GNUsocial
/
gnu-social
4
0
Fork 1
Code Issues Releases Wiki Activity
gnu-social/lib/default.php

409 lines
21 KiB
PHP
Raw Normal View History

Move configuration defaults to new module and variable Moved the default values of $config to $default. The code for setting up $default is moved to lib/default.php.
2009-09-25 03:25:30 +01:00
<?php
/**
[MEDIA] ImageFile now extends MediaFile and validates images more aggressively. Default supported files need to use consistent names. Bumped version to 1.20.0 ImageFile has been changed to extend MediaFile and rely on it to partially validate files. This validation has been extended to not rely solely on Fileinfo, as it is disabled on some places. Now it'll try to use the shell command `file`, if Fileinfo isn't available. ImageFile now converts every new upload to PNG, except JPEG and GIF, which are kept, but still resized (to the same size), to remove possible scripts embedded therein. MediaFile::fromUpload will return an ImageFile if the uploaded file is an image or a MediaFile otherwise. MediaFile can be constructed with an id with value -1 to denote a temporary object, which is not added to the DB. This is useful to create a temporary object for representing images, so it can be used to rescale them. The supported attachment array needs to be populated with the result of calling `image_type_to_extension` for the appropriate image type, in the case of images. This is important so all parts of the code see the same extension for each image type (jpg vs jpeg). Added documentation to classes/File.php and to lib/MediaFile and lib/ImageFile
2019-06-07 14:08:27 +01:00
* GNU social - a federating social network
Move configuration defaults to new module and variable Moved the default values of $config to $default. The code for setting up $default is moved to lib/default.php.
2009-09-25 03:25:30 +01:00
*
*
* LICENCE: This program is free software: you can redistribute it and/or modify
* it under the terms of the GNU Affero General Public License as published by
* the Free Software Foundation, either version 3 of the License, or
* (at your option) any later version.
*
* This program is distributed in the hope that it will be useful,
* but WITHOUT ANY WARRANTY; without even the implied warranty of
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
* GNU Affero General Public License for more details.
*
* You should have received a copy of the GNU Affero General Public License
* along with this program. If not, see <http://www.gnu.org/licenses/>.
*
* @category Config
Core and Default plugins separated, now loads on install _flow_ reported on IRC that install.php had stopped working. This was because default plugins had been put into two separate lists, and the list with AuthCrypt was never loaded when performing an installation. Core plugins cannot be disabled. I also removed the Memcache autodetection thing since it should be solved in a more elegant manner.
2013-10-19 13:35:04 +01:00
* @package GNUsocial
Move configuration defaults to new module and variable Moved the default values of $config to $default. The code for setting up $default is moved to lib/default.php.
2009-09-25 03:25:30 +01:00
* @author Evan Prodromou <evan@status.net>
[MEDIA] ImageFile now extends MediaFile and validates images more aggressively. Default supported files need to use consistent names. Bumped version to 1.20.0 ImageFile has been changed to extend MediaFile and rely on it to partially validate files. This validation has been extended to not rely solely on Fileinfo, as it is disabled on some places. Now it'll try to use the shell command `file`, if Fileinfo isn't available. ImageFile now converts every new upload to PNG, except JPEG and GIF, which are kept, but still resized (to the same size), to remove possible scripts embedded therein. MediaFile::fromUpload will return an ImageFile if the uploaded file is an image or a MediaFile otherwise. MediaFile can be constructed with an id with value -1 to denote a temporary object, which is not added to the DB. This is useful to create a temporary object for representing images, so it can be used to rescale them. The supported attachment array needs to be populated with the result of calling `image_type_to_extension` for the appropriate image type, in the case of images. This is important so all parts of the code see the same extension for each image type (jpg vs jpeg). Added documentation to classes/File.php and to lib/MediaFile and lib/ImageFile
2019-06-07 14:08:27 +01:00
* @copyright 2008-2009, 2019 Free Software Foundation http://fsf.org
Move configuration defaults to new module and variable Moved the default values of $config to $default. The code for setting up $default is moved to lib/default.php.
2009-09-25 03:25:30 +01:00
* @license http://www.fsf.org/licensing/licenses/agpl-3.0.html GNU Affero General Public License version 3.0
[MEDIA] ImageFile now extends MediaFile and validates images more aggressively. Default supported files need to use consistent names. Bumped version to 1.20.0 ImageFile has been changed to extend MediaFile and rely on it to partially validate files. This validation has been extended to not rely solely on Fileinfo, as it is disabled on some places. Now it'll try to use the shell command `file`, if Fileinfo isn't available. ImageFile now converts every new upload to PNG, except JPEG and GIF, which are kept, but still resized (to the same size), to remove possible scripts embedded therein. MediaFile::fromUpload will return an ImageFile if the uploaded file is an image or a MediaFile otherwise. MediaFile can be constructed with an id with value -1 to denote a temporary object, which is not added to the DB. This is useful to create a temporary object for representing images, so it can be used to rescale them. The supported attachment array needs to be populated with the result of calling `image_type_to_extension` for the appropriate image type, in the case of images. This is important so all parts of the code see the same extension for each image type (jpg vs jpeg). Added documentation to classes/File.php and to lib/MediaFile and lib/ImageFile
2019-06-07 14:08:27 +01:00
* @link https://www.gnu.org/software/social/
Move configuration defaults to new module and variable Moved the default values of $config to $default. The code for setting up $default is moved to lib/default.php.
2009-09-25 03:25:30 +01:00
*/
$default =
Update indentation.
2011-04-21 19:19:51 +01:00
array('site' =>
Core and Default plugins separated, now loads on install _flow_ reported on IRC that install.php had stopped working. This was because default plugins had been put into two separate lists, and the list with AuthCrypt was never loaded when performing an installation. Core plugins cannot be disabled. I also removed the Memcache autodetection thing since it should be solved in a more elegant manner.
2013-10-19 13:35:04 +01:00
array('name' => 'Just another GNU social node',
'nickname' => 'gnusocial',
defaults for nickname and wildcard
2010-01-24 23:19:13 +00:00
'wildcard' => null,
Move configuration defaults to new module and variable Moved the default values of $config to $default. The code for setting up $default is moved to lib/default.php.
2009-09-25 03:25:30 +01:00
'server' => $_server,
neo-gnu is now default-theme. perty.
2015-02-02 17:22:59 +00:00
'theme' => 'neo-gnu',
Move configuration defaults to new module and variable Moved the default values of $config to $default. The code for setting up $default is moved to lib/default.php.
2009-09-25 03:25:30 +01:00
'path' => $_path,
'logfile' => null,
add configuration option that was documented in CONFIGURE
2017-04-02 10:05:22 +01:00
'logdebug' => false,
Move configuration defaults to new module and variable Moved the default values of $config to $default. The code for setting up $default is moved to lib/default.php.
2009-09-25 03:25:30 +01:00
'logo' => null,
document and default for site|ssllogo
2010-10-14 19:56:38 +01:00
'ssllogo' => null,
Performance counters: records number of total and unique cache get/set/incr/deletes and queries, and logs to syslog. $config['site']['logperf'] = true; // to record & dump total hits of each type and the runtime to syslog $config['site']['logperf_detail'] = true; // very verbose -- dump the individual cache keys and queries as they get used (may contain private info in some queries) Seeing 180 cache gets on a timeline page seems not unusual currently; since these run in serial, even relatively small roundtrip times can add up heavily. We should consider ways to reduce the number of round trips, such as more frequently storing compound objects or the output of processing in memcached. Doing parallel multi-key lookups could also help by collapsing round-trip times, but might not be easy to fit into SN's object model. (For things like streams this should actually work pretty well -- grab the list, then when it's returned go grab all the individual items in parallel and return the list)
2011-01-31 21:12:56 +00:00
'logperf' => false, // Enable to dump performance counters to syslog
'logperf_detail' => false, // Enable to dump every counter hit
Move configuration defaults to new module and variable Moved the default values of $config to $default. The code for setting up $default is moved to lib/default.php.
2009-09-25 03:25:30 +01:00
'fancy' => false,
'locale_path' => INSTALLDIR.'/locale',
Language setting fixes: - switch 'en_US' to 'en', fixes the "admin panel switches to Arabic" bug - tweak setting descriptions to clarify that most of the time we'll be using browser language - add a backend switch to disable language detection (should this be exposed to ui?)
2010-03-03 20:08:07 +00:00
'language' => 'en',
'langdetect' => true,
Move configuration defaults to new module and variable Moved the default values of $config to $default. The code for setting up $default is moved to lib/default.php.
2009-09-25 03:25:30 +01:00
'languages' => get_all_languages(),
'email' =>
array_key_exists('SERVER_ADMIN', $_SERVER) ? $_SERVER['SERVER_ADMIN'] : null,
Fake recovery by email address, to hide registrants on the site
2015-05-30 22:29:16 +01:00
'fakeaddressrecovery' => true,
Move configuration defaults to new module and variable Moved the default values of $config to $default. The code for setting up $default is moved to lib/default.php.
