closed-social
/
mastodon
3
0
Fork 2
Code Issues 5 Pull Requests 0 Projects 0 Releases 3 Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
15872 Commits
4 Branches
567 MiB
Tree: 757e16a0b5
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from '757e16a0b5'
${ noResults }
mastodon/.env.production.sample

299 lines
9.2 KiB
Raw Normal View History

Add back a cleaner and leaner .env.production.sample (#14206)
4 years ago
Fix the wrong full documentation link (#14293)
4 years ago
Adding e-mail configuration
8 years ago
Fix mastodon:setup to take dotenv/docker-compose differences into account (#16896) In order to work around https://github.com/mastodon/mastodon/issues/16895, add a warning to .env.production.sample, and change the mastodon:setup rake task to: - output a warning if a variable will be interpreted differently by dotenv and docker-compose - ensure the printed config is compatible with docker-compose
3 years ago
Adding e-mail configuration
8 years ago
Add back a cleaner and leaner .env.production.sample (#14206)
4 years ago
CAS + SAML authentication feature (#6425) * Cas authentication feature * Config * Remove class_eval + Omniauth initializer * Codeclimate review * Codeclimate review 2 * Codeclimate review 3 * Remove uid/email reconciliation * SAML authentication * Clean up code * Improve login form * Fix code style issues * Add locales
6 years ago
enforce LOCAL_HTTPS=true in production (#6061) * enforce https in production * note changes in production env sample * typo fix
7 years ago
Allow running mastodon on a different domain as the one used for identifying users (#1267) * Allow running mastodon on a different domain as the one used for identifying users * Alter documentation of WEB_DOMAIN to make clear it shouldn't be used unless the admin knows what they are doing * Compare to web_domain instead of local_domain when dealing with feeds/API * Correctly identify mentions to local accounts Mentions URLs point to the person's web profile, i.e., the user page served on WEB_DOMAIN.
7 years ago
Add additional documentation and warnings to the WEB_DOMAIN setting. (#2386) * Add additional documentation and warnings to the WEB_DOMAIN setting. This feature is largely undocumented, and quite a number of users have shot them in the feet already despite the warning. Added a bit of documentation and expanded the warning until we have a mechanism for dealing with conflicting user URIs. * Change WEB_DOMAIN comments to point to the extensive online documentation
7 years ago
Allow running mastodon on a different domain as the one used for identifying users (#1267) * Allow running mastodon on a different domain as the one used for identifying users * Alter documentation of WEB_DOMAIN to make clear it shouldn't be used unless the admin knows what they are doing * Compare to web_domain instead of local_domain when dealing with feeds/API * Correctly identify mentions to local accounts Mentions URLs point to the person's web profile, i.e., the user page served on WEB_DOMAIN.
7 years ago
Allow alternate domains for mastodon handlers (#3187)
7 years ago
Merge branch 'master' into glitch-soc/merge-upstream Conflicts: - `.env.production.sample`: Upstream changed it completely. Changed ours to merge upstream's new structure, but keeping most of the information.
4 years ago
Add back a cleaner and leaner .env.production.sample (#14206)
4 years ago
Merge branch 'master' into glitch-soc/merge-upstream Conflicts: - `.env.production.sample`: Upstream changed it completely. Changed ours to merge upstream's new structure, but keeping most of the information.
4 years ago
Add back a cleaner and leaner .env.production.sample (#14206)
4 years ago
Merge branch 'master' into glitch-soc/merge-upstream Conflicts: - `.env.production.sample`: Upstream changed it completely. Changed ours to merge upstream's new structure, but keeping most of the information.
4 years ago
Fix ElasticSearch to Elasticsearch (#17050)
3 years ago
Add back a cleaner and leaner .env.production.sample (#14206)
4 years ago
Merge branch 'master' into glitch-soc/merge-upstream Conflicts: - `.env.production.sample`: Upstream changed it completely. Changed ours to merge upstream's new structure, but keeping most of the information.
4 years ago
Support authentication for ElasticSearch (#16890) * Support authentication for ElasticSearch * Fix chewy auth settings
3 years ago
Merge branch 'main' into glitch-soc/merge-upstream Conflicts: - `.env.production.sample`: Upstream added new configuration options, uncommented by default. Commented them. - `Gemfile.lock`: Upstream updated dependencies textually close to glitch-soc-specific dependencies. Updated those upstream dependencies.
3 years ago
Add back a cleaner and leaner .env.production.sample (#14206)
4 years ago
Updated docker-compose snippet to a working one (#13196) added 'bundle exec' before rake
4 years ago
Add back a cleaner and leaner .env.production.sample (#14206)
4 years ago
Adding a docker-compose template for running Mastodon easily
8 years ago
Update sample .env
7 years ago
Adding e-mail configuration
8 years ago
Merge branch 'master' into glitch-soc/merge-upstream Conflicts: - `.env.production.sample`: Upstream changed it completely. Changed ours to merge upstream's new structure, but keeping most of the information.
4 years ago
Add back a cleaner and leaner .env.production.sample (#14206)
4 years ago
