forked from gitea/gitea
366 lines
18 KiB
Markdown
366 lines
18 KiB
Markdown
---
|
|
date: "2016-12-26T16:00:00+02:00"
|
|
title: "Config Cheat Sheet"
|
|
slug: "config-cheat-sheet"
|
|
weight: 20
|
|
toc: false
|
|
draft: false
|
|
menu:
|
|
sidebar:
|
|
parent: "advanced"
|
|
name: "Config Cheat Sheet"
|
|
weight: 20
|
|
identifier: "config-cheat-sheet"
|
|
---
|
|
|
|
# Configuration Cheat Sheet
|
|
|
|
This is a cheat sheet for the Gitea configuration file. It contains most settings
|
|
that can configured as well as their default values.
|
|
|
|
Any changes to the Gitea configuration file should be made in `custom/conf/app.ini`
|
|
or any corresponding location. When installing from a distribution, this will
|
|
typically be found at `/etc/gitea/conf/app.ini`.
|
|
|
|
The defaults provided here are best-effort (not built automatically). They are
|
|
accurately recorded in [app.ini.sample](https://github.com/go-gitea/gitea/blob/master/custom/conf/app.ini.sample)
|
|
(s/master/\<tag|release\>). Any string in the format `%(X)s` is a feature powered
|
|
by [ini](https://github.com/go-ini/ini/#recursive-values), for reading values recursively.
|
|
|
|
Values containing `#` or `;` must be quoted using `` ` `` or `"""`.
|
|
|
|
**Note:** A full restart is required for Gitea configuration changes to take effect.
|
|
|
|
## Overall (`DEFAULT`)
|
|
|
|
- `APP_NAME`: **Gitea: Git with a cup of tea**: Application name, used in the page title.
|
|
- `RUN_USER`: **git**: The user Gitea will run as. This should be a dedicated system
|
|
(non-user) account. Setting this incorrectly will cause Gitea to not start.
|
|
- `RUN_MODE`: **dev**: For performance and other purposes, change this to `prod` when
|
|
deployed to a production environment. The installation process will set this to `prod`
|
|
automatically. \[prod, dev, test\]
|
|
|
|
## Repository (`repository`)
|
|
|
|
- `ROOT`: **~/gitea-repositories/**: Root path for storing all repository data. It must be
|
|
an absolute path.
|
|
- `SCRIPT_TYPE`: **bash**: The script type this server supports, usually this is `bash`,
|
|
but some users report that only `sh` is available.
|
|
- `ANSI_CHARSET`: **\<empty\>**: The default charset for an unrecognized charset.
|
|
- `FORCE_PRIVATE`: **false**: Force every new repository to be private.
|
|
- `DEFAULT_PRIVATE`: **last**: Default private when creating a new repository.
|
|
\[last, private, public\]
|
|
- `MAX_CREATION_LIMIT`: **-1**: Global maximum creation limit of repositories per user,
|
|
`-1` means no limit.
|
|
- `PULL_REQUEST_QUEUE_LENGTH`: **1000**: Length of pull request patch test queue, make it
|
|
as large as possible. Use caution when editing this value.
|
|
- `MIRROR_QUEUE_LENGTH`: **1000**: Patch test queue length, increase if pull request patch
|
|
testing starts hanging.
|
|
- `PREFERRED_LICENSES`: **Apache License 2.0,MIT License**: Preferred Licenses to place at
|
|
the top of the list. Name must match file name in conf/license or custom/conf/license.
|
|
- `DISABLE_HTTP_GIT`: **false**: Disable the ability to interact with repositories over the
|
|
HTTP protocol.
|
|
- `USE_COMPAT_SSH_URI`: **false**: Force ssh:// clone url instead of scp-style uri when
|
|
default SSH port is used.
|
|
|
|
### Repository - Pull Request (`repository.pull-request`)
|
|
- `WORK_IN_PROGRESS_PREFIXES`: **WIP:,\[WIP\]**: List of prefixes used in Pull Request
|
|
title to mark them as Work In Progress
|
|
|
|
## UI (`ui`)
|
|
|
|
- `EXPLORE_PAGING_NUM`: **20**: Number of repositories that are shown in one explore page.
|
|
- `ISSUE_PAGING_NUM`: **10**: Number of issues that are shown in one page (for all pages that list issues).
