##// END OF EJS Templates
Issue #5536 - ability to disable server-side SSH key generation...
csalgau -
r3478:6cd9b768 default
parent child
Show More
<
@@ -1,725 +1,729
1
1
2
2
3 ################################################################################
3 ################################################################################
4 ## RHODECODE COMMUNITY EDITION CONFIGURATION ##
4 ## RHODECODE COMMUNITY EDITION CONFIGURATION ##
5 ################################################################################
5 ################################################################################
6
6
7 [DEFAULT]
7 [DEFAULT]
8 ## Debug flag sets all loggers to debug, and enables request tracking
8 ## Debug flag sets all loggers to debug, and enables request tracking
9 debug = true
9 debug = true
10
10
11 ################################################################################
11 ################################################################################
12 ## EMAIL CONFIGURATION ##
12 ## EMAIL CONFIGURATION ##
13 ## Uncomment and replace with the email address which should receive ##
13 ## Uncomment and replace with the email address which should receive ##
14 ## any error reports after an application crash ##
14 ## any error reports after an application crash ##
15 ## Additionally these settings will be used by the RhodeCode mailing system ##
15 ## Additionally these settings will be used by the RhodeCode mailing system ##
16 ################################################################################
16 ################################################################################
17
17
18 ## prefix all emails subjects with given prefix, helps filtering out emails
18 ## prefix all emails subjects with given prefix, helps filtering out emails
19 #email_prefix = [RhodeCode]
19 #email_prefix = [RhodeCode]
20
20
21 ## email FROM address all mails will be sent
21 ## email FROM address all mails will be sent
22 #app_email_from = rhodecode-noreply@localhost
22 #app_email_from = rhodecode-noreply@localhost
23
23
24 #smtp_server = mail.server.com
24 #smtp_server = mail.server.com
25 #smtp_username =
25 #smtp_username =
26 #smtp_password =
26 #smtp_password =
27 #smtp_port =
27 #smtp_port =
28 #smtp_use_tls = false
28 #smtp_use_tls = false
29 #smtp_use_ssl = true
29 #smtp_use_ssl = true
30
30
31 [server:main]
31 [server:main]
32 ## COMMON ##
32 ## COMMON ##
33 host = 127.0.0.1
33 host = 127.0.0.1
34 port = 5000
34 port = 5000
35
35
36 ###########################################################
36 ###########################################################
37 ## WAITRESS WSGI SERVER - Recommended for Development ####
37 ## WAITRESS WSGI SERVER - Recommended for Development ####
38 ###########################################################
38 ###########################################################
39
39
40 use = egg:waitress#main
40 use = egg:waitress#main
41 ## number of worker threads
41 ## number of worker threads
42 threads = 5
42 threads = 5
43 ## MAX BODY SIZE 100GB
43 ## MAX BODY SIZE 100GB
44 max_request_body_size = 107374182400
44 max_request_body_size = 107374182400
45 ## Use poll instead of select, fixes file descriptors limits problems.
45 ## Use poll instead of select, fixes file descriptors limits problems.
46 ## May not work on old windows systems.
46 ## May not work on old windows systems.
47 asyncore_use_poll = true
47 asyncore_use_poll = true
48
48
49
49
50 ##########################
50 ##########################
51 ## GUNICORN WSGI SERVER ##
51 ## GUNICORN WSGI SERVER ##
52 ##########################
52 ##########################
53 ## run with gunicorn --log-config rhodecode.ini --paste rhodecode.ini
53 ## run with gunicorn --log-config rhodecode.ini --paste rhodecode.ini
54
54
55 #use = egg:gunicorn#main
55 #use = egg:gunicorn#main
56 ## Sets the number of process workers. More workers means more concurent connections
56 ## Sets the number of process workers. More workers means more concurent connections
57 ## RhodeCode can handle at the same time. Each additional worker also it increases
57 ## RhodeCode can handle at the same time. Each additional worker also it increases
58 ## memory usage as each has it's own set of caches.
58 ## memory usage as each has it's own set of caches.
59 ## Recommended value is (2 * NUMBER_OF_CPUS + 1), eg 2CPU = 5 workers, but no more
59 ## Recommended value is (2 * NUMBER_OF_CPUS + 1), eg 2CPU = 5 workers, but no more
60 ## than 8-10 unless for really big deployments .e.g 700-1000 users.
60 ## than 8-10 unless for really big deployments .e.g 700-1000 users.
61 ## `instance_id = *` must be set in the [app:main] section below (which is the default)
61 ## `instance_id = *` must be set in the [app:main] section below (which is the default)
62 ## when using more than 1 worker.
62 ## when using more than 1 worker.
63 #workers = 2
63 #workers = 2
64 ## process name visible in process list
64 ## process name visible in process list
65 #proc_name = rhodecode
65 #proc_name = rhodecode
66 ## type of worker class, one of sync, gevent
66 ## type of worker class, one of sync, gevent
67 ## recommended for bigger setup is using of of other than sync one
67 ## recommended for bigger setup is using of of other than sync one
68 #worker_class = gevent
68 #worker_class = gevent
69 ## The maximum number of simultaneous clients. Valid only for Gevent
69 ## The maximum number of simultaneous clients. Valid only for Gevent
70 #worker_connections = 10
70 #worker_connections = 10
71 ## max number of requests that worker will handle before being gracefully
71 ## max number of requests that worker will handle before being gracefully
72 ## restarted, could prevent memory leaks
72 ## restarted, could prevent memory leaks
73 #max_requests = 1000
73 #max_requests = 1000
74 #max_requests_jitter = 30
74 #max_requests_jitter = 30
75 ## amount of time a worker can spend with handling a request before it
75 ## amount of time a worker can spend with handling a request before it
76 ## gets killed and restarted. Set to 6hrs
76 ## gets killed and restarted. Set to 6hrs
77 #timeout = 21600
77 #timeout = 21600
78
78
79
79
80 ## prefix middleware for RhodeCode.
80 ## prefix middleware for RhodeCode.
81 ## recommended when using proxy setup.
81 ## recommended when using proxy setup.
82 ## allows to set RhodeCode under a prefix in server.
82 ## allows to set RhodeCode under a prefix in server.
83 ## eg https://server.com/custom_prefix. Enable `filter-with =` option below as well.
83 ## eg https://server.com/custom_prefix. Enable `filter-with =` option below as well.