2009-09-25 03:25:30 +01:00
'broughtby' => null,
'timezone' => 'UTC',
'broughtbyurl' => null,
'closed' => false,
inviteonly by default
2011-04-11 22:06:20 +01:00
'inviteonly' => true,
Default install to site profile community
2015-02-20 00:00:28 +00:00
'private' => false,
Move configuration defaults to new module and variable Moved the default values of $config to $default. The code for setting up $default is moved to lib/default.php.
2009-09-25 03:25:30 +01:00
'ssl' => 'never',
Use config site/sslproxy to force HTTPS (i.e. using reverse proxy to enable it) Usage in config.php: $config['site']['sslproxy'] = true; Add this to documentation...
2016-02-10 00:05:02 +00:00
'sslproxy' => false, // set to true to force GNU social to think it is HTTPS (i.e. using reverse proxy to enable it)
Move configuration defaults to new module and variable Moved the default values of $config to $default. The code for setting up $default is moved to lib/default.php.
2009-09-25 03:25:30 +01:00
'sslserver' => null,
Site-wide notice text admin panel
2010-03-03 22:32:14 +00:00
'dupelimit' => 60, // default for same person saying the same thing
Default textlimit for notices is now 1000 chars
2015-01-26 22:32:08 +00:00
'textlimit' => 1000, // in chars; 0 == no limit
Add configuration option to toggle the indenting of the output HTML. Defaults to indent enabled.
2009-12-05 06:03:04 +00:00
'indent' => true,
Site-wide notice text admin panel
2010-03-03 22:32:14 +00:00
'use_x_sendfile' => false,
Make code-dependent cache entries more volatile If a cache entry is dependent on the code that's running, upgrading (or enabling/disabling plugins) can generate hard-to-track inconsistencies. This change adds a close-to-unique fingerprint of the running code to some cache keys, so that if the fingerprint changes, the old values are ignored and new values are used. If the automated uniqueness fails, an administrator can add an extra config value, $config['site']['build'], that's thrown into the key also.
2010-12-06 22:05:32 +00:00
'notice' => null, // site wide notice text
'build' => 1, // build number, for code-dependent cache
Move configuration defaults to new module and variable Moved the default values of $config to $default. The code for setting up $default is moved to lib/default.php.
2009-09-25 03:25:30 +01:00
),
Make all hash algorithms available (but whitelist by default) sha1 is whitelisted only because StatusNet requires it.
2016-06-28 10:51:11 +01:00
'security' =>
array('hash_algos' => ['sha1', 'sha256', 'sha512'], // set to null for anything that hash_hmac() can handle (and is in hash_algos())
),
Move configuration defaults to new module and variable Moved the default values of $config to $default. The code for setting up $default is moved to lib/default.php.
2009-09-25 03:25:30 +01:00
'db' =>
use null for db/database config, check for it
2011-12-03 16:45:56 +00:00
array('database' => null, // must be set
Move configuration defaults to new module and variable Moved the default values of $config to $default. The code for setting up $default is moved to lib/default.php.
2009-09-25 03:25:30 +01:00
'schema_location' => INSTALLDIR . '/classes',
'class_location' => INSTALLDIR . '/classes',
'require_prefix' => 'classes/',
'class_prefix' => '',
'mirror' => null,
'utf8' => true,
'db_driver' => 'DB', # XXX: JanRain libs only work with DB
'quote_identifiers' => false,
check the schema
2009-10-01 20:11:12 +01:00
'type' => 'mysql',
Option to log slow db queries or all db queries $config['db']['log_queries'] = true; // all $config['db']['log_slow_queries'] = 10; // queries taking > 10 seconds
2010-01-21 19:07:52 +00:00
'schemacheck' => 'runtime', // 'runtime' or 'script'
Add $config['db']['annotate_queries'] option to include caller ID comments into queries. Comment can then be seen in process list, slow query logs on the server, aiding in tracking down unexpected slow queries. SELECT /* queuedaemon.php Ostatus_profile->processPost */ * FROM notice WHERE ( notice.uri = 'http://stormcloud.local/mublog2/notice/479' ) INSERT /* POST Notice::saveNew */ INTO notice (profile_id , content ....
2010-03-29 20:57:16 +01:00
'annotate_queries' => false, // true to add caller comments to queries, eg /* POST Notice::saveNew */
Option to log slow db queries or all db queries $config['db']['log_queries'] = true; // all $config['db']['log_slow_queries'] = 10; // queries taking > 10 seconds
2010-01-21 19:07:52 +00:00
'log_queries' => false, // true to log all DB queries
$config['db']['mysql_foreign_keys'] option to experimentally enable foreign keys on MySQL. (Would only work on InnoDB tables, may explode, etc)
2010-10-19 20:11:49 +01:00
'log_slow_queries' => 0, // if set, log queries taking over N seconds
'mysql_foreign_keys' => false), // if set, enables experimental foreign key support on MySQL
getAliases for Profile and Notice Also move fancyurlfix into site-wide $config['fix']['fancyurls'] TODO: getByUri should make use of this directly I guess?
2016-02-23 13:00:59 +00:00
'fix' =>
array('fancyurls' => true, // makes sure aliases in WebFinger etc. are not f'd by index.php/ URLs
Change config webfinger/http_alias to fix/legacy_http Set $config['fix']['legacy_http'] to perform some actions that are needed if your site used to be served over http but now has upgraded to https!
2016-03-23 14:21:02 +00:00
'legacy_http' => false, // set this to true if you have upgraded your site from http=>https
getAliases for Profile and Notice Also move fancyurlfix into site-wide $config['fix']['fancyurls'] TODO: getByUri should make use of this directly I guess?
2016-02-23 13:00:59 +00:00
),
rename config option site/logdebug to log/debugtrace
2016-03-27 15:36:45 +01:00
'log' => [
'debugtrace' => false, // index.php handleError function, whether to include exception backtrace in log
],
Move configuration defaults to new module and variable Moved the default values of $config to $default. The code for setting up $default is moved to lib/default.php.
2009-09-25 03:25:30 +01:00
'syslog' =>
array('appname' => 'statusnet', # for syslog
'priority' => 'debug', # XXX: currently ignored
'facility' => LOG_USER),
'queue' =>
Queues should be enabled by default (thanks postblue)
2013-12-02 12:51:55 +00:00
array('enabled' => true,
Introduce new config option common_config('queue','daemon').Allows to dynamically enable scripts/queuedaemon.php into scripts/getvaliddaemons.php
2014-02-24 18:31:14 +00:00
'daemon' => false, # Use queuedaemon. Default to false
List the thread config value in lib/default.php
2017-08-03 08:53:00 +01:00
'threads' => null, # an empty value here uses processor count to determine
Move configuration defaults to new module and variable Moved the default values of $config to $default. The code for setting up $default is moved to lib/default.php.
2009-09-25 03:25:30 +01:00
'subsystem' => 'db', # default to database, or 'stomp'
'stomp_server' => null,
Make default & sample val for $config['queue']['queue_basename'] actually work! Now matches the recommendation in README which is in fact correct. Must include the /queue/ prefix (unless somthing else actually makes sense)
2009-12-08 17:57:37 +00:00
'queue_basename' => '/queue/statusnet/',
Stomp queue restructuring for mass scalability: - Multiplexing queues into groups and for multiple sites. - Sharing vs breakout configurable per site and per queue via $config['queue']['breakout'] - Detect how many times a message is redelivered, discard if it's killed too many daemons - count configurable with $config['queue']['max_retries'] - can dump the items to files in $config['queue']['dead_letter_dir'] Queue daemon memory & resource leak fixes: - avoid unnecessary reconnections to memcached server (switch persistent connections back in on second initialization, assuming it's child process) - monkey-patch for leaky .ini loads in DB_DataObject::databaseStructure() - was leaking 200k per active switch - applied leak fixes to Status_network as well, using intermediate base Safe_DataObject for both it and Memcache_DataObject Misc queue fixes: - correct handling of child processes exiting due to signal termination instead of regular exit - shutdown instead of infinite respawn loop if we're already past the soft memory limit at startup - Added --all option for xmppdaemon... still opens one xmpp connection per site that has xmpp active Cache updates: - add Cache::increment() method with native support for memcached atomic increment
2010-02-16 17:01:59 +00:00
'control_channel' => '/topic/statusnet/control', // broadcasts to all queue daemons
Move configuration defaults to new module and variable Moved the default values of $config to $default. The code for setting up $default is moved to lib/default.php.
2009-09-25 03:25:30 +01:00
'stomp_username' => null,
'stomp_password' => null,
Can now set $config['queue']['stomp_persistent'] = false; to explicitly disable persistence when we queue items
2010-01-28 17:52:35 +00:00
'stomp_persistent' => true, // keep items across queue server restart, if persistence is enabled
Tweak to Eugene Crosser's patch to make transactions and acks configurable; disabling them gets basic message delivery working under MorbidQ, and may help with RabbitMQ etc. I swapped the settings from negative to positive ($config['queue']['stomp_transactions'] = false rather than $config['queue']['stomp_no_transactions'] = true), gave them defaults (both on for best ActiveMQ experience), and added notes to the README about configuring them.