|
|
- `FEED_MAX_COMMIT_NUM`: **5**: Number of maximum commits shown in one activity feed.
|
|
- `GRAPH_MAX_COMMIT_NUM`: **100**: Number of maximum commits shown in the commit graph.
|
|
- `DEFAULT_THEME`: **gitea**: \[gitea, arc-green\]: Set the default theme for the Gitea install.
|
|
|
|
### UI - Admin (`ui.admin`)
|
|
|
|
- `USER_PAGING_NUM`: **50**: Number of users that are shown in one page.
|
|
- `REPO_PAGING_NUM`: **50**: Number of repos that are shown in one page.
|
|
- `NOTICE_PAGING_NUM`: **25**: Number of notices that are shown in one page.
|
|
- `ORG_PAGING_NUM`: **50**: Number of organizations that are shown in one page.
|
|
|
|
## Markdown (`markdown`)
|
|
|
|
- `ENABLE_HARD_LINE_BREAK`: **false**: Enable Markdown's hard line break extension.
|
|
|
|
## Server (`server`)
|
|
|
|
- `PROTOCOL`: **http**: \[http, https, fcgi, unix\]
|
|
- `DOMAIN`: **localhost**: Domain name of this server.
|
|
- `ROOT_URL`: **%(PROTOCOL)s://%(DOMAIN)s:%(HTTP\_PORT)s/**:
|
|
Overwrite the automatically generated public URL.
|
|
This is useful if the internal and the external URL don't match (e.g. in Docker).
|
|
- `HTTP_ADDR`: **0.0.0.0**: HTTP listen address.
|
|
- If `PROTOCOL` is set to `fcgi`, Gitea will listen for FastCGI requests on TCP socket
|
|
defined by `HTTP_ADDR` and `HTTP_PORT` configuration settings.
|
|
- If `PROTOCOL` is set to `unix`, this should be the name of the Unix socket file to use.
|
|
- `HTTP_PORT`: **3000**: HTTP listen port.
|
|
- If `PROTOCOL` is set to `fcgi`, Gitea will listen for FastCGI requests on TCP socket
|
|
defined by `HTTP_ADDR` and `HTTP_PORT` configuration settings.
|
|
- `UNIX_SOCKET_PERMISSION`: **666**: Permissions for the Unix socket.
|
|
- `LOCAL_ROOT_URL`: **%(PROTOCOL)s://%(HTTP_ADDR)s:%(HTTP_PORT)s/**: Local
|
|
(DMZ) URL for Gitea workers (such as SSH update) accessing web service. In
|
|
most cases you do not need to change the default value. Alter it only if
|
|
your SSH server node is not the same as HTTP node. Do not set this variable
|
|
if `PROTOCOL` is set to `unix`.
|
|
- `DISABLE_SSH`: **false**: Disable SSH feature when it's not available.
|
|
- `START_SSH_SERVER`: **false**: When enabled, use the built-in SSH server.
|
|
- `SSH_DOMAIN`: **%(DOMAIN)s**: Domain name of this server, used for displayed clone URL.
|
|
- `SSH_PORT`: **22**: SSH port displayed in clone URL.
|
|
- `SSH_LISTEN_PORT`: **%(SSH\_PORT)s**: Port for the built-in SSH server.
|
|
- `OFFLINE_MODE`: **false**: Disables use of CDN for static files and Gravatar for profile pictures.
|
|
- `DISABLE_ROUTER_LOG`: **false**: Mute printing of the router log.
|
|
- `CERT_FILE`: **custom/https/cert.pem**: Cert file path used for HTTPS.
|
|
- `KEY_FILE`: **custom/https/key.pem**: Key file path used for HTTPS.
|
|
- `STATIC_ROOT_PATH`: **./**: Upper level of template and static files path.
|
|
- `ENABLE_GZIP`: **false**: Enables application-level GZIP support.
|
|
- `LANDING_PAGE`: **home**: Landing page for unauthenticated users \[home, explore\].
|
|
- `LFS_START_SERVER`: **false**: Enables git-lfs support.
|
|
- `LFS_CONTENT_PATH`: **./data/lfs**: Where to store LFS files.
|
|
- `LFS_JWT_SECRET`: **\<empty\>**: LFS authentication secret, change this a unique string.