84 ## And set your prefix like: `prefix = /custom_prefix`
84 ## And set your prefix like: `prefix = /custom_prefix`
85 ## be sure to also set beaker.session.cookie_path = /custom_prefix if you need
85 ## be sure to also set beaker.session.cookie_path = /custom_prefix if you need
86 ## to make your cookies only work on prefix url
86 ## to make your cookies only work on prefix url
87 [filter:proxy-prefix]
87 [filter:proxy-prefix]
88 use = egg:PasteDeploy#prefix
88 use = egg:PasteDeploy#prefix
89 prefix = /
89 prefix = /
90
90
91 [app:main]
91 [app:main]
92 ## The %(here)s variable will be replaced with the absolute path of parent directory
92 ## The %(here)s variable will be replaced with the absolute path of parent directory
93 ## of this file
93 ## of this file
94 ## In addition ENVIRONMENT variables usage is possible, e.g
94 ## In addition ENVIRONMENT variables usage is possible, e.g
95 ## sqlalchemy.db1.url = {ENV_RC_DB_URL}
95 ## sqlalchemy.db1.url = {ENV_RC_DB_URL}
96
96
97 use = egg:rhodecode-enterprise-ce
97 use = egg:rhodecode-enterprise-ce
98
98
99 ## enable proxy prefix middleware, defined above
99 ## enable proxy prefix middleware, defined above
100 #filter-with = proxy-prefix
100 #filter-with = proxy-prefix
101
101
102 # During development the we want to have the debug toolbar enabled
102 # During development the we want to have the debug toolbar enabled
103 pyramid.includes =
103 pyramid.includes =
104 pyramid_debugtoolbar
104 pyramid_debugtoolbar
105 rhodecode.lib.middleware.request_wrapper
105 rhodecode.lib.middleware.request_wrapper
106
106
107 pyramid.reload_templates = true
107 pyramid.reload_templates = true
108
108
109 debugtoolbar.hosts = 0.0.0.0/0
109 debugtoolbar.hosts = 0.0.0.0/0
110 debugtoolbar.exclude_prefixes =
110 debugtoolbar.exclude_prefixes =
111 /css
111 /css
112 /fonts
112 /fonts
113 /images
113 /images
114 /js
114 /js
115
115
116 ## RHODECODE PLUGINS ##
116 ## RHODECODE PLUGINS ##
117 rhodecode.includes =
117 rhodecode.includes =
118 rhodecode.api
118 rhodecode.api
119
119
120
120
121 # api prefix url
121 # api prefix url
122 rhodecode.api.url = /_admin/api
122 rhodecode.api.url = /_admin/api
123
123
124
124
125 ## END RHODECODE PLUGINS ##
125 ## END RHODECODE PLUGINS ##
126
126
127 ## encryption key used to encrypt social plugin tokens,
127 ## encryption key used to encrypt social plugin tokens,
128 ## remote_urls with credentials etc, if not set it defaults to
128 ## remote_urls with credentials etc, if not set it defaults to
129 ## `beaker.session.secret`
129 ## `beaker.session.secret`
130 #rhodecode.encrypted_values.secret =
130 #rhodecode.encrypted_values.secret =
131
131
132 ## decryption strict mode (enabled by default). It controls if decryption raises
132 ## decryption strict mode (enabled by default). It controls if decryption raises
133 ## `SignatureVerificationError` in case of wrong key, or damaged encryption data.
133 ## `SignatureVerificationError` in case of wrong key, or damaged encryption data.
134 #rhodecode.encrypted_values.strict = false
134 #rhodecode.encrypted_values.strict = false
135
135
136 ## return gzipped responses from Rhodecode (static files/application)
136 ## return gzipped responses from Rhodecode (static files/application)
137 gzip_responses = false
137 gzip_responses = false
138
138
139 ## autogenerate javascript routes file on startup
139 ## autogenerate javascript routes file on startup
140 generate_js_files = false
140 generate_js_files = false
141
141
142 ## System global default language.
142 ## System global default language.
143 ## All available languages: en(default), be, de, es, fr, it, ja, pl, pt, ru, zh
143 ## All available languages: en(default), be, de, es, fr, it, ja, pl, pt, ru, zh
144 lang = en
144 lang = en
145
145
146 ## Perform a full repository scan and import on each server start.
146 ## Perform a full repository scan and import on each server start.
147 ## Settings this to true could lead to very long startup time.
147 ## Settings this to true could lead to very long startup time.
148 startup.import_repos = false
148 startup.import_repos = false
149
149
150 ## Uncomment and set this path to use archive download cache.
150 ## Uncomment and set this path to use archive download cache.
151 ## Once enabled, generated archives will be cached at this location
151 ## Once enabled, generated archives will be cached at this location
152 ## and served from the cache during subsequent requests for the same archive of
152 ## and served from the cache during subsequent requests for the same archive of
153 ## the repository.
153 ## the repository.
154 #archive_cache_dir = /tmp/tarballcache
154 #archive_cache_dir = /tmp/tarballcache
155
155
156 ## URL at which the application is running. This is used for bootstraping
156 ## URL at which the application is running. This is used for bootstraping
157 ## requests in context when no web request is available. Used in ishell, or
157 ## requests in context when no web request is available. Used in ishell, or
158 ## SSH calls. Set this for events to receive proper url for SSH calls.
158 ## SSH calls. Set this for events to receive proper url for SSH calls.
159 app.base_url = http://rhodecode.local
159 app.base_url = http://rhodecode.local
160
160
161 ## Unique application ID. Should be a random unique string for security.
161 ## Unique application ID. Should be a random unique string for security.
162 app_instance_uuid = rc-production
162 app_instance_uuid = rc-production
163
163
164 ## Cut off limit for large diffs (size in bytes). If overall diff size on
164 ## Cut off limit for large diffs (size in bytes). If overall diff size on
165 ## commit, or pull request exceeds this limit this diff will be displayed
165 ## commit, or pull request exceeds this limit this diff will be displayed
166 ## partially. E.g 512000 == 512Kb
166 ## partially. E.g 512000 == 512Kb
167 cut_off_limit_diff = 512000
167 cut_off_limit_diff = 512000
168
168
169 ## Cut off limit for large files inside diffs (size in bytes). Each individual
169 ## Cut off limit for large files inside diffs (size in bytes). Each individual
170 ## file inside diff which exceeds this limit will be displayed partially.
170 ## file inside diff which exceeds this limit will be displayed partially.
171 ## E.g 128000 == 128Kb
171 ## E.g 128000 == 128Kb
172 cut_off_limit_file = 128000
172 cut_off_limit_file = 128000
173
173
174 ## use cached version of vcs repositories everywhere. Recommended to be `true`
174 ## use cached version of vcs repositories everywhere. Recommended to be `true`
175 vcs_full_cache = true
175 vcs_full_cache = true
176
176
177 ## Force https in RhodeCode, fixes https redirects, assumes it's always https.
177 ## Force https in RhodeCode, fixes https redirects, assumes it's always https.