2010-03-29 23:46:41 +01:00
'stomp_transactions' => true, // use STOMP transactions to aid in detecting failures (supported by ActiveMQ, but not by all)
'stomp_acks' => true, // send acknowledgements after successful processing (supported by ActiveMQ, but not by all)
Manual failover for stomp queues. If an array of multiple servers is put in $config['queue']['stomp_server'], enqueues will pick a random server to send to (failing over automatically if any are down). Queue handling daemons connect all servers so they get events no matter where they were delivered. In case of disconnection, daemons should now handle it gracefully and attempt to reconnect every 60 seconds or so, automatically resubscribing to all queues once it's back up. Can put to 'native' failover for reads as well by disabling $config['stomp']['manual_failover'] = false; but this is untested and may explode in addition to requiring that your ActiveMQ cluster actually be set up to handle its own data distribution. Additionally, can choose which queues to mark as persistent by setting $config['stomp']['persistent'] to an array of queue names.
2010-01-29 00:49:32 +00:00
'stomp_manual_failover' => true, // if multiple servers are listed, treat them as separate (enqueue on one randomly, listen on all)
Major refactoring of queue handlers to support running multiple sites in one daemon. Key changes: * Initialization code moved from common.php to StatusNet class; can now switch configurations during runtime. * As a consequence, configuration files must now be idempotent... Be careful with constant, function or class definitions. * Control structure for daemons/QueueManager/QueueHandler has been refactored; the run loop is now managed by IoMaster run via scripts/queuedaemon.php IoManager subclasses are woken to handle socket input or polling, and may cover multiple sites. * Plugins can implement notice queue handlers more easily by registering a QueueHandler class; no more need to add a daemon. The new QueueDaemon runs from scripts/queuedaemon.php: * This replaces most of the old *handler.php scripts; they've been refactored to the bare handler classes. * Spawns multiple child processes to spread load; defaults to CPU count on Linux and Mac OS X systems, or override with --threads=N * When multithreaded, child processes are automatically respawned on failure. * Threads gracefully shut down and restart when passing a soft memory limit (defaults to 90% of memory_limit), limiting damage from memory leaks. * Support for UDP-based monitoring: http://www.gitorious.org/snqmon Rough control flow diagram: QueueDaemon -> IoMaster -> IoManager QueueManager [listen or poll] -> QueueHandler XmppManager [ping & keepalive] XmppConfirmManager [poll updates] Todo: * Respawning features not currently available running single-threaded. * When running single-site, configuration changes aren't picked up. * New sites or config changes affecting queue subscriptions are not yet handled without a daemon restart. * SNMP monitoring output to integrate with general tools (nagios, ganglia) * Convert XMPP confirmation message sends to use stomp queue instead of polling * Convert xmppdaemon.php to IoManager? * Convert Twitter status, friends import polling daemons to IoManager * Clean up some error reporting and failure modes * May need to adjust queue priorities for best perf in backlog/flood cases Detailed code history available in my daemon-work branch: http://www.gitorious.org/~brion/statusnet/brion-fixes/commits/daemon-work
2010-01-13 03:57:15 +00:00
'monitor' => null, // URL to monitor ping endpoint (work in progress)
'softlimit' => '90%', // total size or % of memory_limit at which to restart queue threads gracefully
Configurable delay between queuedaemon.php spawns/respawns to help stagger out startups and subscriptions. Defaults to 1 second. $config['queue']['spawndelay'] = 1;
2010-02-09 20:39:31 +00:00
'spawndelay' => 1, // Wait at least N seconds between (re)spawns of child processes to avoid slamming the queue server with subscription startup
XMPP queued output & initial retooling of DB queue manager to support non-Notice objects. Queue handlers for XMPP individual & firehose output now send their XML stanzas to another output queue instead of connecting directly to the chat server. This lets us have as many general processing threads as we need, while all actual XMPP input and output go through a single daemon with a single connection open. This avoids problems with multiple connected resources: * multiple windows shown in some chat clients (psi, gajim, kopete) * extra load on server * incoming message delivery forwarding issues Database changes: * queue_item drops 'notice_id' in favor of a 'frame' blob. This is based on Craig Andrews' work branch to generalize queues to take any object, but conservatively leaving out the serialization for now. Table updater (preserves any existing queued items) in db/rc3to09.sql Code changes to watch out for: * Queue handlers should now define a handle() method instead of handle_notice() * QueueDaemon and XmppDaemon now share common i/o (IoMaster) and respawning thread management (RespawningDaemon) infrastructure. * The polling XmppConfirmManager has been dropped, as the message is queued directly when saving IM settings. * Enable $config['queue']['debug_memory'] to output current memory usage at each run through the event loop to watch for memory leaks To do: * Adapt XMPP i/o to component connection mode for multi-site support. * XMPP input can also be broken out to a queue, which would allow the actual notice save etc to be handled by general queue threads. * Make sure there are no problems with simply pushing serialized Notice objects to queues. * Find a way to improve interactive performance of the database-backed queue handler; polling is pretty painful to XMPP. * Possibly redo the way QueueHandlers are injected into a QueueManager. The grouping used to split out the XMPP output queue is a bit awkward.
2010-01-22 00:42:50 +00:00
'debug_memory' => false, // true to spit memory usage to log
Queues: redid the breakout control model so we can start up and subscribe to queues without running through the complete site list, which is ok at 1k sites but too slow at 10k. All breakout queues that we're going to need to listen to now need to be explicitly listed in $config['queue']['breakout']. Until XMPP is moved to component model, this setting will let the individual processes work with their own queues: $config['queue']['breakout'][] = 'xmpp/xmppout/' . $config['site']['nickname'];
2010-02-18 00:49:00 +00:00
'breakout' => array(), // List queue specifiers to break out when using Stomp queue.
// Default will share all queues for all sites within each group.
// Specify as <group>/<queue> or <group>/<queue>/<site>,
// using nickname identifier as site.
//
// 'main/distrib' separate "distrib" queue covering all sites
// 'xmpp/xmppout/mysite' separate "xmppout" queue covering just 'mysite'
Stomp queue restructuring for mass scalability: - Multiplexing queues into groups and for multiple sites. - Sharing vs breakout configurable per site and per queue via $config['queue']['breakout'] - Detect how many times a message is redelivered, discard if it's killed too many daemons - count configurable with $config['queue']['max_retries'] - can dump the items to files in $config['queue']['dead_letter_dir'] Queue daemon memory & resource leak fixes: - avoid unnecessary reconnections to memcached server (switch persistent connections back in on second initialization, assuming it's child process) - monkey-patch for leaky .ini loads in DB_DataObject::databaseStructure() - was leaking 200k per active switch - applied leak fixes to Status_network as well, using intermediate base Safe_DataObject for both it and Memcache_DataObject Misc queue fixes: - correct handling of child processes exiting due to signal termination instead of regular exit - shutdown instead of infinite respawn loop if we're already past the soft memory limit at startup - Added --all option for xmppdaemon... still opens one xmpp connection per site that has xmpp active Cache updates: - add Cache::increment() method with native support for memcached atomic increment
2010-02-16 17:01:59 +00:00
'max_retries' => 10, // drop messages after N failed attempts to process (Stomp)
'dead_letter_dir' => false, // set to directory to save dropped messages into (Stomp)
Move configuration defaults to new module and variable Moved the default values of $config to $default. The code for setting up $default is moved to lib/default.php.
2009-09-25 03:25:30 +01:00
),
'license' =>
allow all rights reserved, private data
2010-01-19 05:04:58 +00:00
array('type' => 'cc', # can be 'cc', 'allrightsreserved', 'private'
'owner' => null, # can be name of content owner e.g. for enterprise
CC license fixes (no remote image, https for href)
2015-01-08 17:13:33 +00:00
'url' => 'https://creativecommons.org/licenses/by/3.0/',
Move configuration defaults to new module and variable Moved the default values of $config to $default. The code for setting up $default is moved to lib/default.php.
2009-09-25 03:25:30 +01:00
'title' => 'Creative Commons Attribution 3.0',
CC license fixes (no remote image, https for href)
2015-01-08 17:13:33 +00:00
'image' => $_path . '/theme/licenses/cc_by_3.0_80x15.png'),
Move configuration defaults to new module and variable Moved the default values of $config to $default. The code for setting up $default is moved to lib/default.php.
2009-09-25 03:25:30 +01:00
'mail' =>
array('backend' => 'mail',
Make email domain checking optional, as some statusnet installations (such as those behind restrictive corporate firewalls, or on home systems on restrictive connections) cannot connect to any mail systems, and this check will always fail.
2009-10-26 14:31:12 +00:00
'params' => null,
'domain_check' => true),
Move configuration defaults to new module and variable Moved the default values of $config to $default. The code for setting up $default is moved to lib/default.php.
