debian-mirror-gitlab/config/application.rb

246 lines
10 KiB
Ruby
Raw Normal View History

2018-11-18 11:00:15 +05:30
require File.expand_path('boot', __dir__)
2014-09-02 18:07:02 +05:30
require 'rails/all'
2016-06-02 11:05:42 +05:30
2014-09-02 18:07:02 +05:30
Bundler.require(:default, Rails.env)
module Gitlab
class Application < Rails::Application
2018-03-17 18:26:18 +05:30
require_dependency Rails.root.join('lib/gitlab/redis/wrapper')
2017-09-10 17:25:29 +05:30
require_dependency Rails.root.join('lib/gitlab/redis/cache')
require_dependency Rails.root.join('lib/gitlab/redis/queues')
require_dependency Rails.root.join('lib/gitlab/redis/shared_state')
2017-08-17 22:00:37 +05:30
require_dependency Rails.root.join('lib/gitlab/request_context')
2018-03-27 19:54:05 +05:30
require_dependency Rails.root.join('lib/gitlab/current_settings')
2018-11-08 19:23:39 +05:30
require_dependency Rails.root.join('lib/gitlab/middleware/read_only')
2018-12-05 23:21:45 +05:30
require_dependency Rails.root.join('lib/gitlab/middleware/basic_health_check')
2018-11-08 19:23:39 +05:30
# This needs to be loaded before DB connection is made
# to make sure that all connections have NO_ZERO_DATE
# setting disabled
require_dependency Rails.root.join('lib/mysql_zero_date')
2016-06-02 11:05:42 +05:30
2014-09-02 18:07:02 +05:30
# Settings in config/environments/* take precedence over those specified here.
# Application configuration should go into files in config/initializers
# -- all .rb files in that directory are automatically loaded.
2016-06-02 11:05:42 +05:30
# Sidekiq uses eager loading, but directories not in the standard Rails
# directories must be added to the eager load paths:
# https://github.com/mperham/sidekiq/wiki/FAQ#why-doesnt-sidekiq-autoload-my-rails-application-code
# Also, there is no need to add `lib` to autoload_paths since autoloading is
# configured to check for eager loaded paths:
# https://github.com/rails/rails/blob/v4.2.6/railties/lib/rails/engine.rb#L687
# This is a nice reference article on autoloading/eager loading:
# http://blog.arkency.com/2014/11/dont-forget-about-eager-load-when-extending-autoload
2017-09-10 17:25:29 +05:30
config.eager_load_paths.push(*%W[#{config.root}/lib
2018-03-27 19:54:05 +05:30
#{config.root}/app/models/badges
2016-06-02 11:05:42 +05:30
#{config.root}/app/models/hooks
#{config.root}/app/models/members
2016-11-03 12:29:30 +05:30
#{config.root}/app/models/project_services
2017-08-17 22:00:37 +05:30
#{config.root}/app/workers/concerns
2018-11-18 11:00:15 +05:30
#{config.root}/app/policies/concerns
2017-09-10 17:25:29 +05:30
#{config.root}/app/services/concerns
2018-03-17 18:26:18 +05:30
#{config.root}/app/serializers/concerns
2018-11-08 19:23:39 +05:30
#{config.root}/app/finders/concerns
2018-11-18 11:00:15 +05:30
#{config.root}/app/graphql/resolvers/concerns
#{config.root}/app/graphql/mutations/concerns])
2016-06-02 11:05:42 +05:30
config.generators.templates.push("#{config.root}/generator_templates")
2014-09-02 18:07:02 +05:30
2018-03-17 18:26:18 +05:30
# Rake tasks ignore the eager loading settings, so we need to set the
# autoload paths explicitly
config.autoload_paths = config.eager_load_paths.dup
2014-09-02 18:07:02 +05:30
# Only load the plugins named here, in the order given (default is alphabetical).
# :all can be used as a placeholder for all plugins not explicitly named.
# config.plugins = [ :exception_notification, :ssl_requirement, :all ]
# The default locale is :en and all translations from config/locales/*.rb,yml are auto loaded.
# config.i18n.load_path += Dir[Rails.root.join('my', 'locales', '*.{rb,yml}').to_s]
# config.i18n.default_locale = :de
config.i18n.enforce_available_locales = false
2019-02-15 15:39:39 +05:30
# Enable locale fallbacks for I18n (makes lookups for any locale fall back to
# the I18n.default_locale when a translation can not be found).
# We have to explicitly set default locale since 1.1.0 - see:
# https://github.com/svenfuchs/i18n/pull/415
config.i18n.fallbacks = [:en]
2017-08-17 22:00:37 +05:30
# Translation for AR attrs is not working well for POROs like WikiPage
config.gettext_i18n_rails.use_for_active_record_attributes = false
2014-09-02 18:07:02 +05:30
# Configure the default encoding used in templates for Ruby 1.9.
config.encoding = "utf-8"