178 ## Normally this is controlled by proper http flags sent from http server
178 ## Normally this is controlled by proper http flags sent from http server
179 force_https = false
179 force_https = false
180
180
181 ## use Strict-Transport-Security headers
181 ## use Strict-Transport-Security headers
182 use_htsts = false
182 use_htsts = false
183
183
184 ## git rev filter option, --all is the default filter, if you need to
184 ## git rev filter option, --all is the default filter, if you need to
185 ## hide all refs in changelog switch this to --branches --tags
185 ## hide all refs in changelog switch this to --branches --tags
186 git_rev_filter = --branches --tags
186 git_rev_filter = --branches --tags
187
187
188 # Set to true if your repos are exposed using the dumb protocol
188 # Set to true if your repos are exposed using the dumb protocol
189 git_update_server_info = false
189 git_update_server_info = false
190
190
191 ## RSS/ATOM feed options
191 ## RSS/ATOM feed options
192 rss_cut_off_limit = 256000
192 rss_cut_off_limit = 256000
193 rss_items_per_page = 10
193 rss_items_per_page = 10
194 rss_include_diff = false
194 rss_include_diff = false
195
195
196 ## gist URL alias, used to create nicer urls for gist. This should be an
196 ## gist URL alias, used to create nicer urls for gist. This should be an
197 ## url that does rewrites to _admin/gists/{gistid}.
197 ## url that does rewrites to _admin/gists/{gistid}.
198 ## example: http://gist.rhodecode.org/{gistid}. Empty means use the internal
198 ## example: http://gist.rhodecode.org/{gistid}. Empty means use the internal
199 ## RhodeCode url, ie. http[s]://rhodecode.server/_admin/gists/{gistid}
199 ## RhodeCode url, ie. http[s]://rhodecode.server/_admin/gists/{gistid}
200 gist_alias_url =
200 gist_alias_url =
201
201
202 ## List of views (using glob pattern syntax) that AUTH TOKENS could be
202 ## List of views (using glob pattern syntax) that AUTH TOKENS could be
203 ## used for access.
203 ## used for access.
204 ## Adding ?auth_token=TOKEN_HASH to the url authenticates this request as if it
204 ## Adding ?auth_token=TOKEN_HASH to the url authenticates this request as if it
205 ## came from the the logged in user who own this authentication token.
205 ## came from the the logged in user who own this authentication token.
206 ## Additionally @TOKEN syntaxt can be used to bound the view to specific
206 ## Additionally @TOKEN syntaxt can be used to bound the view to specific
207 ## authentication token. Such view would be only accessible when used together
207 ## authentication token. Such view would be only accessible when used together
208 ## with this authentication token
208 ## with this authentication token
209 ##
209 ##
210 ## list of all views can be found under `/_admin/permissions/auth_token_access`
210 ## list of all views can be found under `/_admin/permissions/auth_token_access`
211 ## The list should be "," separated and on a single line.
211 ## The list should be "," separated and on a single line.
212 ##
212 ##
213 ## Most common views to enable:
213 ## Most common views to enable:
214 # RepoCommitsView:repo_commit_download
214 # RepoCommitsView:repo_commit_download
215 # RepoCommitsView:repo_commit_patch
215 # RepoCommitsView:repo_commit_patch
216 # RepoCommitsView:repo_commit_raw
216 # RepoCommitsView:repo_commit_raw
217 # RepoCommitsView:repo_commit_raw@TOKEN
217 # RepoCommitsView:repo_commit_raw@TOKEN
218 # RepoFilesView:repo_files_diff
218 # RepoFilesView:repo_files_diff
219 # RepoFilesView:repo_archivefile
219 # RepoFilesView:repo_archivefile
220 # RepoFilesView:repo_file_raw
220 # RepoFilesView:repo_file_raw
221 # GistView:*
221 # GistView:*
222 api_access_controllers_whitelist =
222 api_access_controllers_whitelist =
223
223
224 ## Default encoding used to convert from and to unicode
224 ## Default encoding used to convert from and to unicode
225 ## can be also a comma separated list of encoding in case of mixed encodings
225 ## can be also a comma separated list of encoding in case of mixed encodings
226 default_encoding = UTF-8
226 default_encoding = UTF-8
227
227
228 ## instance-id prefix
228 ## instance-id prefix
229 ## a prefix key for this instance used for cache invalidation when running
229 ## a prefix key for this instance used for cache invalidation when running
230 ## multiple instances of rhodecode, make sure it's globally unique for
230 ## multiple instances of rhodecode, make sure it's globally unique for
231 ## all running rhodecode instances. Leave empty if you don't use it
231 ## all running rhodecode instances. Leave empty if you don't use it
232 instance_id =
232 instance_id =
233
233
234 ## Fallback authentication plugin. Set this to a plugin ID to force the usage
234 ## Fallback authentication plugin. Set this to a plugin ID to force the usage
235 ## of an authentication plugin also if it is disabled by it's settings.
235 ## of an authentication plugin also if it is disabled by it's settings.
236 ## This could be useful if you are unable to log in to the system due to broken
236 ## This could be useful if you are unable to log in to the system due to broken
237 ## authentication settings. Then you can enable e.g. the internal rhodecode auth
237 ## authentication settings. Then you can enable e.g. the internal rhodecode auth
238 ## module to log in again and fix the settings.
238 ## module to log in again and fix the settings.
239 ##
239 ##
240 ## Available builtin plugin IDs (hash is part of the ID):
240 ## Available builtin plugin IDs (hash is part of the ID):
241 ## egg:rhodecode-enterprise-ce#rhodecode
241 ## egg:rhodecode-enterprise-ce#rhodecode
242 ## egg:rhodecode-enterprise-ce#pam
242 ## egg:rhodecode-enterprise-ce#pam
243 ## egg:rhodecode-enterprise-ce#ldap
243 ## egg:rhodecode-enterprise-ce#ldap
244 ## egg:rhodecode-enterprise-ce#jasig_cas
244 ## egg:rhodecode-enterprise-ce#jasig_cas
245 ## egg:rhodecode-enterprise-ce#headers
245 ## egg:rhodecode-enterprise-ce#headers
246 ## egg:rhodecode-enterprise-ce#crowd
246 ## egg:rhodecode-enterprise-ce#crowd
247 #rhodecode.auth_plugin_fallback = egg:rhodecode-enterprise-ce#rhodecode
247 #rhodecode.auth_plugin_fallback = egg:rhodecode-enterprise-ce#rhodecode
248
248
249 ## alternative return HTTP header for failed authentication. Default HTTP
249 ## alternative return HTTP header for failed authentication. Default HTTP
250 ## response is 401 HTTPUnauthorized. Currently HG clients have troubles with
250 ## response is 401 HTTPUnauthorized. Currently HG clients have troubles with
251 ## handling that causing a series of failed authentication calls.
251 ## handling that causing a series of failed authentication calls.