2009-09-25 03:25:30 +01:00
'nickname' =>
array('blacklist' => array(),
'featured' => array()),
'profile' =>
array('banned' => array(),
define configuration settings for account maintenance security
2010-12-13 21:28:02 +00:00
'biolimit' => null,
By default, don't allow nick changes for profiles This goes for both users and groups, since they share nickname namespace. If you want to enable nickname changes, just add this to your config: $config['profile']['changenick'] = true; This commit should cover all changes in our usual web forms as well as through the API.
2015-02-04 20:25:14 +00:00
'changenick' => false,
By default, disallow users to set private_stream
2016-02-17 21:58:31 +00:00
'allowprivate' => false, // whether to allow setting stream to private ("only followers can read")
Don't allow account backups by default.
2016-02-03 00:08:36 +00:00
'backup' => false, // can cause DoS, so should be done via CLI
Don't allow imports by default until it works well on large instances.
2015-07-17 13:40:09 +01:00
'restore' => false,
disable account deletion by default
2010-12-22 19:25:47 +00:00
'delete' => false,
define configuration settings for account maintenance security
2010-12-13 21:28:02 +00:00
'move' => true),
Properly unlink all old avatars when deleting/uploading a new We're also now using $config['image']['jpegquality'] to determine the quality setting for resized images. To set Avatar max size, adjust $config['avatar']['maxsize'] The getAvatar call now throws exceptions too. Related changes applied. Now let's move Profile->avatarUrl to the Avatar class!
2013-10-01 10:37:59 +01:00
'image' =>
Animated GIF restructuring, ImageMagick only used for resizing animated sequences.
2015-01-25 21:56:55 +00:00
array('jpegquality' => 85),
Move configuration defaults to new module and variable Moved the default values of $config to $default. The code for setting up $default is moved to lib/default.php.
2009-09-25 03:25:30 +01:00
'avatar' =>
array('server' => null,
'dir' => INSTALLDIR . '/avatar/',
let avatars be served over SSL
2010-02-11 21:51:15 +00:00
'path' => $_path . '/avatar/',
Properly unlink all old avatars when deleting/uploading a new We're also now using $config['image']['jpegquality'] to determine the quality setting for resized images. To set Avatar max size, adjust $config['avatar']['maxsize'] The getAvatar call now throws exceptions too. Related changes applied. Now let's move Profile->avatarUrl to the Avatar class!
2013-10-01 10:37:59 +01:00
'ssl' => null,
'maxsize' => 300),
Don't publish mbox_sha1sum in FOAF by default. We say the email is private data, so reasonably we shouldn't reveal it indirectly through a hash sum: http://xmlns.com/foaf/spec/#term_mbox_sha1sum
2016-02-18 23:10:05 +00:00
'foaf' =>
array(
'mbox_sha1sum' => false,
),
Move configuration defaults to new module and variable Moved the default values of $config to $default. The code for setting up $default is moved to lib/default.php.
2009-09-25 03:25:30 +01:00
'public' =>
Merge branch 'nightly' of gitorious.org:social/mainline into nightly
2015-01-21 22:45:49 +00:00
array('localonly' => false,
Move configuration defaults to new module and variable Moved the default values of $config to $default. The code for setting up $default is moved to lib/default.php.
2009-09-25 03:25:30 +01:00
'blacklist' => array(),
'autosource' => array()),
'theme' =>
array('server' => null,
'dir' => null,
Themes can be served from an SSL server
2010-02-11 21:42:58 +00:00
'path'=> null,
default theme ssl to null
2010-02-11 21:48:15 +00:00
'ssl' => null),
60 chars was too little, 100 chars seems better. For me.
2013-10-06 19:28:07 +01:00
'usertheme' =>
array('linkcolor' => 'black',
'backgroundcolor' => 'black'),
Basic custom CSS and theme uploading features. 'local' subdir can now be customized to a distinct directory and URL path to make it easier to separate custom themes for a multi-site farm running a common code base. Currently only one custom theme may be uploaded per site, saved with the name 'custom' and stored into the local/themes subdirectory. Administrators can upload a .ZIP archive containing a theme through the design admin panel; its contents are validated to ensure that only legit files are saved, and a 5M size quota is enforced. Theme upload requires the zip extension for PHP; if not present, theme uploading is disabled by default. Uploading and the custom CSS can be controlled via $config['theme_upload']['enabled'] and $config['custom_css']['enabled']. Configurable directory/path/server for 'local' subdirectory (currently only as used for themes; local plugins not yet switched over) Can set $config['local']['dir'] etc; not currently exposed in the admin panels. Per-site directories on a separate themes server could be set up such as: $config['local']['dir'] = '/path/to/themes/local/' . $_nickname; $config['local']['server'] = 'themes.example.com'; $config['local']['path'] = '/local/' . $_nickname; $config['local']['ssl'] = 'never';
2010-04-21 16:16:42 +01:00
'theme_upload' =>
array('enabled' => extension_loaded('zip')),
Optionally set a separate Javascript server and path We have about 10-12 JavaScript pages per Web page. They usually are based on the same server as the Web pages, but since they're static files, it makes sense to offload them to a lite server that handles static files well. This commit lets you set a separate Javascript server and path for the default Javascript code in StatusNet. Squashed commit of the following: commit 139d1622fdafe5ad00c820224416d9021efc3234 Author: Evan Prodromou <evan@status.net> Date: Wed Jan 27 11:30:24 2010 -0500 modules that call htmloutputter::script() don't prescribe js/ path commit c6ca3174af73efed55eaed5ff1e2a3bdc77d2d87 Author: Evan Prodromou <evan@status.net> Date: Wed Jan 27 11:28:07 2010 -0500 configurable server and path for javascript files
2010-01-27 16:37:22 +00:00
'javascript' =>
array('server' => null,
put Javascript files under SSL
2010-02-11 21:59:39 +00:00
'path'=> null,
configuration option to bust frames or not
2011-03-17 15:31:43 +00:00
'ssl' => null,
'bustframes' => true),
Basic custom CSS and theme uploading features. 'local' subdir can now be customized to a distinct directory and URL path to make it easier to separate custom themes for a multi-site farm running a common code base. Currently only one custom theme may be uploaded per site, saved with the name 'custom' and stored into the local/themes subdirectory. Administrators can upload a .ZIP archive containing a theme through the design admin panel; its contents are validated to ensure that only legit files are saved, and a 5M size quota is enforced. Theme upload requires the zip extension for PHP; if not present, theme uploading is disabled by default. Uploading and the custom CSS can be controlled via $config['theme_upload']['enabled'] and $config['custom_css']['enabled']. Configurable directory/path/server for 'local' subdirectory (currently only as used for themes; local plugins not yet switched over) Can set $config['local']['dir'] etc; not currently exposed in the admin panels. Per-site directories on a separate themes server could be set up such as: $config['local']['dir'] = '/path/to/themes/local/' . $_nickname; $config['local']['server'] = 'themes.example.com'; $config['local']['path'] = '/local/' . $_nickname; $config['local']['ssl'] = 'never';
2010-04-21 16:16:42 +01:00
'local' => // To override path/server for themes in 'local' dir (not currently applied to local plugins)
array('server' => null,
'dir' => null,
'path' => null,
'ssl' => null),
Move configuration defaults to new module and variable Moved the default values of $config to $default. The code for setting up $default is moved to lib/default.php.
2009-09-25 03:25:30 +01:00
'throttle' =>
array('enabled' => false, // whether to throttle edits; false by default
'count' => 20, // number of allowed messages in timespan
'timespan' => 600), // timespan for throttling
'invite' =>
array('enabled' => true),
'tag' =>
Add time-based cutoffs for public tag cloud, favorited lists to speed up those queries. Defaulting to only looking at last 90 days of activity, can be adjusted up or down. $config['tag']['cutoff'] = 86400 * 90; $config['popular']['cutoff'] = 86400 * 90; Per-user and per-group tag clouds do not use the cutoff (and it doesn't help with indexing on them).
2010-02-04 19:06:01 +00:00
array('dropoff' => 864000.0, # controls weighting based on age
'cutoff' => 86400 * 90), # only look at notices posted in last 90 days
Move configuration defaults to new module and variable Moved the default values of $config to $default. The code for setting up $default is moved to lib/default.php.
2009-09-25 03:25:30 +01:00
'popular' =>
Add time-based cutoffs for public tag cloud, favorited lists to speed up those queries. Defaulting to only looking at last 90 days of activity, can be adjusted up or down. $config['tag']['cutoff'] = 86400 * 90; $config['popular']['cutoff'] = 86400 * 90; Per-user and per-group tag clouds do not use the cutoff (and it doesn't help with indexing on them).
2010-02-04 19:06:01 +00:00
array('dropoff' => 864000.0, # controls weighting based on age
'cutoff' => 86400 * 90), # only look at notices favorited in last 90 days
Move configuration defaults to new module and variable Moved the default values of $config to $default. The code for setting up $default is moved to lib/default.php.