Merge branch 'master' into glitch-soc/merge-upstream Conflicts: - `.env.production.sample`: Upstream changed it completely. Changed ours to merge upstream's new structure, but keeping most of the information.
4 years ago
Web Push Notifications (#3243) * feat: Register push subscription * feat: Notify when mentioned * feat: Boost, favourite, reply, follow, follow request * feat: Notification interaction * feat: Handle change of public key * feat: Unsubscribe if things go wrong * feat: Do not send normal notifications if push is enabled * feat: Focus client if open * refactor: Move push logic to WebPushSubscription * feat: Better title and body * feat: Localize messages * chore: Fix lint errors * feat: Settings * refactor: Lazy load * fix: Check if push settings exist * feat: Device-based preferences * refactor: Simplify logic * refactor: Pull request feedback * refactor: Pull request feedback * refactor: Create /api/web/push_subscriptions endpoint * feat: Spec PushSubscriptionController * refactor: WebPushSubscription => Web::PushSubscription * feat: Spec Web::PushSubscription * feat: Display first media attachment * feat: Support direction * fix: Stuff broken while rebasing * refactor: Integration with session activations * refactor: Cleanup * refactor: Simplify implementation * feat: Set VAPID keys via environment * chore: Comments * fix: Crash when no alerts * fix: Set VAPID keys in testing environment * fix: Follow link * feat: Notification actions * fix: Delete previous subscription * chore: Temporary logs * refactor: Move migration to a later date * fix: Fetch the correct session activation and misc bugs * refactor: Move migration to a later date * fix: Remove follow request (no notifications) * feat: Send administrator contact to push service * feat: Set time-to-live * fix: Do not show sensitive images * fix: Reducer crash in error handling * feat: Add badge * chore: Fix lint error * fix: Checkbox label overlap * fix: Check for payload support * fix: Rename action "type" (crash in latest Chrome) * feat: Action to expand notification * fix: Lint errors * fix: Unescape notification body * fix: Do not allow boosting if the status is hidden * feat: Add VAPID keys to the production sample environment * fix: Strip HTML tags from status * refactor: Better error messages * refactor: Handle browser not implementing the VAPID protocol (Samsung Internet) * fix: Error when target_status is nil * fix: Handle lack of image * fix: Delete reference to invalid subscriptions * feat: Better error handling * fix: Unescape HTML characters after tags are striped * refactor: Simpify code * fix: Modify to work with #4091 * Sort strings alphabetically * i18n: Updated Polish translation it annoys me that it's not fully localized :P * refactor: Use current_session in PushSubscriptionController * fix: Rebase mistake * fix: Set cacheName to mastodon * refactor: Pull request feedback * refactor: Remove logging statements * chore(yarn): Fix conflicts with master * chore(yarn): Copy latest from master * chore(yarn): Readd offline-plugin * refactor: Use save! and update! * refactor: Send notifications async * fix: Allow retry when push fails * fix: Save track for failed pushes * fix: Minify sw.js * fix: Remove account_id from fabricator
7 years ago
Add back a cleaner and leaner .env.production.sample (#14206)
4 years ago
Web Push Notifications (#3243) * feat: Register push subscription * feat: Notify when mentioned * feat: Boost, favourite, reply, follow, follow request * feat: Notification interaction * feat: Handle change of public key * feat: Unsubscribe if things go wrong * feat: Do not send normal notifications if push is enabled * feat: Focus client if open * refactor: Move push logic to WebPushSubscription * feat: Better title and body * feat: Localize messages * chore: Fix lint errors * feat: Settings * refactor: Lazy load * fix: Check if push settings exist * feat: Device-based preferences * refactor: Simplify logic * refactor: Pull request feedback * refactor: Pull request feedback * refactor: Create /api/web/push_subscriptions endpoint * feat: Spec PushSubscriptionController * refactor: WebPushSubscription => Web::PushSubscription * feat: Spec Web::PushSubscription * feat: Display first media attachment * feat: Support direction * fix: Stuff broken while rebasing * refactor: Integration with session activations * refactor: Cleanup * refactor: Simplify implementation * feat: Set VAPID keys via environment * chore: Comments * fix: Crash when no alerts * fix: Set VAPID keys in testing environment * fix: Follow link * feat: Notification actions * fix: Delete previous subscription * chore: Temporary logs * refactor: Move migration to a later date * fix: Fetch the correct session activation and misc bugs * refactor: Move migration to a later date * fix: Remove follow request (no notifications) * feat: Send administrator contact to push service * feat: Set time-to-live * fix: Do not show sensitive images * fix: Reducer crash in error handling * feat: Add badge * chore: Fix lint error * fix: Checkbox label overlap * fix: Check for payload support * fix: Rename action "type" (crash in latest Chrome) * feat: Action to expand notification * fix: Lint errors * fix: Unescape notification body * fix: Do not allow boosting if the status is hidden * feat: Add VAPID keys to the production sample environment * fix: Strip HTML tags from status * refactor: Better error messages * refactor: Handle browser not implementing the VAPID protocol (Samsung