2018-11-08 19:23:39 +05:30
# ActionCable mount point.
# The default Rails' mount point is `/cable` which may conflict with existing
# namespaces/users.
# https://github.com/rails/rails/blob/5-0-stable/actioncable/lib/action_cable.rb#L38
# Please change this value when configuring ActionCable for real usage.
2019-02-15 15:39:39 +05:30
config.action_cable.mount_path = "/-/cable"
2018-11-08 19:23:39 +05:30
2014-09-02 18:07:02 +05:30
# Configure sensitive parameters which will be filtered from the log file.
2016-06-02 11:05:42 +05:30
#
# Parameters filtered:
2018-03-17 18:26:18 +05:30
# - Any parameter ending with `token`
2017-09-10 17:25:29 +05:30
# - Any parameter containing `password`
# - Any parameter containing `secret`
2018-12-05 23:21:45 +05:30
# - Any parameter ending with `key`
2016-06-02 11:05:42 +05:30
# - Two-factor tokens (:otp_attempt)
# - Repo/Project Import URLs (:import_url)
2018-03-17 18:26:18 +05:30
# - Build traces (:trace)
2016-06-02 11:05:42 +05:30
# - Build variables (:variables)
# - GitLab Pages SSL cert/key info (:certificate, :encrypted_key)
# - Webhook URLs (:hook)
# - Sentry DSN (:sentry_dsn)
2018-11-08 19:23:39 +05:30
# - File content from Web Editor (:content)
2018-11-29 20:51:05 +05:30
#
2018-12-13 13:39:08 +05:30
# NOTE: It is **IMPORTANT** to also update gitlab-workhorse's filter when adding parameters here to not
# introduce another security vulnerability: https://gitlab.com/gitlab-org/gitlab-workhorse/issues/182
2018-11-29 20:51:05 +05:30
config.filter_parameters += [/token$/, /password/, /secret/, /key$/]
2016-06-02 11:05:42 +05:30
config.filter_parameters += %i(
certificate
encrypted_key
hook
import_url
otp_attempt
sentry_dsn
2018-03-17 18:26:18 +05:30
trace
2016-06-02 11:05:42 +05:30
variables
2018-11-08 19:23:39 +05:30
content
2016-06-02 11:05:42 +05:30
)
2014-09-02 18:07:02 +05:30
# Enable escaping HTML in JSON.
config.active_support.escape_html_entities_in_json = true
# Use SQL instead of Active Record's schema dumper when creating the database.
# This is necessary if your schema can't be completely dumped by the schema dumper,
# like if you have constraints or database-specific column types
# config.active_record.schema_format = :sql
2017-08-17 22:00:37 +05:30
# Configure webpack
config.webpack.config_file = "config/webpack.config.js"
config.webpack.output_dir = "public/assets/webpack"
config.webpack.public_path = "assets/webpack"
# Webpack dev server configuration is handled in initializers/static_files.rb
config.webpack.dev_server.enabled = false
2014-09-02 18:07:02 +05:30
# Enable the asset pipeline
config.assets.enabled = true
2018-03-17 18:26:18 +05:30
2017-08-17 22:00:37 +05:30
# Support legacy unicode file named img emojis, `1F939.png`
2016-08-24 12:49:21 +05:30
config.assets.paths << Gemojione.images_path
2018-03-17 18:26:18 +05:30
config.assets.paths << "#{config.root}/vendor/assets/fonts"
2014-09-02 18:07:02 +05:30
config.assets.precompile << "print.css"
2016-06-02 11:05:42 +05:30
config.assets.precompile << "notify.css"
config.assets.precompile << "mailers/*.css"
2018-11-18 11:00:15 +05:30
config.assets.precompile << "page_bundles/ide.css"
2018-12-05 23:21:45 +05:30
config.assets.precompile << "page_bundles/xterm.css"
2017-09-10 17:25:29 +05:30
config.assets.precompile << "performance_bar.css"
2017-08-17 22:00:37 +05:30
config.assets.precompile << "lib/ace.js"
config.assets.precompile << "test.css"
2018-10-15 14:42:47 +05:30
config.assets.precompile << "snippets.css"
2018-03-17 18:26:18 +05:30
config.assets.precompile << "locale/**/app.js"
2018-10-15 14:42:47 +05:30
config.assets.precompile << "emoji_sprites.css"
2018-11-08 19:23:39 +05:30
config.assets.precompile << "errors.css"
2019-02-15 15:39:39 +05:30
config.assets.precompile << "csslab.css"
2014-09-02 18:07:02 +05:30
2018-05-09 12:01:36 +05:30
# Import gitlab-svgs directly from vendored directory
2018-12-13 13:39:08 +05:30
config.assets.paths << "#{config.root}/node_modules/@gitlab/svgs/dist"
2018-05-09 12:01:36 +05:30
config.assets.precompile << "icons.svg"
config.assets.precompile << "icons.json"
config.assets.precompile << "illustrations/*.svg"
2018-11-18 11:00:15 +05:30
# Import css for xterm
config.assets.paths << "#{config.root}/node_modules/xterm/src/"
config.assets.precompile << "xterm.css"
2014-09-02 18:07:02 +05:30
# Version of your assets, change this if you want to expire all your assets
config.assets.version = '1.0'
2015-04-26 12:48:37 +05:30
config.action_view.sanitized_allowed_protocols = %w(smb)
2019-03-02 22:35:43 +05:30
# Can be removed once upgraded to Rails 5.1 or higher
config.action_controller.raise_on_unfiltered_parameters = true
2019-02-15 15:39:39 +05:30
# Nokogiri is significantly faster and uses less memory than REXML
ActiveSupport::XmlMini.backend = 'Nokogiri'