|
|
- `LFS_HTTP_AUTH_EXPIRY`: **20m**: LFS authentication validity period in time.Duration, pushes taking longer than this may fail.
|
|
- `REDIRECT_OTHER_PORT`: **false**: If true and `PROTOCOL` is https, redirects http requests
|
|
on another (https) port.
|
|
- `PORT_TO_REDIRECT`: **80**: Port used when `REDIRECT_OTHER_PORT` is true.
|
|
- `ENABLE_LETSENCRYPT`: **false**: If enabled you must set `DOMAIN` to valid internet facing domain (ensure DNS is set and port 80 is accessible by letsencrypt validation server).
|
|
By using Lets Encrypt **you must consent** to their [terms of service](https://letsencrypt.org/documents/LE-SA-v1.2-November-15-2017.pdf).
|
|
- `LETSENCRYPT_ACCEPTTOS`: **false**: This is an explicit check that you accept the terms of service for Let's Encrypt.
|
|
- `LETSENCRYPT_DIRECTORY`: **https**: Directory that Letsencrypt will use to cache information such as certs and private keys.
|
|
- `LETSENCRYPT_EMAIL`: **email@example.com**: Email used by Letsencrypt to notify about problems with issued certificates. (No default)
|
|
|
|
## Database (`database`)
|
|
|
|
- `DB_TYPE`: **mysql**: The database type in use \[mysql, postgres, mssql, sqlite3\].
|
|
- `HOST`: **127.0.0.1:3306**: Database host address and port.
|
|
- `NAME`: **gitea**: Database name.
|
|
- `USER`: **root**: Database username.
|
|
- `PASSWD`: **\<empty\>**: Database user password. Use \`your password\` for quoting if you use special characters in the password.
|
|
- `SSL_MODE`: **disable**: For PostgreSQL and MySQL only.
|
|
- `PATH`: **data/gitea.db**: For SQLite3 only, the database file path.
|
|
- `LOG_SQL`: **true**: Log the executed SQL.
|
|
|
|
## Indexer (`indexer`)
|
|
|
|
- `ISSUE_INDEXER_PATH`: **indexers/issues.bleve**: Index file used for issue search.
|
|
- `REPO_INDEXER_ENABLED`: **false**: Enables code search (uses a lot of disk space).
|
|
- `REPO_INDEXER_PATH`: **indexers/repos.bleve**: Index file used for code search.
|
|
- `UPDATE_BUFFER_LEN`: **20**: Buffer length of index request.
|
|
- `MAX_FILE_SIZE`: **1048576**: Maximum size in bytes of files to be indexed.
|
|
|
|
## Security (`security`)
|
|
|
|
- `INSTALL_LOCK`: **false**: Disallow access to the install page.
|
|
- `SECRET_KEY`: **\<random at every install\>**: Global secret key. This should be changed.
|
|
- `LOGIN_REMEMBER_DAYS`: **7**: Cookie lifetime, in days.
|
|
- `COOKIE_USERNAME`: **gitea\_awesome**: Name of the cookie used to store the current username.
|
|
- `COOKIE_REMEMBER_NAME`: **gitea\_incredible**: Name of cookie used to store authentication
|
|
information.
|
|
- `REVERSE_PROXY_AUTHENTICATION_USER`: **X-WEBAUTH-USER**: Header name for reverse proxy
|
|
authentication.
|
|
- `DISABLE_GIT_HOOKS`: **false**: Prevent all users (including admin) from creating custom
|
|
git hooks.
|
|
- `IMPORT_LOCAL_PATHS`: **false**: Prevent all users (including admin) from importing local path on server.
|
|
|
|
## OpenID (`openid`)
|
|
|
|
- `ENABLE_OPENID_SIGNIN`: **false**: Allow authentication in via OpenID.
|
|
- `ENABLE_OPENID_SIGNUP`: **! DISABLE\_REGISTRATION**: Allow registering via OpenID.
|
|
- `WHITELISTED_URIS`: **\<empty\>**: If non-empty, list of POSIX regex patterns matching
|
|
OpenID URI's to permit.
|
|
- `BLACKLISTED_URIS`: **\<empty\>**: If non-empty, list of POSIX regex patterns matching
|
|
OpenID URI's to block.