2009-09-25 03:25:30 +01:00
'daemon' =>
If /var/run was unwritable stopdaemons did not find pid file
2015-04-13 20:51:35 +01:00
array('piddir' => sys_get_temp_dir(),
Move configuration defaults to new module and variable Moved the default values of $config to $default. The code for setting up $default is moved to lib/default.php.
2009-09-25 03:25:30 +01:00
'user' => false,
'group' => false),
'emailpost' =>
disable sms, email by post by default
2011-04-14 21:24:56 +01:00
array('enabled' => false),
Move configuration defaults to new module and variable Moved the default values of $config to $default. The code for setting up $default is moved to lib/default.php.
2009-09-25 03:25:30 +01:00
'sms' =>
disable sms, email by post by default
2011-04-14 21:24:56 +01:00
array('enabled' => false),
Changed config flag for importing friends' timeline and added some comments
2009-10-17 01:32:02 +01:00
'twitterimport' =>
Move configuration defaults to new module and variable Moved the default values of $config to $default. The code for setting up $default is moved to lib/default.php.
2009-09-25 03:25:30 +01:00
array('enabled' => false),
'integration' =>
array('source' => 'StatusNet', # source attribute for Twitter
Add a library to mint tag URIs We've been making pretty crummy tag: URIs for a while. We should continue to favor HTTP URIs, since it's nice to be able to discover things about an object you've shared the ID of. Where that's not possible, this makes nicer tag URIs.
2010-02-20 18:23:08 +00:00
'taguri' => null), # base for tag URIs
reformat default.php
2009-10-22 03:41:23 +01:00
'twitter' =>
Remove un-needed config variable for enabling/disabling Twitter integration
2010-03-02 05:52:31 +00:00
array('signin' => true,
Initial Twitter bridge admin panel
2010-03-02 05:34:50 +00:00
'consumer_key' => null,
reformat default.php
2009-10-22 03:41:23 +01:00
'consumer_secret' => null),
First version of Memcache plugin
2010-01-03 07:16:59 +00:00
'cache' =>
array('base' => null),
reformat default.php
2009-10-22 03:41:23 +01:00
'ping' =>
Handle timeout more gracefully in background pings Added a 2-second default timeout for XMLRPC/extended pings, configurable as [ping,timeout]. No longer repeating the entire ping section if we had an HTTP error during a submission. For now, dropping the bad item and continuing on with others. (Todo: individual retry and cleaner discards of blacklisted broken-for-now sites.)
2010-05-05 02:43:32 +01:00
array('notify' => array(),
'timeout' => 2),
Move configuration defaults to new module and variable Moved the default values of $config to $default. The code for setting up $default is moved to lib/default.php.
2009-09-25 03:25:30 +01:00
'inboxes' =>
remove inboxes option
2009-10-13 22:38:27 +01:00
array('enabled' => true), # ignored after 0.9.x
Move configuration defaults to new module and variable Moved the default values of $config to $default. The code for setting up $default is moved to lib/default.php.
2009-09-25 03:25:30 +01:00
'newuser' =>
array('default' => null,
'welcome' => null),
Don't linkify bare domains by default It's too farfetched to assume any text.com in a notice is an HTTP URL. For example stuff like pasting from log entries, with domain.com:1234 where 1234 is a _PID_ or something, not a port number for http://...
2015-02-17 19:54:32 +00:00
'linkify' => array(
Configurable linkify for bare IPv4/IPv6
2016-02-03 11:55:00 +00:00
// "bare" below means "without schema", like domain.com vs. https://domain.com
Don't linkify bare domains by default It's too farfetched to assume any text.com in a notice is an HTTP URL. For example stuff like pasting from log entries, with domain.com:1234 where 1234 is a _PID_ or something, not a port number for http://...
2015-02-17 19:54:32 +00:00
'bare_domains' => false, // convert domain.com to <a href="http://domain.com/" ...>domain.com</a> ?
Configurable linkify for bare IPv4/IPv6
2016-02-03 11:55:00 +00:00
'bare_ipv4' => false, // convert IPv4 addresses to hyperlinks?
'bare_ipv6' => false, // convert IPv6 addresses to hyperlinks?
Don't linkify bare domains by default It's too farfetched to assume any text.com in a notice is an HTTP URL. For example stuff like pasting from log entries, with domain.com:1234 where 1234 is a _PID_ or something, not a port number for http://...
2015-02-17 19:54:32 +00:00
),
Move configuration defaults to new module and variable Moved the default values of $config to $default. The code for setting up $default is moved to lib/default.php.
2009-09-25 03:25:30 +01:00
'attachments' =>
array('server' => null,
'dir' => INSTALLDIR . '/file/',
'path' => $_path . '/file/',
Make HTTPS urls in File::url() if necessary
2010-10-14 19:22:17 +01:00
'sslserver' => null,
'sslpath' => null,
let files go to SSL dir too
2010-02-11 22:06:57 +00:00
'ssl' => null,
MediaFile loses dependency on PEAR::MIME At the same time we remove the "filecommand" setting, since we will likely not have use of it thanks to PECL fileinfo. Also the "supported" list for attachment mime types has changed format, so we can keep track of at least some known file extensions.
2014-03-08 02:03:04 +00:00
'supported' => array(
'application/vnd.oasis.opendocument.chart' => 'odc',
'application/vnd.oasis.opendocument.formula' => 'odf',
'application/vnd.oasis.opendocument.graphics' => 'odg',
'application/vnd.oasis.opendocument.graphics-template' => 'otg',
'application/vnd.oasis.opendocument.image' => 'odi',
'application/vnd.oasis.opendocument.presentation' => 'odp',
'application/vnd.oasis.opendocument.presentation-template' => 'otp',
'application/vnd.oasis.opendocument.spreadsheet' => 'ods',
'application/vnd.oasis.opendocument.spreadsheet-template' => 'ots',
'application/vnd.oasis.opendocument.text' => 'odt',
'application/vnd.oasis.opendocument.text-master' => 'odm',
'application/vnd.oasis.opendocument.text-template' => 'ott',
'application/vnd.oasis.opendocument.text-web' => 'oth',
'application/pdf' => 'pdf',
'application/zip' => 'zip',
if zip is fine then application/x-bzip2 is too
2017-01-11 22:30:06 +00:00
'application/x-bzip2' => 'bz2',
Allow sgf files if they're recognized in mime search They are Go game files used on lamatriz.org. Note that my server doesn't actually recognize these files and can identify the mime type, but my browser did for some reason.
2016-02-25 23:05:07 +00:00
'application/x-go-sgf' => 'sgf',
application/xml allowed in uploads
2016-02-10 23:04:14 +00:00
'application/xml' => 'xml',
Some mimetype madness!
2016-07-06 07:59:16 +01:00
'application/gpx+xml' => 'gpx',
[MEDIA] ImageFile now extends MediaFile and validates images more aggressively. Default supported files need to use consistent names. Bumped version to 1.20.0 ImageFile has been changed to extend MediaFile and rely on it to partially validate files. This validation has been extended to not rely solely on Fileinfo, as it is disabled on some places. Now it'll try to use the shell command `file`, if Fileinfo isn't available. ImageFile now converts every new upload to PNG, except JPEG and GIF, which are kept, but still resized (to the same size), to remove possible scripts embedded therein. MediaFile::fromUpload will return an ImageFile if the uploaded file is an image or a MediaFile otherwise. MediaFile can be constructed with an id with value -1 to denote a temporary object, which is not added to the DB. This is useful to create a temporary object for representing images, so it can be used to rescale them. The supported attachment array needs to be populated with the result of calling `image_type_to_extension` for the appropriate image type, in the case of images. This is important so all parts of the code see the same extension for each image type (jpg vs jpeg). Added documentation to classes/File.php and to lib/MediaFile and lib/ImageFile
2019-06-07 14:08:27 +01:00
image_type_to_mime_type(IMAGETYPE_PNG) => image_type_to_extension(IMAGETYPE_PNG),
image_type_to_mime_type(IMAGETYPE_JPEG) => image_type_to_extension(IMAGETYPE_JPEG),
image_type_to_mime_type(IMAGETYPE_GIF) => image_type_to_extension(IMAGETYPE_GIF),
'image/svg+xml' => 'svg', // No built-in constant
image_type_to_mime_type(IMAGETYPE_ICO) => image_type_to_extension(IMAGETYPE_ICO),
MediaFile loses dependency on PEAR::MIME At the same time we remove the "filecommand" setting, since we will likely not have use of it thanks to PECL fileinfo. Also the "supported" list for attachment mime types has changed format, so we can keep track of at least some known file extensions.
2014-03-08 02:03:04 +00:00
'audio/ogg' => 'ogg',
'audio/mpeg' => 'mpg',
'audio/x-speex' => 'spx',
'application/ogg' => 'ogx',
'text/plain' => 'txt',
'video/mpeg' => 'mpeg',
'video/mp4' => 'mp4',
'video/ogg' => 'ogv',
'video/quicktime' => 'mov',
'video/webm' => 'webm',
),
reformat default.php
2009-10-22 03:41:23 +01:00
'file_quota' => 5000000,
'user_quota' => 50000000,
'monthly_quota' => 15000000,
'uploads' => true,
Show more links work with AJAX-retrieved HTML Attachment_ajaxAction has been removed since AttachmentAction handles AJAX calls splendidly.