252 ## Set this variable to 403 to return HTTPForbidden, or any other HTTP code
252 ## Set this variable to 403 to return HTTPForbidden, or any other HTTP code
253 ## This will be served instead of default 401 on bad authnetication
253 ## This will be served instead of default 401 on bad authnetication
254 auth_ret_code =
254 auth_ret_code =
255
255
256 ## use special detection method when serving auth_ret_code, instead of serving
256 ## use special detection method when serving auth_ret_code, instead of serving
257 ## ret_code directly, use 401 initially (Which triggers credentials prompt)
257 ## ret_code directly, use 401 initially (Which triggers credentials prompt)
258 ## and then serve auth_ret_code to clients
258 ## and then serve auth_ret_code to clients
259 auth_ret_code_detection = false
259 auth_ret_code_detection = false
260
260
261 ## locking return code. When repository is locked return this HTTP code. 2XX
261 ## locking return code. When repository is locked return this HTTP code. 2XX
262 ## codes don't break the transactions while 4XX codes do
262 ## codes don't break the transactions while 4XX codes do
263 lock_ret_code = 423
263 lock_ret_code = 423
264
264
265 ## allows to change the repository location in settings page
265 ## allows to change the repository location in settings page
266 allow_repo_location_change = true
266 allow_repo_location_change = true
267
267
268 ## allows to setup custom hooks in settings page
268 ## allows to setup custom hooks in settings page
269 allow_custom_hooks_settings = true
269 allow_custom_hooks_settings = true
270
270
271 ## Generated license token required for EE edition license.
271 ## Generated license token required for EE edition license.
272 ## New generated token value can be found in Admin > settings > license page.
272 ## New generated token value can be found in Admin > settings > license page.
273 license_token =
273 license_token =
274
274
275 ## supervisor connection uri, for managing supervisor and logs.
275 ## supervisor connection uri, for managing supervisor and logs.
276 supervisor.uri =
276 supervisor.uri =
277 ## supervisord group name/id we only want this RC instance to handle
277 ## supervisord group name/id we only want this RC instance to handle
278 supervisor.group_id = dev
278 supervisor.group_id = dev
279
279
280 ## Display extended labs settings
280 ## Display extended labs settings
281 labs_settings_active = true
281 labs_settings_active = true
282
282
283 ## Custom exception store path, defaults to TMPDIR
283 ## Custom exception store path, defaults to TMPDIR
284 ## This is used to store exception from RhodeCode in shared directory
284 ## This is used to store exception from RhodeCode in shared directory
285 #exception_tracker.store_path =
285 #exception_tracker.store_path =
286
286
287 ## File store configuration. This is used to store and serve uploaded files
287 ## File store configuration. This is used to store and serve uploaded files
288 file_store.enabled = true
288 file_store.enabled = true
289 ## backend, only available one is local
289 ## backend, only available one is local
290 file_store.backend = local
290 file_store.backend = local
291 ## path to store the uploaded binaries
291 ## path to store the uploaded binaries
292 file_store.storage_path = %(here)s/data/file_store
292 file_store.storage_path = %(here)s/data/file_store
293
293
294
294
295 ####################################
295 ####################################
296 ### CELERY CONFIG ####
296 ### CELERY CONFIG ####
297 ####################################
297 ####################################
298 ## run: /path/to/celery worker \
298 ## run: /path/to/celery worker \
299 ## -E --beat --app rhodecode.lib.celerylib.loader \
299 ## -E --beat --app rhodecode.lib.celerylib.loader \
300 ## --scheduler rhodecode.lib.celerylib.scheduler.RcScheduler \
300 ## --scheduler rhodecode.lib.celerylib.scheduler.RcScheduler \
301 ## --loglevel DEBUG --ini /path/to/rhodecode.ini
301 ## --loglevel DEBUG --ini /path/to/rhodecode.ini
302
302
303 use_celery = false
303 use_celery = false
304
304
305 ## connection url to the message broker (default rabbitmq)
305 ## connection url to the message broker (default rabbitmq)
306 celery.broker_url = amqp://rabbitmq:qweqwe@localhost:5672/rabbitmqhost
306 celery.broker_url = amqp://rabbitmq:qweqwe@localhost:5672/rabbitmqhost
307
307
308 ## maximum tasks to execute before worker restart
308 ## maximum tasks to execute before worker restart
309 celery.max_tasks_per_child = 100
309 celery.max_tasks_per_child = 100
310
310
311 ## tasks will never be sent to the queue, but executed locally instead.
311 ## tasks will never be sent to the queue, but executed locally instead.
312 celery.task_always_eager = false
312 celery.task_always_eager = false
313
313
314 #####################################
314 #####################################
315 ### DOGPILE CACHE ####
315 ### DOGPILE CACHE ####
316 #####################################
316 #####################################
317 ## Default cache dir for caches. Putting this into a ramdisk
317 ## Default cache dir for caches. Putting this into a ramdisk
318 ## can boost performance, eg. /tmpfs/data_ramdisk, however this directory might require
318 ## can boost performance, eg. /tmpfs/data_ramdisk, however this directory might require
319 ## large amount of space
319 ## large amount of space
320 cache_dir = %(here)s/data
320 cache_dir = %(here)s/data
321
321
322 ## `cache_perms` cache settings for permission tree, auth TTL.
322 ## `cache_perms` cache settings for permission tree, auth TTL.
