debian-mirror-gitlab/debian/gitlab.templates

Template: gitlab/fqdn
Type: string
Default: localhost
_Description: Fully qualified domain name for this instance of Gitlab:
 Please choose the domain name which should be used to access this
 instance of Gitlab.
 .
 This should be the fully qualified name as seen from the Internet, with
 the domain name that will be used to access the pod.
 .
 If a reverse proxy is used, give the hostname that the proxy server
 responds to.

Template: gitlab/ssl
Type: boolean
Default: false
_Description: Enable https?
 Enabling https means that an SSL certificate is required to access this Gitlab
 instance (as Nginx will be configured to respond only to https requests). A
 self-signed certificate is enough for local testing (and can be generated
 using, for instance, the package easy-rsa), but it is not recommended for a
 production instance.
 .
 Some certificate authorities like Let's Encrypt (letsencrypt.org), CAcert
 (cacert.org), or WoSign (buy.wosign.com/free) offer free SSL certificates.
 .
 Nginx must be reloaded after the certificate and key files are made available
 at /etc/gitlab/ssl. letsencrypt package may be used to automate interaction
 with Let's Encrypt to obtain a certificate.

Template: gitlab/letsencrypt
Type: boolean
Default: false
_Description: Use Let's Encrypt?
 Symbolic links to certificate and key created using letsencrypt package
 (/etc/letencrypt/live) will be added to /etc/gitlab/ssl if this option is
 selected.
 .
 Otherwise, certificate and key files have to be placed manually to
 /etc/gitlab/ssl directory as 'gitlab.crt' and 'gitlab.key'.
 .
 Nginx will be stopped, if this option is selected, to allow letsencrypt to use
 ports 80 and 443 during domain ownership validation and certificate retrieval
 step.
 .
 Note: letsencrypt does not have a usable nginx plugin currently, so
 certificates must be renewed manually after 3 months, when current
 letsencrypt certificate expire.
add debconf option 2016-01-16 15:43:30 +05:30			`Template: gitlab/fqdn`
			`Type: string`
			`Default: localhost`
			`_Description: Fully qualified domain name for this instance of Gitlab:`
			`Please choose the domain name which should be used to access this`
			`instance of Gitlab.`
			`.`
			`This should be the fully qualified name as seen from the Internet, with`
			`the domain name that will be used to access the pod.`
			`.`
			`If a reverse proxy is used, give the hostname that the proxy server`
			`responds to.`
add config and templates 2015-10-24 13:00:34 +05:30
			`Template: gitlab/ssl`
			`Type: boolean`
make ssl and letsencrypt false by default 2016-02-09 16:17:52 +05:30			`Default: false`
add config and templates 2015-10-24 13:00:34 +05:30			`_Description: Enable https?`
add letsencrypt details 2016-02-05 23:38:43 +05:30			`Enabling https means that an SSL certificate is required to access this Gitlab`
			`instance (as Nginx will be configured to respond only to https requests). A`
			`self-signed certificate is enough for local testing (and can be generated`
			`using, for instance, the package easy-rsa), but it is not recommended for a`
			`production instance.`
add config and templates 2015-10-24 13:00:34 +05:30			`.`
templates: StartSSL --> CAcert Replace StartSSL with CAcert. StartSSL is often advertised as free CA but they are not that great: free only for non-profits and can refuse to renew certificates. CAcert is a non-profit community-governed CA. 2016-07-17 23:54:13 +05:30			`Some certificate authorities like Let's Encrypt (letsencrypt.org), CAcert`
			`(cacert.org), or WoSign (buy.wosign.com/free) offer free SSL certificates.`
add config and templates 2015-10-24 13:00:34 +05:30			`.`
update template ordering 2016-02-12 17:39:53 +05:30			`Nginx must be reloaded after the certificate and key files are made available`
			`at /etc/gitlab/ssl. letsencrypt package may be used to automate interaction`
templates: normalise apostrophe 2016-07-17 23:50:43 +05:30			`with Let's Encrypt to obtain a certificate.`
add letencrypt option 2016-02-05 23:51:05 +05:30
			`Template: gitlab/letsencrypt`
			`Type: boolean`
make ssl and letsencrypt false by default 2016-02-09 16:17:52 +05:30			`Default: false`
add letencrypt option 2016-02-05 23:51:05 +05:30			`_Description: Use Let's Encrypt?`
update templates 2016-02-07 14:40:33 +05:30			`Symbolic links to certificate and key created using letsencrypt package`
			`(/etc/letencrypt/live) will be added to /etc/gitlab/ssl if this option is`
			`selected.`
add letencrypt option 2016-02-05 23:51:05 +05:30			`.`
			`Otherwise, certificate and key files have to be placed manually to`
update templates 2016-02-07 14:40:33 +05:30			`/etc/gitlab/ssl directory as 'gitlab.crt' and 'gitlab.key'.`
add letencrypt option 2016-02-05 23:51:05 +05:30			`.`
stop nginx and retrieve letsencrypt cert 2016-02-11 01:37:00 +05:30			`Nginx will be stopped, if this option is selected, to allow letsencrypt to use`
			`ports 80 and 443 during domain ownership validation and certificate retrieval`
			`step.`
add note about missing nginx plugin 2016-02-11 01:38:57 +05:30			`.`
update template language style 2016-02-13 20:12:37 +05:30			`Note: letsencrypt does not have a usable nginx plugin currently, so`
			`certificates must be renewed manually after 3 months, when current`
			`letsencrypt certificate expire.`