2014-05-18 23:54:43 +01:00
'show_html' => false, // show (filtered) text/html attachments (and oEmbed HTML etc.). Doesn't affect AJAX calls.
Add a quick config setting to disable/enable display of thumbnails in regular notice lists (attachments/show_thumbs) - disabling gives the same display as before this feature was added (but changes to oembed handling are still there, and the lightbox popup is gone)
2010-11-12 20:24:55 +00:00
'show_thumbs' => true, // show thumbnails in notice lists for uploaded images, and photos and videos linked remotely that provide oEmbed info
Add $config['attachments']['process_links'] to allow disabling processing of mentioned URL links for attachment info (oEmbed lookups) and dereferencing of redirects that we didn't have shortened ourselves. This option may be useful for intranet sites that don't have direct access to the internet, as they may be unable to successfully fetch those resources.
2010-11-17 21:03:59 +00:00
'process_links' => true, // check linked resources for embeddable photos and videos; this will hit referenced external web sites when processing new messages.
Make uploads work properly if we accept _all_ attachment types Also introduced $config['attachments']['extblacklist'] that can disable certain file extensions (or rewrite them, for example php => phps)
2016-02-25 21:15:54 +00:00
'extblacklist' => [
Some mimetype madness!
2016-07-06 07:59:16 +01:00
'php' => 'phps', // this turns .php into .phps
Make uploads work properly if we accept _all_ attachment types Also introduced $config['attachments']['extblacklist'] that can disable certain file extensions (or rewrite them, for example php => phps)
2016-02-25 21:15:54 +00:00
'exe' => false, // this would deny any uploads to keep the "exe" file extension
],
[MEDIA] ImageFile now extends MediaFile and validates images more aggressively. Default supported files need to use consistent names. Bumped version to 1.20.0 ImageFile has been changed to extend MediaFile and rely on it to partially validate files. This validation has been extended to not rely solely on Fileinfo, as it is disabled on some places. Now it'll try to use the shell command `file`, if Fileinfo isn't available. ImageFile now converts every new upload to PNG, except JPEG and GIF, which are kept, but still resized (to the same size), to remove possible scripts embedded therein. MediaFile::fromUpload will return an ImageFile if the uploaded file is an image or a MediaFile otherwise. MediaFile can be constructed with an id with value -1 to denote a temporary object, which is not added to the DB. This is useful to create a temporary object for representing images, so it can be used to rescale them. The supported attachment array needs to be populated with the result of calling `image_type_to_extension` for the appropriate image type, in the case of images. This is important so all parts of the code see the same extension for each image type (jpg vs jpeg). Added documentation to classes/File.php and to lib/MediaFile and lib/ImageFile
2019-06-07 14:08:27 +01:00
'memory_limit' => '1024M' // PHP's memory limit to use temporarily when handling images
reformat default.php
2009-10-22 03:41:23 +01:00
),
Relatively experimental change to store thumbnails in 'file/thumb/' (by default)
2016-03-07 21:33:34 +00:00
'thumbnail' => [
'dir' => null, // falls back to File::path('thumb') (equivalent to ['attachments']['dir'] . '/thumb/')
'path' => null, // falls back to generating a URL with File::url('thumb/$filename') (equivalent to ['attachments']['path'] . '/thumb/')
'server' => null, // Only used if ['thumbnail']['path'] is NOT empty, and then it falls back to ['site']['server'], schema is decided from GNUsocial::useHTTPS()
'crop' => false, // overridden to true if thumb height === null
Default value for max thumbnail size increased Because people have high resolution screens nowadays ;)
2015-01-23 14:04:54 +00:00
'maxsize' => 1000, // thumbs with an edge larger than this will not be generated
Improved imageboard-style notice feeds on web UI
2014-05-18 13:05:29 +01:00
'width' => 450,
Animated GIF restructuring, ImageMagick only used for resizing animated sequences.
2015-01-25 21:56:55 +00:00
'height' => 600,
Use thumbnail upscaling config value
2016-02-10 03:40:54 +00:00
'upscale' => false,
Relatively experimental change to store thumbnails in 'file/thumb/' (by default)
2016-03-07 21:33:34 +00:00
'animated' => false, // null="UseFileAsThumbnail", false="can use still frame". true requires ImageMagickPlugin
],
Workflow for registering new OAuth apps pretty much done.
2009-11-17 00:58:49 +00:00
'application' =>
array('desclimit' => null),
Move configuration defaults to new module and variable Moved the default values of $config to $default. The code for setting up $default is moved to lib/default.php.
2009-09-25 03:25:30 +01:00
'group' =>
array('maxaliases' => 3,
Make tag-per-group optional, default false
2011-04-20 21:19:07 +01:00
'desclimit' => null,
default to #addtag on !group mention
2017-05-02 20:12:17 +01:00
'addtag' => true),
Utility functions for people tags
2011-03-06 18:03:39 +00:00
'peopletag' =>
array('maxtags' => 100, // maximum number of tags a user can create.
'maxpeople' => 500, // maximum no. of people with the same tag by the same user
'allow_tagging' => array('all' => true), // equivalent to array('local' => true, 'remote' => true)
'desclimit' => null),
Move configuration defaults to new module and variable Moved the default values of $config to $default. The code for setting up $default is moved to lib/default.php.
2009-09-25 03:25:30 +01:00
'search' =>
like search is the default for 1.0.x
2011-04-12 00:00:25 +01:00
array('type' => 'like'),
Move configuration defaults to new module and variable Moved the default values of $config to $default. The code for setting up $default is moved to lib/default.php.
2009-09-25 03:25:30 +01:00
'sessions' =>
Add $config['sessions']['gc_limit'] to limit how much work we do in each session GC; defaulting to killing 1000 sessions at a time.
2011-01-27 20:07:29 +00:00
array('handle' => false, // whether to handle sessions ourselves
'debug' => false, // debugging output for sessions
'gc_limit' => 1000), // max sessions to expire at a time
HTMLPurifier cache settings, put stuff in subdir of get_sys_temp_dir()
2016-02-28 12:30:47 +00:00
'htmlfilter' => [ // remove tags from user/remotely generated HTML if they are === true
Filter out img, video and audio tags in notice HTML Because we don't want to auto-fetch items from a remote server. Such items should be delivered as attachment metadata and portrayed in the way the local instance chooses. Choices for portrayal are either simply nullifying this and embedding the data, linking the file remotely requiring a manual click or maybe use remote oEmbed data etc. to download files locally so no remote requests have to be made.
2015-03-15 13:35:29 +00:00
'img' => true,
'video' => true,
'audio' => true,
HTMLPurifier cache settings, put stuff in subdir of get_sys_temp_dir()
2016-02-28 12:30:47 +00:00
],
'htmlpurifier' => [ // configurable options for HTMLPurifier
'Cache.DefinitionImpl' => 'Serializer',
'Cache.SerializerPath' => implode(DIRECTORY_SEPARATOR, [sys_get_temp_dir(), 'gnusocial']),
],
Move configuration defaults to new module and variable Moved the default values of $config to $default. The code for setting up $default is moved to lib/default.php.
2009-09-25 03:25:30 +01:00
'notice' =>
Caller can set scope for Notice::saveNew()
2011-03-26 19:49:46 +00:00
array('contentlimit' => null,
To-selector padlock only shown if site config notice/allowprivate is true
2016-02-17 22:05:44 +00:00
'allowprivate' => false, // whether to allow users to "check the padlock" to publish notices available for their subscribers.
Optionally hide spam from timelines For sites with a lot of spam, this will hide that spam from timelines for everyone but moderators.
2012-03-21 14:17:11 +00:00
'defaultscope' => null, // null means 1 if site/private, 0 otherwise
Hidespam by default ...why would something described as "Whether to hide silenced users from timelines" be set to false by default? :)
2016-02-07 01:33:53 +00:00
'hidespam' => true), // Whether to hide silenced users from timelines
Move configuration defaults to new module and variable Moved the default values of $config to $default. The code for setting up $default is moved to lib/default.php.
2009-09-25 03:25:30 +01:00
'message' =>
array('contentlimit' => null),
start getting locations from remote services
2009-09-16 16:46:10 +01:00
'location' =>
More configuration options for location sharing
2009-12-28 22:43:34 +00:00
array('share' => 'user', // whether to share location; 'always', 'user', 'never'
Default to NOT ask for current location for new users It may be a bad experience for new users to immediately when trying out the service be asked for their geographical position. Instead, let them opt-in for this behaviour.
2013-08-12 13:40:55 +01:00
'sharedefault' => false),
default for login command is disabled
2009-12-14 23:09:30 +00:00
'logincommand' =>
array('disabled' => true),
add default plugins and load them
2010-01-08 00:13:36 +00:00
'plugins' =>
Core and Default plugins separated, now loads on install _flow_ reported on IRC that install.php had stopped working. This was because default plugins had been put into two separate lists, and the list with AuthCrypt was never loaded when performing an installation. Core plugins cannot be disabled. I also removed the Memcache autodetection thing since it should be solved in a more elegant manner.