323 rc_cache.cache_perms.backend = dogpile.cache.rc.file_namespace
323 rc_cache.cache_perms.backend = dogpile.cache.rc.file_namespace
324 rc_cache.cache_perms.expiration_time = 300
324 rc_cache.cache_perms.expiration_time = 300
325
325
326 ## alternative `cache_perms` redis backend with distributed lock
326 ## alternative `cache_perms` redis backend with distributed lock
327 #rc_cache.cache_perms.backend = dogpile.cache.rc.redis
327 #rc_cache.cache_perms.backend = dogpile.cache.rc.redis
328 #rc_cache.cache_perms.expiration_time = 300
328 #rc_cache.cache_perms.expiration_time = 300
329 ## redis_expiration_time needs to be greater then expiration_time
329 ## redis_expiration_time needs to be greater then expiration_time
330 #rc_cache.cache_perms.arguments.redis_expiration_time = 7200
330 #rc_cache.cache_perms.arguments.redis_expiration_time = 7200
331 #rc_cache.cache_perms.arguments.socket_timeout = 30
331 #rc_cache.cache_perms.arguments.socket_timeout = 30
332 #rc_cache.cache_perms.arguments.host = localhost
332 #rc_cache.cache_perms.arguments.host = localhost
333 #rc_cache.cache_perms.arguments.port = 6379
333 #rc_cache.cache_perms.arguments.port = 6379
334 #rc_cache.cache_perms.arguments.db = 0
334 #rc_cache.cache_perms.arguments.db = 0
335 #rc_cache.cache_perms.arguments.distributed_lock = true
335 #rc_cache.cache_perms.arguments.distributed_lock = true
336
336
337 ## `cache_repo` cache settings for FileTree, Readme, RSS FEEDS
337 ## `cache_repo` cache settings for FileTree, Readme, RSS FEEDS
338 rc_cache.cache_repo.backend = dogpile.cache.rc.file_namespace
338 rc_cache.cache_repo.backend = dogpile.cache.rc.file_namespace
339 rc_cache.cache_repo.expiration_time = 2592000
339 rc_cache.cache_repo.expiration_time = 2592000
340
340
341 ## alternative `cache_repo` redis backend with distributed lock
341 ## alternative `cache_repo` redis backend with distributed lock
342 #rc_cache.cache_repo.backend = dogpile.cache.rc.redis
342 #rc_cache.cache_repo.backend = dogpile.cache.rc.redis
343 #rc_cache.cache_repo.expiration_time = 2592000
343 #rc_cache.cache_repo.expiration_time = 2592000
344 ## redis_expiration_time needs to be greater then expiration_time
344 ## redis_expiration_time needs to be greater then expiration_time
345 #rc_cache.cache_repo.arguments.redis_expiration_time = 2678400
345 #rc_cache.cache_repo.arguments.redis_expiration_time = 2678400
346 #rc_cache.cache_repo.arguments.socket_timeout = 30
346 #rc_cache.cache_repo.arguments.socket_timeout = 30
347 #rc_cache.cache_repo.arguments.host = localhost
347 #rc_cache.cache_repo.arguments.host = localhost
348 #rc_cache.cache_repo.arguments.port = 6379
348 #rc_cache.cache_repo.arguments.port = 6379
349 #rc_cache.cache_repo.arguments.db = 1
349 #rc_cache.cache_repo.arguments.db = 1
350 #rc_cache.cache_repo.arguments.distributed_lock = true
350 #rc_cache.cache_repo.arguments.distributed_lock = true
351
351
352 ## cache settings for SQL queries, this needs to use memory type backend
352 ## cache settings for SQL queries, this needs to use memory type backend
353 rc_cache.sql_cache_short.backend = dogpile.cache.rc.memory_lru
353 rc_cache.sql_cache_short.backend = dogpile.cache.rc.memory_lru
354 rc_cache.sql_cache_short.expiration_time = 30
354 rc_cache.sql_cache_short.expiration_time = 30
355
355
356 ## `cache_repo_longterm` cache for repo object instances, this needs to use memory
356 ## `cache_repo_longterm` cache for repo object instances, this needs to use memory
357 ## type backend as the objects kept are not pickle serializable
357 ## type backend as the objects kept are not pickle serializable
358 rc_cache.cache_repo_longterm.backend = dogpile.cache.rc.memory_lru
358 rc_cache.cache_repo_longterm.backend = dogpile.cache.rc.memory_lru
359 ## by default we use 96H, this is using invalidation on push anyway
359 ## by default we use 96H, this is using invalidation on push anyway
360 rc_cache.cache_repo_longterm.expiration_time = 345600
360 rc_cache.cache_repo_longterm.expiration_time = 345600
361 ## max items in LRU cache, reduce this number to save memory, and expire last used
361 ## max items in LRU cache, reduce this number to save memory, and expire last used
362 ## cached objects
362 ## cached objects
363 rc_cache.cache_repo_longterm.max_size = 10000
363 rc_cache.cache_repo_longterm.max_size = 10000
364
364
365
365
366 ####################################
366 ####################################
367 ### BEAKER SESSION ####
367 ### BEAKER SESSION ####
368 ####################################
368 ####################################
369
369
370 ## .session.type is type of storage options for the session, current allowed
370 ## .session.type is type of storage options for the session, current allowed
371 ## types are file, ext:memcached, ext:redis, ext:database, and memory (default).
371 ## types are file, ext:memcached, ext:redis, ext:database, and memory (default).
372 beaker.session.type = file
372 beaker.session.type = file
373 beaker.session.data_dir = %(here)s/data/sessions
373 beaker.session.data_dir = %(here)s/data/sessions
374
374
375 ## db based session, fast, and allows easy management over logged in users
375 ## db based session, fast, and allows easy management over logged in users
376 #beaker.session.type = ext:database
376 #beaker.session.type = ext:database
377 #beaker.session.table_name = db_session
377 #beaker.session.table_name = db_session
378 #beaker.session.sa.url = postgresql://postgres:secret@localhost/rhodecode
378 #beaker.session.sa.url = postgresql://postgres:secret@localhost/rhodecode
379 #beaker.session.sa.url = mysql://root:secret@127.0.0.1/rhodecode
379 #beaker.session.sa.url = mysql://root:secret@127.0.0.1/rhodecode
380 #beaker.session.sa.pool_recycle = 3600
380 #beaker.session.sa.pool_recycle = 3600
381 #beaker.session.sa.echo = false
381 #beaker.session.sa.echo = false
382
382
383 beaker.session.key = rhodecode
383 beaker.session.key = rhodecode
384 beaker.session.secret = develop-rc-uytcxaz
384 beaker.session.secret = develop-rc-uytcxaz
385 beaker.session.lock_dir = %(here)s/data/sessions/lock
385 beaker.session.lock_dir = %(here)s/data/sessions/lock
386
386
387 ## Secure encrypted cookie. Requires AES and AES python libraries
387 ## Secure encrypted cookie. Requires AES and AES python libraries
388 ## you must disable beaker.session.secret to use this
388 ## you must disable beaker.session.secret to use this
389 #beaker.session.encrypt_key = key_for_encryption
389 #beaker.session.encrypt_key = key_for_encryption
390 #beaker.session.validate_key = validation_key
390 #beaker.session.validate_key = validation_key
391
391
392 ## sets session as invalid(also logging out user) if it haven not been
392 ## sets session as invalid(also logging out user) if it haven not been
393 ## accessed for given amount of time in seconds
393 ## accessed for given amount of time in seconds
394 beaker.session.timeout = 2592000
394 beaker.session.timeout = 2592000
395 beaker.session.httponly = true
395 beaker.session.httponly = true
396 ## Path to use for the cookie. Set to prefix if you use prefix middleware
396 ## Path to use for the cookie. Set to prefix if you use prefix middleware
397 #beaker.session.cookie_path = /custom_prefix
397 #beaker.session.cookie_path = /custom_prefix
398
398
399 ## uncomment for https secure cookie
399 ## uncomment for https secure cookie
400 beaker.session.secure = false
400 beaker.session.secure = false
401
401
402 ## auto save the session to not to use .save()
402 ## auto save the session to not to use .save()
403 beaker.session.auto = false
403 beaker.session.auto = false
404
404
405 ## default cookie expiration time in seconds, set to `true` to set expire
405 ## default cookie expiration time in seconds, set to `true` to set expire
406 ## at browser close
406 ## at browser close
407 #beaker.session.cookie_expires = 3600
407 #beaker.session.cookie_expires = 3600
408
408
409 ###################################
409 ###################################
410 ## SEARCH INDEXING CONFIGURATION ##
410 ## SEARCH INDEXING CONFIGURATION ##
411 ###################################
411 ###################################
412 ## Full text search indexer is available in rhodecode-tools under
412 ## Full text search indexer is available in rhodecode-tools under
413 ## `rhodecode-tools index` command
413 ## `rhodecode-tools index` command
414
414
415 ## WHOOSH Backend, doesn't require additional services to run
415 ## WHOOSH Backend, doesn't require additional services to run
416 ## it works good with few dozen repos
416 ## it works good with few dozen repos
417 search.module = rhodecode.lib.index.whoosh
417 search.module = rhodecode.lib.index.whoosh
418 search.location = %(here)s/data/index
418 search.location = %(here)s/data/index
419
419
420 ########################################
420 ########################################
421 ### CHANNELSTREAM CONFIG ####
421 ### CHANNELSTREAM CONFIG ####
422 ########################################
422 ########################################
423 ## channelstream enables persistent connections and live notification
423 ## channelstream enables persistent connections and live notification
424 ## in the system. It's also used by the chat system
424 ## in the system. It's also used by the chat system
425
425
426 channelstream.enabled = false
426 channelstream.enabled = false
427
427
428 ## server address for channelstream server on the backend
428 ## server address for channelstream server on the backend
429 channelstream.server = 127.0.0.1:9800
429 channelstream.server = 127.0.0.1:9800
430
430
431 ## location of the channelstream server from outside world
431 ## location of the channelstream server from outside world
432 ## use ws:// for http or wss:// for https. This address needs to be handled
432 ## use ws:// for http or wss:// for https. This address needs to be handled
433 ## by external HTTP server such as Nginx or Apache
433 ## by external HTTP server such as Nginx or Apache
434 ## see nginx/apache configuration examples in our docs
434 ## see nginx/apache configuration examples in our docs
435 channelstream.ws_url = ws://rhodecode.yourserver.com/_channelstream
435 channelstream.ws_url = ws://rhodecode.yourserver.com/_channelstream
436 channelstream.secret = secret
436 channelstream.secret = secret
437 channelstream.history.location = %(here)s/channelstream_history
437 channelstream.history.location = %(here)s/channelstream_history
438
438
439 ## Internal application path that Javascript uses to connect into.