Internet) * fix: Error when target_status is nil * fix: Handle lack of image * fix: Delete reference to invalid subscriptions * feat: Better error handling * fix: Unescape HTML characters after tags are striped * refactor: Simpify code * fix: Modify to work with #4091 * Sort strings alphabetically * i18n: Updated Polish translation it annoys me that it's not fully localized :P * refactor: Use current_session in PushSubscriptionController * fix: Rebase mistake * fix: Set cacheName to mastodon * refactor: Pull request feedback * refactor: Remove logging statements * chore(yarn): Fix conflicts with master * chore(yarn): Copy latest from master * chore(yarn): Readd offline-plugin * refactor: Use save! and update! * refactor: Send notifications async * fix: Allow retry when push fails * fix: Save track for failed pushes * fix: Minify sw.js * fix: Remove account_id from fabricator
7 years ago
Merge branch 'master' into glitch-soc/merge-upstream Conflicts: - `.env.production.sample`: Upstream changed it completely. Changed ours to merge upstream's new structure, but keeping most of the information.
4 years ago
Add single user mode
8 years ago
Merge branch 'master' into glitch-soc/merge-upstream Conflicts: - `.env.production.sample`: Upstream changed it completely. Changed ours to merge upstream's new structure, but keeping most of the information.
4 years ago
Add single user mode
8 years ago
Merge branch 'master' into glitch-soc/merge-upstream Conflicts: - `.env.production.sample`: Upstream changed it completely. Changed ours to merge upstream's new structure, but keeping most of the information.
4 years ago
Add single user mode
8 years ago
Use allow/deny-list instead of white/black-list in .env.production.sample .env.production.sample has been nuked upstream, but we decided to keep it, so change it to reflect latest changes in environment variable names. (The link still refers to “whitelist_mode” because the documentation hasn't been updated yet)
4 years ago
Merge branch 'master' into glitch-soc/merge-upstream Conflicts: - `.env.production.sample`: Upstream changed it completely. Changed ours to merge upstream's new structure, but keeping most of the information.
4 years ago
[#817] Add email whitelist This adds the ability to filter user signup with a whitelist instead of or in addition to a blacklist. Fixes #817
7 years ago
Use allow/deny-list instead of white/black-list in .env.production.sample .env.production.sample has been nuked upstream, but we decided to keep it, so change it to reflect latest changes in environment variable names. (The link still refers to “whitelist_mode” because the documentation hasn't been updated yet)
4 years ago
Add single user mode
8 years ago
Merge branch 'master' into glitch-soc/merge-upstream Conflicts: - `.env.production.sample`: Upstream changed it completely. Changed ours to merge upstream's new structure, but keeping most of the information.
4 years ago
Allow setting of default language through config Setting of locale in controller extracted to Localized concern, the doorkeeper authorized applications controller moved under custom namespace with inclusion of Localized, which resolves the "it sometimes appears in a different random language" bug
7 years ago
Merge branch 'master' into glitch-soc/merge-upstream Conflicts: - `.env.production.sample`: Upstream changed it completely. Changed ours to merge upstream's new structure, but keeping most of the information.
4 years ago
Add back a cleaner and leaner .env.production.sample (#14206)
4 years ago
Adding e-mail configuration
8 years ago
Spelling (#17705) * spelling: account Signed-off-by: Josh Soref <jsoref@users.noreply.github.com> * spelling: affiliated Signed-off-by: Josh Soref <jsoref@users.noreply.github.com> * spelling: appearance Signed-off-by: Josh Soref <jsoref@users.noreply.github.com> * spelling: autosuggest Signed-off-by: Josh Soref <jsoref@users.noreply.github.com> * spelling: cacheable Signed-off-by: Josh Soref <jsoref@users.noreply.github.com> * spelling: component Signed-off-by: Josh Soref <jsoref@users.noreply.github.com> * spelling: conversations Signed-off-by: Josh Soref <jsoref@users.noreply.github.com> * spelling: domain.example Clarify what's distinct and use RFC friendly domain space. Signed-off-by: Josh Soref <jsoref@users.noreply.github.com> * spelling: environment Signed-off-by: Josh Soref <jsoref@users.noreply.github.com> * spelling: exceeds Signed-off-by: Josh Soref <jsoref@users.noreply.github.com> * spelling: functional Signed-off-by: Josh Soref <jsoref@users.noreply.github.com> * spelling: inefficiency Signed-off-by: Josh Soref <jsoref@users.noreply.github.com> * spelling: not Signed-off-by: Josh Soref <jsoref@users.noreply.github.com> * spelling: notifications Signed-off-by: Josh Soref <jsoref@users.noreply.github.com> * spelling: occurring Signed-off-by: Josh Soref <jsoref@users.noreply.github.com> * spelling: position Signed-off-by: Josh Soref <jsoref@users.noreply.github.com> * spelling: progress Signed-off-by: Josh Soref <jsoref@users.noreply.github.com> * spelling: promotable Signed-off-by: Josh Soref <jsoref@users.noreply.github.com> * spelling: reblogging Signed-off-by: Josh Soref <jsoref@users.noreply.github.com> * spelling: repetitive Signed-off-by: Josh Soref <jsoref@users.noreply.github.com> * spelling: resolve Signed-off-by: Josh Soref <jsoref@users.noreply.github.com> * spelling: saturated Signed-off-by: Josh Soref <jsoref@users.noreply.github.com> * spelling: similar Signed-off-by: Josh Soref <jsoref@users.noreply.github.com> * spelling: strategies Signed-off-by: Josh Soref <jsoref@users.noreply.github.com> * spelling: success Signed-off-by: Josh Soref <jsoref@users.noreply.github.com> * spelling: targeting Signed-off-by: Josh Soref <jsoref@users.noreply.github.com> * spelling: thumbnails Signed-off-by: Josh Soref <jsoref@users.noreply.github.com> * spelling: unauthorized Signed-off-by: Josh Soref <jsoref@users.noreply.github.com> * spelling: unsensitizes Signed-off-by: Josh Soref <jsoref@users.noreply.github.com> * spelling: validations Signed-off-by: Josh Soref <jsoref@users.noreply.github.com> * spelling: various Signed-off-by: Josh Soref <jsoref@users.noreply.github.com> Co-authored-by: Josh Soref <jsoref@users.noreply.github.com>