2013-10-19 13:35:04 +01:00
array('core' => array(
ActivityVerb is a core plugin
2015-03-10 16:24:23 +00:00
'ActivityVerb' => array(),
Move Ostatus_profile->processPost function into plugin
2015-09-29 14:17:38 +01:00
'ActivityVerbPost' => array(),
Some work on ActivityModeration with notice deletion Let's now create an event called DeleteNotice and also make sure we handle the onNoticeDeleteRelated properly in ActivityModeration to avoid possible endless loops etc.
2015-10-03 01:02:37 +01:00
'ActivityModeration' => array(),
Plugins should be initialized with an empty array, not null
2013-11-19 12:50:49 +00:00
'AuthCrypt' => array(),
Cron split into Cronish and OpportunisticQM /main/cron changed to /main/runqueue The key-required functionality is not throughly tested yet.
2013-11-20 20:20:42 +00:00
'Cronish' => array(),
Favorite functionality put into plugin (not done yet) Now we have to fix any code in the core which directly uses the Fave class or any other favorite stuff, since it is pluginised and thus might not be available on some installations.
2014-06-24 14:52:54 +01:00
'Favorite' => array(),
HTMLPurifierSchemes plugin to allow geo and magnet URIs
2016-02-03 13:36:51 +00:00
'HTMLPurifierSchemes' => array(),
Share plugin now handles showing form in NoticeOptionItems
2015-03-12 15:33:34 +00:00
'Share' => array(),
Plugins should be initialized with an empty array, not null
2013-11-19 12:50:49 +00:00
'LRDD' => array(),
Core and Default plugins separated, now loads on install _flow_ reported on IRC that install.php had stopped working. This was because default plugins had been put into two separate lists, and the list with AuthCrypt was never loaded when performing an installation. Core plugins cannot be disabled. I also removed the Memcache autodetection thing since it should be solved in a more elegant manner.
2013-10-19 13:35:04 +01:00
),
'default' => array(
Comment and typing improvements To make the StatusNet::addPlugin() accept only arrays, the lib/default.php had to be changed because all plugins had 'null' as default value instead of an array.
2013-11-18 19:43:00 +00:00
'Activity' => array(),
Enable AntiBrute by default.
2015-01-21 22:43:04 +00:00
'AntiBrute' => array(),
Blacklist plugin enabled by default (bug fixes will come)
2017-04-25 19:43:31 +01:00
'Blacklist' => array(),
Comment and typing improvements To make the StatusNet::addPlugin() accept only arrays, the lib/default.php had to be changed because all plugins had 'null' as default value instead of an array.
2013-11-18 19:43:00 +00:00
'Bookmark' => array(),
'ClientSideShorten' => array(),
No separate placeholder input element for replyforms Also we're moving the rendering of these out into a separate plugin. Not done yet, some javascript should be moved out as well.
2015-03-06 19:22:01 +00:00
'DefaultLayout' => array(),
Directory to default plugins (disabled for singleuser)
2014-05-09 09:49:00 +01:00
'Directory' => array(),
DirectMessage added to default plugins I think the migration from core to plugin is done now for DMs. This is required since we support the Twitter-based API by default, which is implemented in many of the mobile clients etc. But you can disable the DirectMessage for your instance of you wish, of course.
2014-11-07 15:37:00 +00:00
'DirectMessage' => array(),
EmailAuthentication enabled by default The login field said "Username or email address" already, so...
2014-04-28 11:38:30 +01:00
'EmailAuthentication' => array(),
Comment and typing improvements To make the StatusNet::addPlugin() accept only arrays, the lib/default.php had to be changed because all plugins had 'null' as default value instead of an array.
2013-11-18 19:43:00 +00:00
'Event' => array(),
Moved oEmbed stuff out to a plugin (Oembed).
2014-05-06 22:00:30 +01:00
'Oembed' => array(),
Comment and typing improvements To make the StatusNet::addPlugin() accept only arrays, the lib/default.php had to be changed because all plugins had 'null' as default value instead of an array.
2013-11-18 19:43:00 +00:00
'OpenID' => array(),
OpportunisticQM moved from core to default plugins. This makes it easier to disable, but remember that you must then either enable and maintain queue daemons or disable queueing (and handle whatever remaining queue items are stored in the database)!
2014-05-06 22:32:32 +01:00
'OpportunisticQM' => array(),
OStatus enabled by default, only disabled for private siteprofile
2014-05-09 09:31:55 +01:00
'OStatus' => array(),
Comment and typing improvements To make the StatusNet::addPlugin() accept only arrays, the lib/default.php had to be changed because all plugins had 'null' as default value instead of an array.
2013-11-18 19:43:00 +00:00
'Poll' => array(),
SimpleCaptcha plugin to stop basic bots
2016-02-08 16:47:09 +00:00
'SimpleCaptcha' => array(),
Comment and typing improvements To make the StatusNet::addPlugin() accept only arrays, the lib/default.php had to be changed because all plugins had 'null' as default value instead of an array.
2013-11-18 19:43:00 +00:00
'TagSub' => array(),
OStatus enabled by default, only disabled for private siteprofile
2014-05-09 09:31:55 +01:00
'WebFinger' => array(),
Add chimo's Nodeinfo plugin as a default GNU social plugin
2019-04-22 06:48:51 +01:00
'Nodeinfo' => array(),
Core and Default plugins separated, now loads on install _flow_ reported on IRC that install.php had stopped working. This was because default plugins had been put into two separate lists, and the list with AuthCrypt was never loaded when performing an installation. Core plugins cannot be disabled. I also removed the Memcache autodetection thing since it should be solved in a more elegant manner.
2013-10-19 13:35:04 +01:00
),
Add a $config['plugins']['locale_path'] which can be set to override the individual plugins' locale subdirectories. This will apply to *ALL* plugins in *ALL* languages, so should probably only be used when doing site customization... You'd probably do: $config['site']['locale_path'] = '/srv/awesome/data/locale'; $config['plugins']['locale_path'] = '/srv/awesome/data/locale'; with a structure like: srv/ awesome/ data/ locale/ en/ LC_MESSAGES/ statusnet.po OpenID.po AnonymousFave.po etc, all alongside each other. You could separate plugins from the core if you like. Where locale files have not already been generated, you can build one for a plugin like so: php scripts/update_po_templates.php --plugin=MyPlugin and pull out the template file: plugins/MyPlugin/locale/MyPlugin.pot Edit that (make sure you at least set the CHARSET, probably to UTF-8) and save your customized .po files into the structure as above, and use msgfmt to generate .mo files for final output.
2010-10-01 03:18:46 +01:00
'locale_path' => false, // Set to a path to use *instead of* each plugin's own locale subdirectories
new methods for paths to plugin static files
2011-02-03 15:36:25 +00:00
'server' => null,
'sslserver' => null,
'path' => null,
add plugins/sslpath setting, default to site path/plugins
2011-02-11 20:58:47 +00:00
'sslpath' => null,
let system administrators disallow certain admin panels
2010-01-08 09:00:29 +00:00
),
'admin' =>
Rip out user, group and site design customization code Squashed commit of the following: commit 0bcfb6535115ec0a11669420f8689aeedc417bc8 Author: Zach Copley <zach@status.net> Date: Thu Jun 9 15:51:47 2011 -0400 Remove design-related stuff from the API commit 88da010256fbcaee1ff01d9507ea47d3225f2825 Author: Zach Copley <zach@status.net> Date: Thu Jun 9 15:40:16 2011 -0400 Mop up misc design related code commit 11958b064745b797b4c9f9f4b7e8f65e4c82ce83 Author: Zach Copley <zach@status.net> Date: Thu Jun 9 15:21:00 2011 -0400 Remove Design DB_DataObject class and references to it in schema commit f8540594728ce6ba4697eb21657ccb897a9fc127 Author: Zach Copley <zach@status.net> Date: Thu Jun 9 13:15:54 2011 -0400 Remove design-related actions and widgets commit ddf7b4d425b88b58956b8be06047d2a3e0560bd2 Author: Zach Copley <zach@status.net> Date: Thu Jun 9 13:10:57 2011 -0400 Remove navigation / routing to design settings actions commit e3f280f8780d99168edf37ef766956f281e9c5da Author: Zach Copley <zach@status.net> Date: Thu Jun 9 13:03:09 2011 -0400 CurrentUserDesignAction -> Action commit 6780b1a07e1375a7fa0fd48c8bf3109d9a12e33e Author: Zach Copley <zach@status.net> Date: Thu Jun 9 12:54:22 2011 -0400 * GroupDesignAction -> GroupAction (new base class for group actions) commit 2136377e895db274709a1d486f377f13946ccfd6 Author: Zach Copley <zach@status.net> Date: Thu Jun 9 12:36:40 2011 -0400 OwnerDesignAction -> Action
2011-06-09 21:20:19 +01:00
array('panels' => array('site', 'user', 'paths', 'access', 'sessions', 'sitenotice', 'license', 'plugins')),
Single-user mode New configuration options to define a single-user mode. This hides most of the "community" pages, like the public timeline and groups. The main user's timeline becomes the main page, and most other URLs are changed. Switching back and forth between 1-user and multi-user mode is probably hazardous. Squashed commit of the following: commit d814aa5c92d14a27a12baba7893f3f8bf63f1d08 Author: Evan Prodromou <evan@status.net> Date: Tue Jan 26 00:17:27 2010 -0500 don't show inbox and outbox in single-user mode commit 47f19b9523a7015d4c6e460b73ea32c839e00aa1 Author: Evan Prodromou <evan@status.net> Date: Tue Jan 26 00:15:22 2010 -0500 show correct URL for logo in single-user mode commit 552010cffc33eadbc512ec5a67619dbc2015239a Author: Evan Prodromou <evan@status.net> Date: Tue Jan 26 00:15:06 2010 -0500 make singleuser its own config section commit 786ab260a3ca172e57b555c75ca10946d8f258a1 Author: Evan Prodromou <evan@status.net> Date: Tue Jan 26 00:05:19 2010 -0500 make single-user mode work commit 5b21d7309b3a8dd5a4e0f29aea76f7897f1818b1 Author: Evan Prodromou <evan@status.net> Date: Mon Jan 25 23:45:55 2010 -0500 add single-user mode
2010-01-26 05:21:05 +00:00
'singleuser' =>
array('enabled' => false,
'nickname' => null),
Add a robots.txt URL to the site root Adds a robots.txt file to the site root. Defaults defined by 'robotstxt' section of config. New events StartRobotsTxt and EndRobotsTxt to let plugins add information. Probably not useful if path is not /, but won't hurt anything, either.