439 ## Internal application path that Javascript uses to connect into.
440 ## If you use proxy-prefix the prefix should be added before /_channelstream
440 ## If you use proxy-prefix the prefix should be added before /_channelstream
441 channelstream.proxy_path = /_channelstream
441 channelstream.proxy_path = /_channelstream
442
442
443
443
444 ###################################
444 ###################################
445 ## APPENLIGHT CONFIG ##
445 ## APPENLIGHT CONFIG ##
446 ###################################
446 ###################################
447
447
448 ## Appenlight is tailored to work with RhodeCode, see
448 ## Appenlight is tailored to work with RhodeCode, see
449 ## http://appenlight.com for details how to obtain an account
449 ## http://appenlight.com for details how to obtain an account
450
450
451 ## appenlight integration enabled
451 ## appenlight integration enabled
452 appenlight = false
452 appenlight = false
453
453
454 appenlight.server_url = https://api.appenlight.com
454 appenlight.server_url = https://api.appenlight.com
455 appenlight.api_key = YOUR_API_KEY
455 appenlight.api_key = YOUR_API_KEY
456 #appenlight.transport_config = https://api.appenlight.com?threaded=1&timeout=5
456 #appenlight.transport_config = https://api.appenlight.com?threaded=1&timeout=5
457
457
458 # used for JS client
458 # used for JS client
459 appenlight.api_public_key = YOUR_API_PUBLIC_KEY
459 appenlight.api_public_key = YOUR_API_PUBLIC_KEY
460
460
461 ## TWEAK AMOUNT OF INFO SENT HERE
461 ## TWEAK AMOUNT OF INFO SENT HERE
462
462
463 ## enables 404 error logging (default False)
463 ## enables 404 error logging (default False)
464 appenlight.report_404 = false
464 appenlight.report_404 = false
465
465
466 ## time in seconds after request is considered being slow (default 1)
466 ## time in seconds after request is considered being slow (default 1)
467 appenlight.slow_request_time = 1
467 appenlight.slow_request_time = 1
468
468
469 ## record slow requests in application
469 ## record slow requests in application
470 ## (needs to be enabled for slow datastore recording and time tracking)
470 ## (needs to be enabled for slow datastore recording and time tracking)
471 appenlight.slow_requests = true
471 appenlight.slow_requests = true
472
472
473 ## enable hooking to application loggers
473 ## enable hooking to application loggers
474 appenlight.logging = true
474 appenlight.logging = true
475
475
476 ## minimum log level for log capture
476 ## minimum log level for log capture
477 appenlight.logging.level = WARNING
477 appenlight.logging.level = WARNING
478
478
479 ## send logs only from erroneous/slow requests
479 ## send logs only from erroneous/slow requests
480 ## (saves API quota for intensive logging)
480 ## (saves API quota for intensive logging)
481 appenlight.logging_on_error = false
481 appenlight.logging_on_error = false
482
482
483 ## list of additonal keywords that should be grabbed from environ object
483 ## list of additonal keywords that should be grabbed from environ object
484 ## can be string with comma separated list of words in lowercase
484 ## can be string with comma separated list of words in lowercase
485 ## (by default client will always send following info:
485 ## (by default client will always send following info:
486 ## 'REMOTE_USER', 'REMOTE_ADDR', 'SERVER_NAME', 'CONTENT_TYPE' + all keys that
486 ## 'REMOTE_USER', 'REMOTE_ADDR', 'SERVER_NAME', 'CONTENT_TYPE' + all keys that
487 ## start with HTTP* this list be extended with additional keywords here
487 ## start with HTTP* this list be extended with additional keywords here
488 appenlight.environ_keys_whitelist =
488 appenlight.environ_keys_whitelist =
489
489
490 ## list of keywords that should be blanked from request object
490 ## list of keywords that should be blanked from request object
491 ## can be string with comma separated list of words in lowercase
491 ## can be string with comma separated list of words in lowercase
492 ## (by default client will always blank keys that contain following words
492 ## (by default client will always blank keys that contain following words
493 ## 'password', 'passwd', 'pwd', 'auth_tkt', 'secret', 'csrf'
493 ## 'password', 'passwd', 'pwd', 'auth_tkt', 'secret', 'csrf'
494 ## this list be extended with additional keywords set here
494 ## this list be extended with additional keywords set here
495 appenlight.request_keys_blacklist =
495 appenlight.request_keys_blacklist =
496
496
497 ## list of namespaces that should be ignores when gathering log entries
497 ## list of namespaces that should be ignores when gathering log entries
498 ## can be string with comma separated list of namespaces
498 ## can be string with comma separated list of namespaces
499 ## (by default the client ignores own entries: appenlight_client.client)
499 ## (by default the client ignores own entries: appenlight_client.client)
500 appenlight.log_namespace_blacklist =
500 appenlight.log_namespace_blacklist =
501
501
502 # enable debug style page
502 # enable debug style page
503 debug_style = true
503 debug_style = true
504
504
505 ###########################################
505 ###########################################
506 ### MAIN RHODECODE DATABASE CONFIG ###
506 ### MAIN RHODECODE DATABASE CONFIG ###
507 ###########################################
507 ###########################################
508 #sqlalchemy.db1.url = sqlite:///%(here)s/rhodecode.db?timeout=30
508 #sqlalchemy.db1.url = sqlite:///%(here)s/rhodecode.db?timeout=30
509 #sqlalchemy.db1.url = postgresql://postgres:qweqwe@localhost/rhodecode
509 #sqlalchemy.db1.url = postgresql://postgres:qweqwe@localhost/rhodecode
510 #sqlalchemy.db1.url = mysql://root:qweqwe@localhost/rhodecode?charset=utf8
510 #sqlalchemy.db1.url = mysql://root:qweqwe@localhost/rhodecode?charset=utf8