2 years ago
Upgrade Paperclip to 5, AWS-SDK to 2, do not generate medium/small versions of avatars
8 years ago
Add environment variable to specify extra data hosts Fixes #1276
4 years ago
Add back a cleaner and leaner .env.production.sample (#14206)
4 years ago
Cache attachments on external host with service worker (#7493)
6 years ago
Merge branch 'master' into glitch-soc/merge-upstream Conflicts: - `.env.production.sample`: Upstream changed it completely. Changed ours to merge upstream's new structure, but keeping most of the information.
4 years ago
Add config of multipart threshold for S3 (#11924)
5 years ago
Add environment sample for OpenStack Swift (#4816)
7 years ago
Cache attachments on external host with service worker (#7493)
6 years ago
Add environment sample for OpenStack Swift (#4816)
7 years ago
Add OpenStack Keystone V3 support (#4889) Keystone V2 is deprecated in favour of V3. This adds the necessary connection parameters for establishing a V3 connection. Connections to V2 endpoints are still possible and the configuration should remain compatible. This also introduces a SWIFT_REGION variable for multi-region OpenStack environments and a SWIFT_CACHE_TTL that controls how long tokens and other meta-data is cached for. Caching tokens avoids rate-limiting errors that would result in media uploads becoming unavailable during high load or when using tasks like media:remove_remote. fog-openstack only supports token caching for V3 endpoints, so a recommendation for using V3 was added.
7 years ago
Add environment sample for OpenStack Swift (#4816)
7 years ago
Improve OpenStack v3 compatibility (#7392) * Update paperclip.rb * Update .env.production.sample * Update paperclip.rb
6 years ago
Add OpenStack Keystone V3 support (#4889) Keystone V2 is deprecated in favour of V3. This adds the necessary connection parameters for establishing a V3 connection. Connections to V2 endpoints are still possible and the configuration should remain compatible. This also introduces a SWIFT_REGION variable for multi-region OpenStack environments and a SWIFT_CACHE_TTL that controls how long tokens and other meta-data is cached for. Caching tokens avoids rate-limiting errors that would result in media uploads becoming unavailable during high load or when using tasks like media:remove_remote. fog-openstack only supports token caching for V3 endpoints, so a recommendation for using V3 was added.
7 years ago
Add environment sample for OpenStack Swift (#4816)
7 years ago
Add OpenStack Keystone V3 support (#4889) Keystone V2 is deprecated in favour of V3. This adds the necessary connection parameters for establishing a V3 connection. Connections to V2 endpoints are still possible and the configuration should remain compatible. This also introduces a SWIFT_REGION variable for multi-region OpenStack environments and a SWIFT_CACHE_TTL that controls how long tokens and other meta-data is cached for. Caching tokens avoids rate-limiting errors that would result in media uploads becoming unavailable during high load or when using tasks like media:remove_remote. fog-openstack only supports token caching for V3 endpoints, so a recommendation for using V3 was added.
7 years ago
Add environment sample for OpenStack Swift (#4816)
7 years ago
Merge branch 'master' into glitch-soc/merge-upstream Conflicts: - `.env.production.sample`: Upstream changed it completely. Changed ours to merge upstream's new structure, but keeping most of the information.
4 years ago
Rename S3_CLOUDFRONT_HOST to S3_ALIAS_HOST. (#8423) Still check for S3_CLOUDFRONT_HOST for existing installs.
6 years ago
Update sample .env
7 years ago
Make the streaming API also handle websockets (because trying to get the browser EventSource interface to work flawlessly was a nightmare). WARNING: This commit makes the web UI connect to the streaming API instead of ActionCable like before. This means that if you are upgrading, you should set that up beforehand.
7 years ago
Add env variable to disable prepared statements (#1293)
7 years ago
Added max search results var to sample env Added and documented MAX_SEARCH_RESULTS to the .env.production.sample file
5 years ago
Merge branch 'master' into glitch-soc/merge-upstream Conflicts: - `.env.production.sample`: Upstream changed it completely. Changed ours to merge upstream's new structure, but keeping most of the information.
4 years ago
Add LDAP options to .env.production.sample (#6592)
6 years ago
:sparkles: Add an LDAP Mail attribute config (#12053) Signed-off-by: mathieu.brunot <mathieu.brunot@monogramm.io>
5 years ago
