, responsible for web based VCS operations | |
535 | ; Available protocols are: |
|
535 | ; Available protocols are: | |
@@ -561,6 +561,15 b' vcs.backends = hg, git, svn' | |||||
561 | ; Wait this number of seconds before killing connection to the vcsserver |
|
561 | ; Wait this number of seconds before killing connection to the vcsserver | |
562 | vcs.connection_timeout = 3600 |
|
562 | vcs.connection_timeout = 3600 | |
563 |
|
563 | |||
|
564 | ; Cache flag to cache vcsserver remote calls locally | |||
|
565 | ; It uses cache_region `cache_repo` | |||
|
566 | vcs.methods.cache = true | |||
|
567 | ||||
|
568 | ; #################################################### | |||
|
569 | ; Subversion proxy support (mod_dav_svn) | |||
|
570 | ; Maps RhodeCode repo groups into SVN paths for Apache | |||
|
571 | ; #################################################### | |||
|
572 | ||||
564 | ; Compatibility version when creating SVN repositories. Defaults to newest version when commented out. |
|
573 | ; Compatibility version when creating SVN repositories. Defaults to newest version when commented out. | |
565 | ; Set a numeric version for your current SVN e.g 1.8, or 1.12 |
|
574 | ; Set a numeric version for your current SVN e.g 1.8, or 1.12 | |
566 | ; Legacy available options are: pre-1.4-compatible, pre-1.5-compatible, pre-1.6-compatible, pre-1.8-compatible, pre-1.9-compatible |
|
575 | ; Legacy available options are: pre-1.4-compatible, pre-1.5-compatible, pre-1.6-compatible, pre-1.8-compatible, pre-1.9-compatible | |
@@ -572,23 +581,14 b' vcs.svn.proxy.enabled = true' | |||||
572 | ; host to connect to running SVN subsystem |
|
581 | ; host to connect to running SVN subsystem | |
573 | vcs.svn.proxy.host = http://svn:8090 |
|
582 | vcs.svn.proxy.host = http://svn:8090 | |
574 |
|
583 | |||
575 | ; Cache flag to cache vcsserver remote calls locally |
|
|||
576 | ; It uses cache_region `cache_repo` |
|
|||
577 | vcs.methods.cache = true |
|
|||
578 |
|
||||
579 | ; #################################################### |
|
|||
580 | ; Subversion proxy support (mod_dav_svn) |
|
|||
581 | ; Maps RhodeCode repo groups into SVN paths for Apache |
|
|||
582 | ; #################################################### |
|
|||
583 |
|
||||
584 | ; Enable or disable the config file generation. |
|
584 | ; Enable or disable the config file generation. | |
585 |
svn.proxy.generate_config = |
|
585 | svn.proxy.generate_config = true | |
586 |
|
586 | |||
587 | ; Generate config file with `SVNListParentPath` set to `On`. |
|
587 | ; Generate config file with `SVNListParentPath` set to `On`. | |
588 | svn.proxy.list_parent_path = true |
|
588 | svn.proxy.list_parent_path = true | |
589 |
|
589 | |||
590 | ; Set location and file name of generated config file. |
|
590 | ; Set location and file name of generated config file. | |
591 |
svn.proxy.config_file_path = |
|
591 | svn.proxy.config_file_path = /etc/rhodecode/conf/svn/mod_dav_svn.conf | |
592 |
|
592 | |||
593 | ; alternative mod_dav config template. This needs to be a valid mako template |
|
593 | ; alternative mod_dav config template. This needs to be a valid mako template | |
594 | ; Example template can be found in the source code: |
|
594 | ; Example template can be found in the source code: | |
@@ -616,7 +616,7 b' svn.proxy.location_root = /' | |||||
616 | ; any change user ssh keys. Setting this to false also disables possibility |
|
616 | ; any change user ssh keys. Setting this to false also disables possibility | |
617 | ; of adding SSH keys by users from web interface. Super admins can still |
|
617 | ; of adding SSH keys by users from web interface. Super admins can still | |
618 | ; manage SSH Keys. |
|
618 | ; manage SSH Keys. | |
619 |
ssh.generate_authorized_keyfile = |
|
619 | ssh.generate_authorized_keyfile = true | |
620 |
|
620 | |||
621 | ; Options for ssh, default is `no-pty,no-port-forwarding,no-X11-forwarding,no-agent-forwarding` |
|
621 | ; Options for ssh, default is `no-pty,no-port-forwarding,no-X11-forwarding,no-agent-forwarding` | |
622 | # ssh.authorized_keys_ssh_opts = |
|
622 | # ssh.authorized_keys_ssh_opts = | |
@@ -624,12 +624,12 b' ssh.generate_authorized_keyfile = false' | |||||
624 | ; Path to the authorized_keys file where the generate entries are placed. |
|
624 | ; Path to the authorized_keys file where the generate entries are placed. | |
625 | ; It is possible to have multiple key files specified in `sshd_config` e.g. |
|
625 | ; It is possible to have multiple key files specified in `sshd_config` e.g. | |
626 | ; AuthorizedKeysFile %h/.ssh/authorized_keys %h/.ssh/authorized_keys_rhodecode |
|
626 | ; AuthorizedKeysFile %h/.ssh/authorized_keys %h/.ssh/authorized_keys_rhodecode | |
627 |
ssh.authorized_keys_file_path = |
|
627 | ssh.authorized_keys_file_path = /etc/rhodecode/conf/ssh/authorized_keys_rhodecode | |
628 |
|
628 | |||
629 | ; Command to execute the SSH wrapper. The binary is available in the |
|