|
|
|
|
## Service (`service`)
|
|
|
|
- `ACTIVE_CODE_LIVE_MINUTES`: **180**: Time limit (min) to confirm account/email registration.
|
|
- `RESET_PASSWD_CODE_LIVE_MINUTES`: **180**: Time limit (min) to confirm forgot password reset
|
|
process.
|
|
- `REGISTER_EMAIL_CONFIRM`: **false**: Enable this to ask for mail confirmation of registration.
|
|
Requires `Mailer` to be enabled.
|
|
- `DISABLE_REGISTRATION`: **false**: Disable registration, after which only admin can create
|
|
accounts for users.
|
|
- `REQUIRE_SIGNIN_VIEW`: **false**: Enable this to force users to log in to view any page.
|
|
- `ENABLE_NOTIFY_MAIL`: **false**: Enable this to send e-mail to watchers of a repository when
|
|
something happens, like creating issues. Requires `Mailer` to be enabled.
|
|
- `ENABLE_REVERSE_PROXY_AUTHENTICATION`: **false**: Enable this to allow reverse proxy authentication.
|
|
- `ENABLE_REVERSE_PROXY_AUTO_REGISTRATION`: **false**: Enable this to allow auto-registration
|
|
for reverse authentication.
|
|
- `ENABLE_CAPTCHA`: **false**: Enable this to use captcha validation for registration.
|
|
- `CAPTCHA_TYPE`: **image**: \[image, recaptcha\]
|
|
- `RECAPTCHA_SECRET`: **""**: Go to https://www.google.com/recaptcha/admin to get a secret for recaptcha.
|
|
- `RECAPTCHA_SITEKEY`: **""**: Go to https://www.google.com/recaptcha/admin to get a sitekey for recaptcha.
|
|
- `DEFAULT_ENABLE_DEPENDENCIES`: **true** Enable this to have dependencies enabled by default.
|
|
|
|
## Webhook (`webhook`)
|
|
|
|
- `QUEUE_LENGTH`: **1000**: Hook task queue length. Use caution when editing this value.
|
|
- `DELIVER_TIMEOUT`: **5**: Delivery timeout (sec) for shooting webhooks.
|
|
- `SKIP_TLS_VERIFY`: **false**: Allow insecure certification.
|
|
- `PAGING_NUM`: **10**: Number of webhook history events that are shown in one page.
|
|
|
|
## Mailer (`mailer`)
|
|
|
|
- `ENABLED`: **false**: Enable to use a mail service.
|
|
- `DISABLE_HELO`: **\<empty\>**: Disable HELO operation.
|
|
- `HELO_HOSTNAME`: **\<empty\>**: Custom hostname for HELO operation.
|
|
- `HOST`: **\<empty\>**: SMTP mail host address and port (example: smtp.gitea.io:587).
|
|
- `FROM`: **\<empty\>**: Mail from address, RFC 5322. This can be just an email address, or
|
|
the "Name" \<email@example.com\> format.
|
|
- `USER`: **\<empty\>**: Username of mailing user (usually the sender's e-mail address).
|
|
- `PASSWD`: **\<empty\>**: Password of mailing user. Use \`your password\` for quoting if you use special characters in the password.
|
|
- `SKIP_VERIFY`: **\<empty\>**: Do not verify the self-signed certificates.
|
|
- **Note:** Gitea only supports SMTP with STARTTLS.
|
|
- `USE_SENDMAIL`: **false** Use the operating system's `sendmail` command instead of SMTP.
|
|
This is common on linux systems.
|
|
- Note that enabling sendmail will ignore all other `mailer` settings except `ENABLED`,
|
|
`FROM` and `SENDMAIL_PATH`.
|
|
- `SENDMAIL_PATH`: **sendmail**: The location of sendmail on the operating system (can be
|
|
command or full path).
|
|
|
|
## Cache (`cache`)
|
|
|
|
- `ADAPTER`: **memory**: Cache engine adapter, either `memory`, `redis`, or `memcache`.
|
|
- `INTERVAL`: **60**: Garbage Collection interval (sec), for memory cache only.
|
|
- `HOST`: **\<empty\>**: Connection string for `redis` and `memcache`.
|
|
- Redis: `network=tcp,addr=127.0.0.1:6379,password=macaron,db=0,pool_size=100,idle_timeout=180`
|
|
- Memache: `127.0.0.1:9090;127.0.0.1:9091`
|
|
|
|
## Session (`session`)
|
|
|
|
- `PROVIDER`: **memory**: Session engine provider \[memory, file, redis, mysql\].