:sparkles: Convert LDAP username (#12461) * :sparkles: Convert LDAP username #12021 Signed-off-by: mathieu.brunot <mathieu.brunot@monogramm.io> * :bug: Fix conversion var use Signed-off-by: mathieu.brunot <mathieu.brunot@monogramm.io> * :bug: Fix LDAP uid conversion test Signed-off-by: mathieu.brunot <mathieu.brunot@monogramm.io> * :ok_hand: Remove comments with ref to PR Signed-off-by: mathieu.brunot <mathieu.brunot@monogramm.io> * :ok_hand: Remove unnecessary paranthesis Signed-off-by: mathieu.brunot <mathieu.brunot@monogramm.io> * :wrench: Move space in conversion string Signed-off-by: mathieu.brunot <mathieu.brunot@monogramm.io>
5 years ago
Add LDAP options to .env.production.sample (#6592)
6 years ago
Make PAM gem optional, allow configuration over environment (#6415)
6 years ago
Update pam documentation (#6518) * document pam email extraction * remove superfluous newline
6 years ago
Make PAM gem optional, allow configuration over environment (#6415)
6 years ago
rename pam email environment variable to something more understandable and default to LOCAL_DOMAIN (better fallback) (#6833)
6 years ago
Make PAM gem optional, allow configuration over environment (#6415)
6 years ago
fix logic for pam_controlled_service (#6599)
6 years ago
Make PAM gem optional, allow configuration over environment (#6415)
6 years ago
New variable OAUTH_REDIRECT_AT_SIGN_IN + Ref #6538 (not only SAML strategies) (#6540)
6 years ago
CAS + SAML authentication feature (#6425) * Cas authentication feature * Config * Remove class_eval + Omniauth initializer * Codeclimate review * Codeclimate review 2 * Codeclimate review 3 * Remove uid/email reconciliation * SAML authentication * Clean up code * Improve login form * Fix code style issues * Add locales
6 years ago
Fix sample SAML_ACS_URL, SAML_ISSUER (#12669)
4 years ago
CAS + SAML authentication feature (#6425) * Cas authentication feature * Config * Remove class_eval + Omniauth initializer * Codeclimate review * Codeclimate review 2 * Codeclimate review 3 * Remove uid/email reconciliation * SAML authentication * Clean up code * Improve login form * Fix code style issues * Add locales
6 years ago
New env variable: SAML_SECURITY_ASSUME_EMAIL_IS_VERIFIED + fixes #6533 (#6538)
6 years ago
CAS + SAML authentication feature (#6425) * Cas authentication feature * Config * Remove class_eval + Omniauth initializer * Codeclimate review * Codeclimate review 2 * Codeclimate review 3 * Remove uid/email reconciliation * SAML authentication * Clean up code * Improve login form * Fix code style issues * Add locales
6 years ago
Add additional first_name and last_name SAML attribute statement options, and modify Omniauthable concern to use full_name or first_name + last_name if not available (#6669)
6 years ago
CAS + SAML authentication feature (#6425) * Cas authentication feature * Config * Remove class_eval + Omniauth initializer * Codeclimate review * Codeclimate review 2 * Codeclimate review 3 * Remove uid/email reconciliation * SAML authentication * Clean up code * Improve login form * Fix code style issues * Add locales
6 years ago
New env variable: SAML_SECURITY_ASSUME_EMAIL_IS_VERIFIED + fixes #6533 (#6538)
6 years ago
HTTP proxy support for outgoing request, manage access to hidden service (#7134) * Add support for HTTP client proxy * Add access control for darknet Supress error when access to darknet via transparent proxy * Fix the codes pointed out * Lint * Fix an omission + lint * any? -> include? * Change detection method to regexp to avoid test fail
6 years ago
Document AUTHORIZED_FETCH mode and WHITELIST_MODE (#12856) * Document AUTHORIZED_FETCH mode and WHITELIST_MODE * Replace extended description with a link to the online docs
4 years ago
Merge branch 'master' into glitch-soc/merge-upstream Conflicts: - `.env.production.sample`: Upstream changed it completely. Changed ours to merge upstream's new structure, but keeping most of the information.
4 years ago
Document AUTHORIZED_FETCH mode and WHITELIST_MODE (#12856) * Document AUTHORIZED_FETCH mode and WHITELIST_MODE * Replace extended description with a link to the online docs
4 years ago
Merge branch 'master' into glitch-soc/merge-upstream Conflicts: - `.env.production.sample`: Upstream changed it completely. Changed ours to merge upstream's new structure, but keeping most of the information.
4 years ago
Support customizing poll option limits
3 years ago
Merge branch 'master' into glitch-soc/merge-upstream Conflicts: - `.env.production.sample`: Upstream changed it completely. Changed ours to merge upstream's new structure, but keeping most of the information.
4 years ago
Add environment variables to control custom emoji size limits Fixes #1524
3 years ago
Change default values for emoji limits in .env.production.sample and comment them out
2 years ago
Add optional hCaptcha support Fixes #1649 This requires setting `HCAPTCHA_SECRET_KEY` and `HCAPTCHA_SITE_KEY`, then enabling the admin setting at `/admin/settings/edit#form_admin_settings_captcha_enabled` Subsequently, a hCaptcha widget will be displayed on `/about` and `/auth/sign_up` unless: - the user is already signed-up already - the user has used an invite link - the user has already solved the captcha (and registration failed for another reason) The Content-Security-Policy headers are altered automatically to allow the third-party hCaptcha scripts on `/about` and `/auth/sign_up` following the same rules as above.
2 years ago
ip_cleanup_scheduler: Make IP and session retention configurable (#18757)
2 years ago
 