2018-11-18 11:00:15 +05:30
# This middleware needs to precede ActiveRecord::QueryCache and other middlewares that
# connect to the database.
2018-12-05 23:21:45 +05:30
config.middleware.insert_after Rails::Rack::Logger, ::Gitlab::Middleware::BasicHealthCheck
2018-11-18 11:00:15 +05:30
2018-03-17 18:26:18 +05:30
config.middleware.insert_after Warden::Manager, Rack::Attack
2014-09-02 18:07:02 +05:30
# Allow access to GitLab API from other domains
2016-10-01 15:18:49 +05:30
config.middleware.insert_before Warden::Manager, Rack::Cors do
allow do
origins Gitlab.config.gitlab.url
resource '/api/*',
credentials: true,
headers: :any,
methods: :any,
2017-08-17 22:00:37 +05:30
expose: ['Link', 'X-Total', 'X-Total-Pages', 'X-Per-Page', 'X-Page', 'X-Next-Page', 'X-Prev-Page']
2016-10-01 15:18:49 +05:30
end
# Cross-origin requests must not have the session cookie available
2014-09-02 18:07:02 +05:30
allow do
origins '*'
2015-04-26 12:48:37 +05:30
resource '/api/*',
2016-10-01 15:18:49 +05:30
credentials: false,
2015-04-26 12:48:37 +05:30
headers: :any,
2015-10-24 18:46:33 +05:30
methods: :any,
2017-08-17 22:00:37 +05:30
expose: ['Link', 'X-Total', 'X-Total-Pages', 'X-Per-Page', 'X-Page', 'X-Next-Page', 'X-Prev-Page']
2014-09-02 18:07:02 +05:30
end
end
2015-04-26 12:48:37 +05:30
2017-09-10 17:25:29 +05:30
# Use caching across all environments
caching_config_hash = Gitlab::Redis::Cache.params
caching_config_hash[:namespace] = Gitlab::Redis::Cache::CACHE_NAMESPACE
caching_config_hash[:expires_in] = 2.weeks # Cache should not grow forever
2016-11-03 12:29:30 +05:30
if Sidekiq.server? # threaded context
2017-09-10 17:25:29 +05:30
caching_config_hash[:pool_size] = Sidekiq.options[:concurrency] + 5
caching_config_hash[:pool_timeout] = 1
2016-11-03 12:29:30 +05:30
end
2018-03-17 18:26:18 +05:30
2017-09-10 17:25:29 +05:30
config.cache_store = :redis_store, caching_config_hash
2015-04-26 12:48:37 +05:30
2015-12-23 02:04:40 +05:30
config.active_job.queue_adapter = :sidekiq
2015-04-26 12:48:37 +05:30
# This is needed for gitlab-shell
ENV['GITLAB_PATH_OUTSIDE_HOOK'] = ENV['PATH']
2017-08-17 22:00:37 +05:30
ENV['GIT_TERMINAL_PROMPT'] = '0'
2016-06-02 11:05:42 +05:30
2018-12-05 23:21:45 +05:30
# GitLab Read-only middleware support
2018-11-08 19:23:39 +05:30
config.middleware.insert_after ActionDispatch::Flash, ::Gitlab::Middleware::ReadOnly
2018-03-17 18:26:18 +05:30
2016-06-02 11:05:42 +05:30
config.generators do |g|
2018-03-17 18:26:18 +05:30
g.factory_bot false
2016-06-02 11:05:42 +05:30
end
2017-09-10 17:25:29 +05:30
config.after_initialize do
Rails.application.reload_routes!
project_url_helpers = Module.new do
extend ActiveSupport::Concern
Gitlab::Application.routes.named_routes.helper_names.each do |name|
next unless name.include?('namespace_project')
define_method(name.sub('namespace_project', 'project')) do |project, *args|
2018-11-18 11:00:15 +05:30
send(name, project&.namespace, project, *args)
2017-09-10 17:25:29 +05:30
end
end
end
# We add the MilestonesRoutingHelper because we know that this does not
# conflict with the methods defined in `project_url_helpers`, and we want
# these methods available in the same places.
Gitlab::Routing.add_helpers(project_url_helpers)
Gitlab::Routing.add_helpers(MilestonesRoutingHelper)
end
2014-09-02 18:07:02 +05:30
end
end