629 | ; Command to execute the SSH wrapper. The binary is available in the | |
630 | ; RhodeCode installation directory. |
|
630 | ; RhodeCode installation directory. | |
631 | ; e.g ~/.rccontrol/community-1/profile/bin/rc-ssh-wrapper |
|
631 | ; e.g /usr/local/bin/rhodecode_bin/bin/rc-ssh-wrapper | |
632 |
ssh.wrapper_cmd = |
|
632 | ssh.wrapper_cmd = /usr/local/bin/rhodecode_bin/bin/rc-ssh-wrapper | |
633 |
|
633 | |||
634 | ; Allow shell when executing the ssh-wrapper command |
|
634 | ; Allow shell when executing the ssh-wrapper command | |
635 | ssh.wrapper_cmd_allow_shell = false |
|
635 | ssh.wrapper_cmd_allow_shell = false | |
@@ -640,73 +640,14 b' ssh.enable_debug_logging = false' | |||||
640 |
|
640 | |||
641 | ; Paths to binary executable, by default they are the names, but we can |
|
641 | ; Paths to binary executable, by default they are the names, but we can | |
642 | ; override them if we want to use a custom one |
|
642 | ; override them if we want to use a custom one | |
643 |
ssh.executable.hg = |
|
643 | ssh.executable.hg = /usr/local/bin/rhodecode_bin/vcs_bin/hg | |
644 |
ssh.executable.git = |
|
644 | ssh.executable.git = /usr/local/bin/rhodecode_bin/vcs_bin/git | |
645 |
ssh.executable.svn = |
|
645 | ssh.executable.svn = /usr/local/bin/rhodecode_bin/vcs_bin/svnserve | |
646 |
|
646 | |||
647 | ; Enables SSH key generator web interface. Disabling this still allows users |
|
647 | ; Enables SSH key generator web interface. Disabling this still allows users | |
648 | ; to add their own keys. |
|
648 | ; to add their own keys. | |
649 | ssh.enable_ui_key_generator = true |
|
649 | ssh.enable_ui_key_generator = true | |
650 |
|
650 | |||
651 |
|
||||
652 | ; ################# |
|
|||
653 | ; APPENLIGHT CONFIG |
|
|||
654 | ; ################# |
|
|||
655 |
|
||||
656 | ; Appenlight is tailored to work with RhodeCode, see |
|
|||
657 | ; http://appenlight.rhodecode.com for details how to obtain an account |
|
|||
658 |
|
||||
659 | ; Appenlight integration enabled |
|
|||
660 | #appenlight = false |
|
|||
661 |
|
||||
662 | #appenlight.server_url = https://api.appenlight.com |
|
|||
663 | #appenlight.api_key = YOUR_API_KEY |
|
|||
664 | #appenlight.transport_config = https://api.appenlight.com?threaded=1&timeout=5 |
|
|||
665 |
|
||||
666 | ; used for JS client |
|
|||
667 | #appenlight.api_public_key = YOUR_API_PUBLIC_KEY |
|
|||
668 |
|
||||
669 | ; TWEAK AMOUNT OF INFO SENT HERE |
|
|||
670 |
|
||||
671 | ; enables 404 error logging (default False) |
|
|||
672 | #appenlight.report_404 = false |
|
|||
673 |
|
||||
674 | ; time in seconds after request is considered being slow (default 1) |
|
|||
675 | #appenlight.slow_request_time = 1 |
|
|||
676 |
|
||||
677 | ; record slow requests in application |
|
|||
678 | ; (needs to be enabled for slow datastore recording and time tracking) |
|
|||
679 | #appenlight.slow_requests = true |
|
|||
680 |
|
||||
681 | ; enable hooking to application loggers |
|
|||
682 | #appenlight.logging = true |
|
|||
683 |
|
||||
684 | ; minimum log level for log capture |
|
|||
685 | #ppenlight.logging.level = WARNING |
|
|||
686 |
|
||||
687 | ; send logs only from erroneous/slow requests |
|
|||
688 | ; (saves API quota for intensive logging) |
|
|||
689 | #appenlight.logging_on_error = false |
|
|||
690 |
|
||||
691 | ; list of additional keywords that should be grabbed from environ object |
|
|||
692 | ; can be string with comma separated list of words in lowercase |
|
|||
693 | ; (by default client will always send following info: |
|
|||
694 | ; 'REMOTE_USER', 'REMOTE_ADDR', 'SERVER_NAME', 'CONTENT_TYPE' + all keys that |
|
|||
695 | ; start with HTTP* this list be extended with additional keywords here |
|
|||
696 | #appenlight.environ_keys_whitelist = |
|
|||
697 |
|
||||
698 | ; list of keywords that should be blanked from request object |
|
|||
699 | ; can be string with comma separated list of words in lowercase |
|
|||
700 | ; (by default client will always blank keys that contain following words |
|
|||
701 | ; 'password', 'passwd', 'pwd', 'auth_tkt', 'secret', 'csrf' |
|
|||
702 | ; this list be extended with additional keywords set here |
|
|||
703 | #appenlight.request_keys_blacklist = |
|
|||
704 |
|
||||
705 | ; list of namespaces that should be ignores when gathering log entries |
|
|||
706 | ; can be string with comma separated list of namespaces |
|
|||
707 | ; (by default the client ignores own entries: appenlight_client.client) |
|
|||
708 | #appenlight.log_namespace_blacklist = |
|
|||
709 |
|
||||
710 | ; Statsd client config, this is used to send metrics to statsd |
|
651 | ; Statsd client config, this is used to send metrics to statsd | |
711 | ; We recommend setting statsd_exported and scrape them using Prometheus |
|
652 | ; We recommend setting statsd_exported and scrape them using Prometheus | |
712 | #statsd.enabled = false |
|
653 | #statsd.enabled = false |
General Comments 0
You need to be logged in to leave comments.
Login now