  1. # This is a sample configuration file. You can generate your configuration
  2. # with the `rake mastodon:setup` interactive setup wizard, but to customize
  3. # your setup even further, you'll need to edit it manually. This sample does
  4. # not demonstrate all available configuration options. Please look at
  5. # https://docs.joinmastodon.org/admin/config/ for the full documentation.
  6. 

  7. # Note that this file accepts slightly different syntax depending on whether
  8. # you are using `docker-compose` or not. In particular, if you use
  9. # `docker-compose`, the value of each declared variable will be taken verbatim,
  10. # including surrounding quotes.
  11. # See: https://github.com/mastodon/mastodon/issues/16895
  12. 

  13. # Federation
  14. # ----------
  15. # This identifies your server and cannot be changed safely later
  16. # ----------
  17. LOCAL_DOMAIN=example.com
  18. 

  19. # Use this only if you need to run mastodon on a different domain than the one used for federation.
  20. # You can read more about this option on https://github.com/tootsuite/documentation/blob/master/Running-Mastodon/Serving_a_different_domain.md
  21. # DO *NOT* USE THIS UNLESS YOU KNOW *EXACTLY* WHAT YOU ARE DOING.
  22. # WEB_DOMAIN=mastodon.example.com
  23. 

  24. # Use this if you want to have several aliases handler@example1.com
  25. # handler@example2.com etc. for the same user. LOCAL_DOMAIN should not
  26. # be added. Comma separated values
  27. # ALTERNATE_DOMAINS=example1.com,example2.com
  28. 

  29. # Use HTTP proxy for outgoing request (optional)
  30. # http_proxy=http://gateway.local:8118
  31. # Access control for hidden service.
  32. # ALLOW_ACCESS_TO_HIDDEN_SERVICE=true
  33. 

  34. # Authorized fetch mode (optional)
  35. # Require remote servers to authentify when fetching toots, see
  36. # https://docs.joinmastodon.org/admin/config/#authorized_fetch
  37. # AUTHORIZED_FETCH=true
  38. 

  39. # Limited federation mode (optional)
  40. # Only allow federation with specific domains, see
  41. # https://docs.joinmastodon.org/admin/config/#whitelist_mode
  42. # LIMITED_FEDERATION_MODE=true
  43. 

  44. # Redis
  45. # -----
  46. REDIS_HOST=localhost
  47. REDIS_PORT=6379
  48. 

  49. 

  50. # PostgreSQL
  51. # ----------
  52. DB_HOST=/var/run/postgresql
  53. DB_USER=mastodon
  54. DB_NAME=mastodon_production
  55. DB_PASS=
  56. DB_PORT=5432
  57. 

  58. 

  59. # Elasticsearch (optional)
  60. # ------------------------
  61. #ES_ENABLED=true
  62. #ES_HOST=localhost
  63. #ES_PORT=9200
  64. # Authentication for ES (optional)
  65. #ES_USER=elastic
  66. #ES_PASS=password
  67. 

  68. 

  69. # Secrets
  70. # -------
  71. # Generate each with the `RAILS_ENV=production bundle exec rake secret` task (`docker-compose run --rm web bundle exec rake secret` if you use docker compose)
  72. # -------
  73. SECRET_KEY_BASE=
  74. OTP_SECRET=
  75. 

  76. 

  77. # Web Push
  78. # --------
  79. # Generate with `rake mastodon:webpush:generate_vapid_key` (first is the private key, second is the public one)
  80. # You should only generate this once per instance. If you later decide to change it, all push subscription will
  81. # be invalidated, requiring the users to access the website again to resubscribe.
  82. # --------
  83. VAPID_PRIVATE_KEY=
  84. VAPID_PUBLIC_KEY=
  85. 

  86. 

  87. # Registrations
  88. # -------------
  89. 

  90. # Single user mode will disable registrations and redirect frontpage to the first profile
  91. # SINGLE_USER_MODE=true
  92. 

  93. # Prevent registrations with following e-mail domains
  94. # EMAIL_DOMAIN_DENYLIST=example1.com|example2.de|etc
  95. 

  96. # Only allow registrations with the following e-mail domains
  97. # EMAIL_DOMAIN_ALLOWLIST=example1.com|example2.de|etc
  98. 