|
|
- `PROVIDER_CONFIG`: **data/sessions**: For file, the root path; for others, the connection string.
|
|
- `COOKIE_SECURE`: **false**: Enable this to force using HTTPS for all session access.
|
|
- `COOKIE_NAME`: **i\_like\_gitea**: The name of the cookie used for the session ID.
|
|
- `GC_INTERVAL_TIME`: **86400**: GC interval in seconds.
|
|
|
|
## Picture (`picture`)
|
|
|
|
- `GRAVATAR_SOURCE`: **gravatar**: Can be `gravatar`, `duoshuo` or anything like
|
|
`http://cn.gravatar.com/avatar/`.
|
|
- `DISABLE_GRAVATAR`: **false**: Enable this to use local avatars only.
|
|
- `ENABLE_FEDERATED_AVATAR`: **false**: Enable support for federated avatars (see
|
|
[http://www.libravatar.org](http://www.libravatar.org)).
|
|
- `AVATAR_UPLOAD_PATH`: **data/avatars**: Path to store local and cached files.
|
|
|
|
## Attachment (`attachment`)
|
|
|
|
- `ENABLED`: **true**: Enable this to allow uploading attachments.
|
|
- `PATH`: **data/attachments**: Path to store attachments.
|
|
- `ALLOWED_TYPES`: **see app.ini.sample**: Allowed MIME types, e.g. `image/jpeg|image/png`.
|
|
Use `*/*` for all types.
|
|
- `MAX_SIZE`: **4**: Maximum size (MB).
|
|
- `MAX_FILES`: **5**: Maximum number of attachments that can be uploaded at once.
|
|
|
|
## Log (`log`)
|
|
|
|
- `ROOT_PATH`: **\<empty\>**: Root path for log files.
|
|
- `MODE`: **console**: Logging mode. For multiple modes, use a comma to separate values.
|
|
- `LEVEL`: **Trace**: General log level. \[Trace, Debug, Info, Warn, Error, Critical\]
|
|
|
|
## Cron (`cron`)
|
|
|
|
- `ENABLED`: **true**: Run cron tasks periodically.
|
|
- `RUN_AT_START`: **false**: Run cron tasks at application start-up.
|
|
|
|
### Cron - Cleanup old repository archives (`cron.archive_cleanup`)
|
|
|
|
- `ENABLED`: **true**: Enable service.
|
|
- `RUN_AT_START`: **true**: Run tasks at start up time (if ENABLED).
|
|
- `SCHEDULE`: **@every 24h**: Cron syntax for scheduling repository archive cleanup, e.g. `@every 1h`.
|
|
- `OLDER_THAN`: **24h**: Archives created more than `OLDER_THAN` ago are subject to deletion, e.g. `12h`.
|
|
|
|
### Cron - Update Mirrors (`cron.update_mirrors`)
|
|
|
|
- `SCHEDULE`: **@every 10m**: Cron syntax for scheduling update mirrors, e.g. `@every 3h`.
|
|
|
|
### Cron - Repository Health Check (`cron.repo_health_check`)
|
|
|
|
- `SCHEDULE`: **every 24h**: Cron syntax for scheduling repository health check.
|
|
- `TIMEOUT`: **60s**: Time duration syntax for health check execution timeout.
|
|
- `ARGS`: **\<empty\>**: Arguments for command `git fsck`, e.g. `--unreachable --tags`.
|
|
|
|
### Cron - Repository Statistics Check (`cron.check_repo_stats`)
|
|
|
|
- `RUN_AT_START`: **true**: Run repository statistics check at start time.
|
|
- `SCHEDULE`: **@every 24h**: Cron syntax for scheduling repository statistics check.
|
|
|
|
## Git (`git`)
|
|
|
|
- `MAX_GIT_DIFF_LINES`: **100**: Max number of lines allowed of a single file in diff view.
|
|
- `MAX_GIT_DIFF_LINE_CHARACTERS`: **5000**: Max character count per line highlighted in diff view.
|
|
- `MAX_GIT_DIFF_FILES`: **100**: Max number of files shown in diff view.