2010-01-31 15:12:26 +00:00
'robotstxt' =>
array('crawldelay' => 0,
'disallow' => array('main', 'settings', 'admin', 'search', 'message')
),
make API realm configurable
2010-03-08 17:36:03 +00:00
'api' =>
array('realm' => null),
lib/default.php has nofollow group
2010-04-05 15:24:22 +01:00
'nofollow' =>
array('subscribers' => true,
'members' => true,
options to nofollow external links in notices
2010-10-18 16:29:52 +01:00
'peopletag' => true,
default for nofollow external is sometimes
2010-10-18 16:41:18 +01:00
'external' => 'sometimes'), // Options: 'sometimes', 'never', default = 'sometimes'
Give users more control over URL shortening Users and administrators can set how long an URL can be before it's shortened, and how long a notice can be before all its URLs are shortened. They can also turn off shortening altogether. Squashed commit of the following: commit d136b390115829c4391b3666bb1967f190a0de35 Author: Evan Prodromou <evan@status.net> Date: Mon Apr 26 02:39:00 2010 -0400 use site and user settings to determine when to shorten URLs commit 1e1c851ff3cb2da5e0dc3a0b06239a9d9c618488 Author: Evan Prodromou <evan@status.net> Date: Mon Apr 26 02:38:40 2010 -0400 add a method to force shortening URLs commit 4d29ca0b91201f6df42940297ed5b64b070efe49 Author: Evan Prodromou <evan@status.net> Date: Mon Apr 26 02:37:41 2010 -0400 static method for getting best URL shortening service commit a9c6a3bace0af44bcf38d1c790425a7be9c72147 Author: Evan Prodromou <evan@status.net> Date: Mon Apr 26 02:37:11 2010 -0400 allow 0 in numeric entries in othersettings commit 767ff2f7ecfd7e76e8418fc79d45e61898f09382 Author: Evan Prodromou <evan@status.net> Date: Mon Apr 26 02:36:46 2010 -0400 allow 0 or blank string in inputs commit 1e21af42a685f600f4a53f49a194013e78b12f20 Author: Evan Prodromou <evan@status.net> Date: Mon Apr 26 02:01:11 2010 -0400 add more URL-shortening options to othersettings commit 869a6be0f5779aff69018d02f9ac0273946040d9 Author: Evan Prodromou <evan@status.net> Date: Sat Apr 24 14:22:51 2010 -0400 move url shortener superclass to lib from plugin commit 9c0c9863d532942b99184f14e923fc3c050f8177 Author: Evan Prodromou <evan@status.net> Date: Sat Apr 24 14:20:28 2010 -0400 documentation and whitespace on UrlShortenerPlugin commit 7a1dd5798f0fcf2c03d1257a18ddcb9008879de0 Author: Evan Prodromou <evan@status.net> Date: Sat Apr 24 14:05:46 2010 -0400 add defaults for URL shortening commit d259c37ad231ca0010c60e5cfd397bb1732874a4 Author: Evan Prodromou <evan@status.net> Date: Sat Apr 24 13:40:10 2010 -0400 Add User_urlshortener_prefs Add a table for URL shortener prefs, a corresponding class, and the correct mumbo-jumbo in statusnet.ini to make everything work.
2010-04-26 07:40:36 +01:00
'url' =>
url shortening fixes for api config and not ur1.ca Will have to change the 'maxnoticelength' code to stop shortening ALL links if the setting for infinitely long notices is configured.
2013-09-19 00:11:47 +01:00
array('shortener' => 'internal',
URL shortening can now be disabled for the 'maxurllength' Also, URL shortening now consistently uses 'maxurllength'...
2013-10-06 21:35:26 +01:00
'maxurllength' => 100,
Merge branch '0.9.x' of gitorious.org:statusnet/mainline into 1.0.x Conflicts: lib/default.php lib/util.php plugins/UrlShortener/UrlShortenerPlugin.php (has been removed?)
2010-06-10 23:37:06 +01:00
'maxnoticelength' => -1),
Disable SSL peer/hostname verification for HTTPClient unless we've configured a trusted CA bundle like this: $config['http']['ssl_cafile'] = '/usr/lib/ssl/certs/ca-certificates.crt'; The previous state was failing on all HTTPS hits due to HTTP_Request2 library turning on the validation check but not specifying a CA file.
2010-05-21 18:12:39 +01:00
'http' => // HTTP client settings when contacting other sites
ssl_verify_host option in config (default is true)
2015-01-22 11:21:57 +00:00
array('ssl_cafile' => false, // To enable SSL cert validation, point to a CA bundle (eg '/usr/lib/ssl/certs/ca-certificates.crt') (this activates "ssl_verify_peer")
'ssl_verify_host' => true, // HTTPRequest2 makes sure this is set to CURLOPT_SSL_VERIFYHOST==2 if using curl
Partial fix for ticket #2489 -- problems with SNI SSL virtual host certificate validation. Two prongs here: * We attempt to enable SNI on the SSL stream context with the appropriate hostname... This requires PHP 5.3.2 and OpenSSL that supports the TLS extensions. Unfortunately this doesn't seem to be working in my testing. * If set $config['http']['curl'] = true, we'll use the CURL backend if available. In my testing on Ubuntu 10.04, this works. No guarantees on other systems. I'm not enabling CURL mode by default just yet; want to make sure there's no other surprises.
2010-08-06 18:14:07 +01:00
'curl' => false, // Use CURL backend for HTTP fetches if available. (If not, PHP's socket streams will be used.)
default connect_timeout to 5 instead of extlib 10
2016-01-18 21:01:45 +00:00
'connect_timeout' => 5,
Use intval on ini_get or we use a string for timeout
2017-07-10 13:10:32 +01:00
'timeout' => intval(ini_get('default_socket_timeout')), // effectively should be this by default already, but this makes it more explicitly configurable for you users .)
Configuration options for using an HTTP proxy We can make a lot of HTTP requests from the server side. This change adds some configuration options for using an HTTP proxy, which can cache hits from multiple sites (good for status.net-like services, for example).
2011-01-03 18:38:32 +00:00
'proxy_host' => null,
'proxy_port' => null,
'proxy_user' => null,
'proxy_password' => null,
'proxy_auth_scheme' => null,
Disable SSL peer/hostname verification for HTTPClient unless we've configured a trusted CA bundle like this: $config['http']['ssl_cafile'] = '/usr/lib/ssl/certs/ca-certificates.crt'; The previous state was failing on all HTTPS hits due to HTTP_Request2 library turning on the validation check but not specifying a CA file.
2010-05-21 18:12:39 +01:00
),
Update indentation.
2011-04-21 19:19:51 +01:00
'router' =>
array('cache' => true), // whether to cache the router object. Defaults to true, turn off for devel
Change a few things around for CORS header output
2011-07-08 01:19:59 +01:00
'discovery' =>
make performance optimization off by default
2011-09-20 03:01:13 +01:00
array('cors' => false), // Allow Cross-Origin Resource Sharing for service discovery (host-meta, XRD, etc.)
Switch from oohembed to noembed for default oembed provider
2011-09-30 20:51:23 +01:00
'performance' => array('high' => false) // disable some features for higher performance; default false
Update indentation.
2011-04-21 19:19:51 +01:00
);