  99. #TODO move this
  100. # Optionally change default language
  101. # DEFAULT_LOCALE=de
  102. 

  103. 

  104. # Sending mail
  105. # ------------
  106. SMTP_SERVER=smtp.mailgun.org
  107. SMTP_PORT=587
  108. SMTP_LOGIN=
  109. SMTP_PASSWORD=
  110. SMTP_FROM_ADDRESS=notifications@example.com
  111. 

  112. 

  113. # File storage (optional)
  114. # -----------------------
  115. # The attachment host must allow cross origin request from WEB_DOMAIN or
  116. # LOCAL_DOMAIN if WEB_DOMAIN is not set. For example, the server may have the
  117. # following header field:
  118. # Access-Control-Allow-Origin: https://192.168.1.123:9000/
  119. # -----------------------
  120. #S3_ENABLED=true
  121. #S3_BUCKET=files.example.com
  122. #AWS_ACCESS_KEY_ID=
  123. #AWS_SECRET_ACCESS_KEY=
  124. #S3_ALIAS_HOST=files.example.com
  125. 

  126. # Swift (optional)
  127. # The attachment host must allow cross origin request - see the description
  128. # above.
  129. # SWIFT_ENABLED=true
  130. # SWIFT_USERNAME=
  131. # For Keystone V3, the value for SWIFT_TENANT should be the project name
  132. # SWIFT_TENANT=
  133. # SWIFT_PASSWORD=
  134. # Some OpenStack V3 providers require PROJECT_ID (optional)
  135. # SWIFT_PROJECT_ID=
  136. # Keystone V2 and V3 URLs are supported. Use a V3 URL if possible to avoid
  137. # issues with token rate-limiting during high load.
  138. # SWIFT_AUTH_URL=
  139. # SWIFT_CONTAINER=
  140. # SWIFT_OBJECT_URL=
  141. # SWIFT_REGION=
  142. # Defaults to 'default'
  143. # SWIFT_DOMAIN_NAME=
  144. # Defaults to 60 seconds. Set to 0 to disable
  145. # SWIFT_CACHE_TTL=
  146. 

  147. # Optional asset host for multi-server setups
  148. # The asset host must allow cross origin request from WEB_DOMAIN or LOCAL_DOMAIN
  149. # if WEB_DOMAIN is not set. For example, the server may have the
  150. # following header field:
  151. # Access-Control-Allow-Origin: https://example.com/
  152. # CDN_HOST=https://assets.example.com
  153. 

  154. # Optional list of hosts that are allowed to serve media for your instance
  155. # This is useful if you include external media in your custom CSS or about page,
  156. # or if your data storage provider makes use of redirects to other domains.
  157. # EXTRA_DATA_HOSTS=https://data.example1.com|https://data.example2.com
  158. 

  159. # Optional alias for S3 (e.g. to serve files on a custom domain, possibly using Cloudfront or Cloudflare)
  160. # S3_ALIAS_HOST=
  161. 

  162. # Streaming API integration
  163. # STREAMING_API_BASE_URL=
  164. 

  165. 

  166. # External authentication (optional)
  167. # ----------------------------------
  168. # LDAP authentication (optional)
  169. # LDAP_ENABLED=true
  170. # LDAP_HOST=localhost
  171. # LDAP_PORT=389
  172. # LDAP_METHOD=simple_tls
  173. # LDAP_BASE=
  174. # LDAP_BIND_DN=
  175. # LDAP_PASSWORD=
  176. # LDAP_UID=cn
  177. # LDAP_MAIL=mail
  178. # LDAP_SEARCH_FILTER=(|(%{uid}=%{email})(%{mail}=%{email}))
  179. # LDAP_UID_CONVERSION_ENABLED=true
  180. # LDAP_UID_CONVERSION_SEARCH=., -
  181. # LDAP_UID_CONVERSION_REPLACE=_
  182. 

  183. # PAM authentication (optional)
  184. # PAM authentication uses for the email generation the "email" pam variable
  185. # and optional as fallback PAM_DEFAULT_SUFFIX
  186. # The pam environment variable "email" is provided by:
  187. # https://github.com/devkral/pam_email_extractor
  188. # PAM_ENABLED=true
  189. # Fallback email domain for email address generation (LOCAL_DOMAIN by default)
  190. # PAM_EMAIL_DOMAIN=example.com
  191. # Name of the pam service (pam "auth" section is evaluated)
  192. # PAM_DEFAULT_SERVICE=rpam
  193. # Name of the pam service used for checking if an user can register (pam "account" section is evaluated) (nil (disabled) by default)
  194. # PAM_CONTROLLED_SERVICE=rpam
  195. 

  196. # Global OAuth settings (optional) :
  197. # If you have only one strategy, you may want to enable this
  198. # OAUTH_REDIRECT_AT_SIGN_IN=true
  199. 