|
|
- `GC_ARGS`: **\<empty\>**: Arguments for command `git gc`, e.g. `--aggressive --auto`.
|
|
|
|
## Git - Timeout settings (`git.timeout`)
|
|
- `MIGRATE`: **600**: Migrate external repositories timeout seconds.
|
|
- `MIRROR`: **300**: Mirror external repositories timeout seconds.
|
|
- `CLONE`: **300**: Git clone from internal repositories timeout seconds.
|
|
- `PULL`: **300**: Git pull from internal repositories timeout seconds.
|
|
- `GC`: **60**: Git repository GC timeout seconds.
|
|
|
|
## API (`api`)
|
|
|
|
- `ENABLE_SWAGGER_ENDPOINT`: **true**: Enables /api/swagger, /api/v1/swagger etc. endpoints. True or false; default is true.
|
|
- `MAX_RESPONSE_ITEMS`: **50**: Max number of items in a page.
|
|
|
|
## i18n (`i18n`)
|
|
|
|
- `LANGS`: **en-US,zh-CN,zh-HK,zh-TW,de-DE,fr-FR,nl-NL,lv-LV,ru-RU,ja-JP,es-ES,pt-BR,pl-PL,bg-BG,it-IT,fi-FI,tr-TR,cs-CZ,sr-SP,sv-SE,ko-KR**: List of locales shown in language selector
|
|
- `NAMES`: **English,简体中文,繁體中文(香港),繁體中文(台灣),Deutsch,français,Nederlands,latviešu,русский,日本語,español,português do Brasil,polski,български,italiano,suomi,Türkçe,čeština,српски,svenska,한국어**: Visible names corresponding to the locales
|
|
|
|
### i18n - Datepicker Language (`i18n.datelang`)
|
|
Maps locales to the languages used by the datepicker plugin
|
|
|
|
- `en-US`: **en**
|
|
- `zh-CN`: **zh**
|
|
- `zh-HK`: **zh-HK**
|
|
- `zh-TW`: **zh-TW**
|
|
- `de-DE`: **de**
|
|
- `fr-FR`: **fr**
|
|
- `nl-NL`: **nl**
|
|
- `lv-LV`: **lv**
|
|
- `ru-RU`: **ru**
|
|
- `ja-JP`: **ja**
|
|
- `es-ES`: **es**
|
|
- `pt-BR`: **pt-BR**
|
|
- `pl-PL`: **pl**
|
|
- `bg-BG`: **bg**
|
|
- `it-IT`: **it**
|
|
- `fi-FI`: **fi**
|
|
- `tr-TR`: **tr**
|
|
- `cs-CZ`: **cs-CZ**
|
|
- `sr-SP`: **sr**
|
|
- `sv-SE`: **sv**
|
|
- `ko-KR`: **ko**
|
|
|
|
## U2F (`U2F`)
|
|
- `APP_ID`: **`ROOT_URL`**: Declares the facet of the application. Requires HTTPS.
|
|
- `TRUSTED_FACETS`: List of additional facets which are trusted. This is not support by all browsers.
|
|
|
|
## Markup (`markup`)
|
|
|
|
Gitea can support Markup using external tools. The example below will add a markup named `asciidoc`.
|
|
|
|
```ini
|
|
[markup.asciidoc]
|
|
ENABLED = false
|
|
FILE_EXTENSIONS = .adoc,.asciidoc
|
|
RENDER_COMMAND = "asciidoc --out-file=- -"
|
|
IS_INPUT_FILE = false
|
|
```
|
|
|
|
- ENABLED: **false** Enable markup support.
|
|
- FILE\_EXTENSIONS: **\<empty\>** List of file extensions that should be rendered by an external
|
|
command. Multiple extentions needs a comma as splitter.
|
|
- RENDER\_COMMAND: External command to render all matching extensions.
|
|
- IS\_INPUT\_FILE: **false** Input is not a standard input but a file param followed `RENDER_COMMAND`.
|
|
|
|
## Other (`other`)
|
|
|
|
- `SHOW_FOOTER_BRANDING`: **false**: Show Gitea branding in the footer.
|
|
- `SHOW_FOOTER_VERSION`: **true**: Show Gitea version information in the footer.
|
|
- `SHOW_FOOTER_TEMPLATE_LOAD_TIME`: **true**: Show time of template execution in the footer.
|