511 # pymysql is an alternative driver for MySQL, use in case of problems with default one
511 # pymysql is an alternative driver for MySQL, use in case of problems with default one
512 #sqlalchemy.db1.url = mysql+pymysql://root:qweqwe@localhost/rhodecode
512 #sqlalchemy.db1.url = mysql+pymysql://root:qweqwe@localhost/rhodecode
513
513
514 sqlalchemy.db1.url = sqlite:///%(here)s/rhodecode.db?timeout=30
514 sqlalchemy.db1.url = sqlite:///%(here)s/rhodecode.db?timeout=30
515
515
516 # see sqlalchemy docs for other advanced settings
516 # see sqlalchemy docs for other advanced settings
517
517
518 ## print the sql statements to output
518 ## print the sql statements to output
519 sqlalchemy.db1.echo = false
519 sqlalchemy.db1.echo = false
520 ## recycle the connections after this amount of seconds
520 ## recycle the connections after this amount of seconds
521 sqlalchemy.db1.pool_recycle = 3600
521 sqlalchemy.db1.pool_recycle = 3600
522 sqlalchemy.db1.convert_unicode = true
522 sqlalchemy.db1.convert_unicode = true
523
523
524 ## the number of connections to keep open inside the connection pool.
524 ## the number of connections to keep open inside the connection pool.
525 ## 0 indicates no limit
525 ## 0 indicates no limit
526 #sqlalchemy.db1.pool_size = 5
526 #sqlalchemy.db1.pool_size = 5
527
527
528 ## the number of connections to allow in connection pool "overflow", that is
528 ## the number of connections to allow in connection pool "overflow", that is
529 ## connections that can be opened above and beyond the pool_size setting,
529 ## connections that can be opened above and beyond the pool_size setting,
530 ## which defaults to five.
530 ## which defaults to five.
531 #sqlalchemy.db1.max_overflow = 10
531 #sqlalchemy.db1.max_overflow = 10
532
532
533 ## Connection check ping, used to detect broken database connections
533 ## Connection check ping, used to detect broken database connections
534 ## could be enabled to better handle cases if MySQL has gone away errors
534 ## could be enabled to better handle cases if MySQL has gone away errors
535 #sqlalchemy.db1.ping_connection = true
535 #sqlalchemy.db1.ping_connection = true
536
536
537 ##################
537 ##################
538 ### VCS CONFIG ###
538 ### VCS CONFIG ###
539 ##################
539 ##################
540 vcs.server.enable = true
540 vcs.server.enable = true
541 vcs.server = localhost:9900
541 vcs.server = localhost:9900
542
542
543 ## Web server connectivity protocol, responsible for web based VCS operatations
543 ## Web server connectivity protocol, responsible for web based VCS operatations
544 ## Available protocols are:
544 ## Available protocols are:
545 ## `http` - use http-rpc backend (default)
545 ## `http` - use http-rpc backend (default)
546 vcs.server.protocol = http
546 vcs.server.protocol = http
547
547
548 ## Push/Pull operations protocol, available options are:
548 ## Push/Pull operations protocol, available options are:
549 ## `http` - use http-rpc backend (default)
549 ## `http` - use http-rpc backend (default)
550 vcs.scm_app_implementation = http
550 vcs.scm_app_implementation = http
551
551
552 ## Push/Pull operations hooks protocol, available options are:
552 ## Push/Pull operations hooks protocol, available options are:
553 ## `http` - use http-rpc backend (default)
553 ## `http` - use http-rpc backend (default)
554 vcs.hooks.protocol = http
554 vcs.hooks.protocol = http
555
555
556 ## Host on which this instance is listening for hooks. If vcsserver is in other location
556 ## Host on which this instance is listening for hooks. If vcsserver is in other location
557 ## this should be adjusted.
557 ## this should be adjusted.
558 vcs.hooks.host = 127.0.0.1
558 vcs.hooks.host = 127.0.0.1
559
559
560 vcs.server.log_level = debug
560 vcs.server.log_level = debug
561 ## Start VCSServer with this instance as a subprocess, useful for development
561 ## Start VCSServer with this instance as a subprocess, useful for development
562 vcs.start_server = false
562 vcs.start_server = false
563
563
564 ## List of enabled VCS backends, available options are:
564 ## List of enabled VCS backends, available options are:
565 ## `hg` - mercurial
565 ## `hg` - mercurial
566 ## `git` - git
566 ## `git` - git
567 ## `svn` - subversion
567 ## `svn` - subversion
568 vcs.backends = hg, git, svn
568 vcs.backends = hg, git, svn
569
569
570 vcs.connection_timeout = 3600
570 vcs.connection_timeout = 3600
571 ## Compatibility version when creating SVN repositories. Defaults to newest version when commented out.
571 ## Compatibility version when creating SVN repositories. Defaults to newest version when commented out.
572 ## Available options are: pre-1.4-compatible, pre-1.5-compatible, pre-1.6-compatible, pre-1.8-compatible, pre-1.9-compatible
572 ## Available options are: pre-1.4-compatible, pre-1.5-compatible, pre-1.6-compatible, pre-1.8-compatible, pre-1.9-compatible
573 #vcs.svn.compatible_version = pre-1.8-compatible
573 #vcs.svn.compatible_version = pre-1.8-compatible
574
574
575
575
576 ############################################################
576 ############################################################
577 ### Subversion proxy support (mod_dav_svn) ###
577 ### Subversion proxy support (mod_dav_svn) ###
578 ### Maps RhodeCode repo groups into SVN paths for Apache ###
578 ### Maps RhodeCode repo groups into SVN paths for Apache ###
579 ############################################################
579 ############################################################
580 ## Enable or disable the config file generation.
580 ## Enable or disable the config file generation.
581 svn.proxy.generate_config = false
581 svn.proxy.generate_config = false
582 ## Generate config file with `SVNListParentPath` set to `On`.
582 ## Generate config file with `SVNListParentPath` set to `On`.