  200. # Optional CAS authentication (cf. omniauth-cas) :
  201. # CAS_ENABLED=true
  202. # CAS_URL=https://sso.myserver.com/
  203. # CAS_HOST=sso.myserver.com/
  204. # CAS_PORT=443
  205. # CAS_SSL=true
  206. # CAS_VALIDATE_URL=
  207. # CAS_CALLBACK_URL=
  208. # CAS_LOGOUT_URL=
  209. # CAS_LOGIN_URL=
  210. # CAS_UID_FIELD='user'
  211. # CAS_CA_PATH=
  212. # CAS_DISABLE_SSL_VERIFICATION=false
  213. # CAS_UID_KEY='user'
  214. # CAS_NAME_KEY='name'
  215. # CAS_EMAIL_KEY='email'
  216. # CAS_NICKNAME_KEY='nickname'
  217. # CAS_FIRST_NAME_KEY='firstname'
  218. # CAS_LAST_NAME_KEY='lastname'
  219. # CAS_LOCATION_KEY='location'
  220. # CAS_IMAGE_KEY='image'
  221. # CAS_PHONE_KEY='phone'
  222. 

  223. # Optional SAML authentication (cf. omniauth-saml)
  224. # SAML_ENABLED=true
  225. # SAML_ACS_URL=http://localhost:3000/auth/auth/saml/callback
  226. # SAML_ISSUER=https://example.com
  227. # SAML_IDP_SSO_TARGET_URL=https://idp.testshib.org/idp/profile/SAML2/Redirect/SSO
  228. # SAML_IDP_CERT=
  229. # SAML_IDP_CERT_FINGERPRINT=
  230. # SAML_NAME_IDENTIFIER_FORMAT=
  231. # SAML_CERT=
  232. # SAML_PRIVATE_KEY=
  233. # SAML_SECURITY_WANT_ASSERTION_SIGNED=true
  234. # SAML_SECURITY_WANT_ASSERTION_ENCRYPTED=true
  235. # SAML_SECURITY_ASSUME_EMAIL_IS_VERIFIED=true
  236. # SAML_ATTRIBUTES_STATEMENTS_UID="urn:oid:0.9.2342.19200300.100.1.1"
  237. # SAML_ATTRIBUTES_STATEMENTS_EMAIL="urn:oid:1.3.6.1.4.1.5923.1.1.1.6"
  238. # SAML_ATTRIBUTES_STATEMENTS_FULL_NAME="urn:oid:2.16.840.1.113730.3.1.241"
  239. # SAML_ATTRIBUTES_STATEMENTS_FIRST_NAME="urn:oid:2.5.4.42"
  240. # SAML_ATTRIBUTES_STATEMENTS_LAST_NAME="urn:oid:2.5.4.4"
  241. # SAML_UID_ATTRIBUTE="urn:oid:0.9.2342.19200300.100.1.1"
  242. # SAML_ATTRIBUTES_STATEMENTS_VERIFIED=
  243. # SAML_ATTRIBUTES_STATEMENTS_VERIFIED_EMAIL=
  244. 

  245. 

  246. # Custom settings
  247. # ---------------
  248. # Various ways to customize Mastodon's behavior
  249. # ---------------
  250.  
  251. # Maximum allowed character count
  252. MAX_TOOT_CHARS=500
  253. 

  254. # Maximum number of pinned posts
  255. MAX_PINNED_TOOTS=5
  256. 

  257. # Maximum allowed bio characters
  258. MAX_BIO_CHARS=500
  259. 

  260. # Maximim number of profile fields allowed
  261. MAX_PROFILE_FIELDS=4
  262. 

  263. # Maximum allowed display name characters
  264. MAX_DISPLAY_NAME_CHARS=30
  265. 

  266. # Maximum allowed poll options
  267. MAX_POLL_OPTIONS=5
  268. 

  269. # Maximum allowed poll option characters
  270. MAX_POLL_OPTION_CHARS=100
  271. 

  272. # Maximum image and video/audio upload sizes
  273. # Units are in bytes
  274. # 1048576 bytes equals 1 megabyte
  275. # MAX_IMAGE_SIZE=8388608
  276. # MAX_VIDEO_SIZE=41943040
  277. 

  278. # Maximum search results to display
  279. # Only relevant when elasticsearch is installed
  280. # MAX_SEARCH_RESULTS=20
  281. 

  282. # Maximum custom emoji file sizes
  283. # If undefined or smaller than MAX_EMOJI_SIZE, the value
  284. # of MAX_EMOJI_SIZE will be used for MAX_REMOTE_EMOJI_SIZE
  285. # Units are in bytes
  286. # MAX_EMOJI_SIZE=262144
  287. # MAX_REMOTE_EMOJI_SIZE=262144
  288. 

  289. # Optional hCaptcha support
  290. # HCAPTCHA_SECRET_KEY=
  291. # HCAPTCHA_SITE_KEY=
  292. 

  293. # IP and session retention
  294. # -----------------------
  295. # Make sure to modify the scheduling of ip_cleanup_scheduler in config/sidekiq.yml
  296. # to be less than daily if you lower IP_RETENTION_PERIOD below two days (172800).
  297. # -----------------------
  298. IP_RETENTION_PERIOD=31556952
  299. SESSION_RETENTION_PERIOD=31556952