583 svn.proxy.list_parent_path = true
583 svn.proxy.list_parent_path = true
584 ## Set location and file name of generated config file.
584 ## Set location and file name of generated config file.
585 svn.proxy.config_file_path = %(here)s/mod_dav_svn.conf
585 svn.proxy.config_file_path = %(here)s/mod_dav_svn.conf
586 ## alternative mod_dav config template. This needs to be a mako template
586 ## alternative mod_dav config template. This needs to be a mako template
587 #svn.proxy.config_template = ~/.rccontrol/enterprise-1/custom_svn_conf.mako
587 #svn.proxy.config_template = ~/.rccontrol/enterprise-1/custom_svn_conf.mako
588 ## Used as a prefix to the `Location` block in the generated config file.
588 ## Used as a prefix to the `Location` block in the generated config file.
589 ## In most cases it should be set to `/`.
589 ## In most cases it should be set to `/`.
590 svn.proxy.location_root = /
590 svn.proxy.location_root = /
591 ## Command to reload the mod dav svn configuration on change.
591 ## Command to reload the mod dav svn configuration on change.
592 ## Example: `/etc/init.d/apache2 reload`
592 ## Example: `/etc/init.d/apache2 reload`
593 #svn.proxy.reload_cmd = /etc/init.d/apache2 reload
593 #svn.proxy.reload_cmd = /etc/init.d/apache2 reload
594 ## If the timeout expires before the reload command finishes, the command will
594 ## If the timeout expires before the reload command finishes, the command will
595 ## be killed. Setting it to zero means no timeout. Defaults to 10 seconds.
595 ## be killed. Setting it to zero means no timeout. Defaults to 10 seconds.
596 #svn.proxy.reload_timeout = 10
596 #svn.proxy.reload_timeout = 10
597
597
598 ############################################################
598 ############################################################
599 ### SSH Support Settings ###
599 ### SSH Support Settings ###
600 ############################################################
600 ############################################################
601
601
602 ## Defines if a custom authorized_keys file should be created and written on
602 ## Defines if a custom authorized_keys file should be created and written on
603 ## any change user ssh keys. Setting this to false also disables posibility
603 ## any change user ssh keys. Setting this to false also disables posibility
604 ## of adding SSH keys by users from web interface. Super admins can still
604 ## of adding SSH keys by users from web interface. Super admins can still
605 ## manage SSH Keys.
605 ## manage SSH Keys.
606 ssh.generate_authorized_keyfile = false
606 ssh.generate_authorized_keyfile = false
607
607
608 ## Options for ssh, default is `no-pty,no-port-forwarding,no-X11-forwarding,no-agent-forwarding`
608 ## Options for ssh, default is `no-pty,no-port-forwarding,no-X11-forwarding,no-agent-forwarding`
609 # ssh.authorized_keys_ssh_opts =
609 # ssh.authorized_keys_ssh_opts =
610
610
611 ## Path to the authrozied_keys file where the generate entries are placed.
611 ## Path to the authrozied_keys file where the generate entries are placed.
612 ## It is possible to have multiple key files specified in `sshd_config` e.g.
612 ## It is possible to have multiple key files specified in `sshd_config` e.g.
613 ## AuthorizedKeysFile %h/.ssh/authorized_keys %h/.ssh/authorized_keys_rhodecode
613 ## AuthorizedKeysFile %h/.ssh/authorized_keys %h/.ssh/authorized_keys_rhodecode
614 ssh.authorized_keys_file_path = ~/.ssh/authorized_keys_rhodecode
614 ssh.authorized_keys_file_path = ~/.ssh/authorized_keys_rhodecode
615
615
616 ## Command to execute the SSH wrapper. The binary is available in the
616 ## Command to execute the SSH wrapper. The binary is available in the
617 ## rhodecode installation directory.
617 ## rhodecode installation directory.
618 ## e.g ~/.rccontrol/community-1/profile/bin/rc-ssh-wrapper
618 ## e.g ~/.rccontrol/community-1/profile/bin/rc-ssh-wrapper
619 ssh.wrapper_cmd = ~/.rccontrol/community-1/rc-ssh-wrapper
619 ssh.wrapper_cmd = ~/.rccontrol/community-1/rc-ssh-wrapper
620
620
621 ## Allow shell when executing the ssh-wrapper command
621 ## Allow shell when executing the ssh-wrapper command
622 ssh.wrapper_cmd_allow_shell = false
622 ssh.wrapper_cmd_allow_shell = false
623
623
624 ## Enables logging, and detailed output send back to the client during SSH
624 ## Enables logging, and detailed output send back to the client during SSH
625 ## operations. Usefull for debugging, shouldn't be used in production.
625 ## operations. Usefull for debugging, shouldn't be used in production.
626 ssh.enable_debug_logging = true
626 ssh.enable_debug_logging = true
627
627
628 ## Paths to binary executable, by default they are the names, but we can
628 ## Paths to binary executable, by default they are the names, but we can
629 ## override them if we want to use a custom one
629 ## override them if we want to use a custom one
630 ssh.executable.hg = ~/.rccontrol/vcsserver-1/profile/bin/hg
630 ssh.executable.hg = ~/.rccontrol/vcsserver-1/profile/bin/hg
631 ssh.executable.git = ~/.rccontrol/vcsserver-1/profile/bin/git
631 ssh.executable.git = ~/.rccontrol/vcsserver-1/profile/bin/git
632 ssh.executable.svn = ~/.rccontrol/vcsserver-1/profile/bin/svnserve
632 ssh.executable.svn = ~/.rccontrol/vcsserver-1/profile/bin/svnserve
633
633
634 ## Enables SSH key generator web interface. Disabling this still allows users
635 ## to add their own keys.
636 ssh.enable_ui_key_generator = true
637
634
638
635 ## Dummy marker to add new entries after.
639 ## Dummy marker to add new entries after.
636 ## Add any custom entries below. Please don't remove.
640 ## Add any custom entries below. Please don't remove.
637 custom.conf = 1
641 custom.conf = 1
638
642
639
643
640 ################################
644 ################################
641 ### LOGGING CONFIGURATION ####
645 ### LOGGING CONFIGURATION ####
642 ################################
646 ################################
643 [loggers]
647 [loggers]
644 keys = root, sqlalchemy, beaker, celery, rhodecode, ssh_wrapper
648 keys = root, sqlalchemy, beaker, celery, rhodecode, ssh_wrapper
645
649
646 [handlers]
650 [handlers]
647 keys = console, console_sql
651 keys = console, console_sql
648
652
649 [formatters]
653 [formatters]
650 keys = generic, color_formatter, color_formatter_sql
654 keys = generic, color_formatter, color_formatter_sql
651
655
652 #############
656 #############
653 ## LOGGERS ##
657 ## LOGGERS ##
654 #############
658 #############
655 [logger_root]
659 [logger_root]
656 level = NOTSET
660 level = NOTSET
657 handlers = console
661 handlers = console