Mercurial > p > roundup > code
comparison doc/tracker_config.txt @ 8274:c3bf229d3d4b
doc: update tracker_config.txt
Every generation of tracker_config.txt also changes the secret_key
value. To prevent this from showing up in diffs, modify
format_config.awk to use a static value for the secret_key and
substitute it into the config file.
Also update Makefile so tracker_config.txt depends on
format_config.awk.
| author | John Rouillard <rouilj@ieee.org> |
|---|---|
| date | Sun, 12 Jan 2025 20:13:36 -0500 |
| parents | 8b5f8b950f58 |
| children | b99e76e76496 |
comparison
equal
deleted
inserted
replaced
| 8273:e7062c6efabf | 8274:c3bf229d3d4b |
|---|---|
| 164 # import. | 164 # import. |
| 165 # Default: 131072 | 165 # Default: 131072 |
| 166 csv_field_size = 131072 | 166 csv_field_size = 131072 |
| 167 | 167 |
| 168 # Sets the default number of rounds used when encoding passwords | 168 # Sets the default number of rounds used when encoding passwords |
| 169 # using the PBKDF2 scheme. Set this to a higher value on faster | 169 # using any PBKDF2 scheme. Set this to a higher value on faster |
| 170 # systems which want more security. | 170 # systems which want more security. Use a minimum of 250000 |
| 171 # for PBKDF2-SHA512 which is the default hash in Roundup 2.5. | |
| 171 # PBKDF2 (Password-Based Key Derivation Function) is a | 172 # PBKDF2 (Password-Based Key Derivation Function) is a |
| 172 # password hashing mechanism that derives hash from the | 173 # password hashing mechanism that derives hash from the |
| 173 # password and a random salt. For authentication this process | 174 # password and a random salt. For authentication this process |
| 174 # is repeated with the same salt as in the stored hash. | 175 # is repeated with the same salt as in the stored hash. |
| 175 # If both hashes match, the authentication succeeds. | 176 # If both hashes match, the authentication succeeds. |
| 178 # of rounds doubles the cpu time required to calculate it. The | 179 # of rounds doubles the cpu time required to calculate it. The |
| 179 # purpose of this is to periodically adjust the rounds as CPUs | 180 # purpose of this is to periodically adjust the rounds as CPUs |
| 180 # become faster. The currently enforced minimum number of | 181 # become faster. The currently enforced minimum number of |
| 181 # rounds is 1000. | 182 # rounds is 1000. |
| 182 # See: http://en.wikipedia.org/wiki/PBKDF2 and RFC2898 | 183 # See: http://en.wikipedia.org/wiki/PBKDF2 and RFC2898 |
| 183 # Default: 2000000 | 184 # Default: 250000 |
| 184 password_pbkdf2_default_rounds = 2000000 | 185 password_pbkdf2_default_rounds = 250000 |
| 185 | 186 |
| 186 .. index:: config.ini; sections tracker | 187 .. index:: config.ini; sections tracker |
| 187 .. _`config-ini-section-tracker`: | 188 .. _`config-ini-section-tracker`: |
| 188 .. code:: ini | 189 .. code:: ini |
| 189 | 190 |
| 458 # tracker.web setting in config.ini. | 459 # tracker.web setting in config.ini. |
| 459 # Set this to 'required' to block the post and notify | 460 # Set this to 'required' to block the post and notify |
| 460 # the user if the header is missing or invalid. | 461 # the user if the header is missing or invalid. |
| 461 # Set this to 'yes' to block the post and notify the user | 462 # Set this to 'yes' to block the post and notify the user |
| 462 # if the header is invalid, but accept the form if | 463 # if the header is invalid, but accept the form if |
| 463 # the field is missing. | 464 # the header is missing. |
| 464 # Set this to 'logfailure' to log a notice to the roundup | 465 # Set this to 'logfailure' to log a notice to the roundup |
| 465 # log if the header is invalid or missing, but accept | 466 # log if the header is invalid or missing, but accept |
| 466 # the post. | 467 # the post. |
| 467 # Set this to 'no' to ignore the header and accept the post. | 468 # Set this to 'no' to ignore the header and accept the post. |
| 468 # Allowed values: required, yes, logfailure, no | 469 # Allowed values: required, yes, logfailure, no |
| 473 # tracker.web setting in config.ini. | 474 # tracker.web setting in config.ini. |
| 474 # Set this to 'required' to block the post and notify | 475 # Set this to 'required' to block the post and notify |
| 475 # the user if the header is missing or invalid. | 476 # the user if the header is missing or invalid. |
| 476 # Set this to 'yes' to block the post and notify the user | 477 # Set this to 'yes' to block the post and notify the user |
| 477 # if the header is invalid, but accept the form if | 478 # if the header is invalid, but accept the form if |
| 478 # the field is missing. | 479 # the header is missing. |
| 479 # Set this to 'logfailure' to log a notice to the roundup | 480 # Set this to 'logfailure' to log a notice to the roundup |
| 480 # log if the header is invalid or missing, but accept | 481 # log if the header is invalid or missing, but accept |
| 481 # the post. | 482 # the post. |
| 482 # Set this to 'no' to ignore the header and accept the post. | 483 # Set this to 'no' to ignore the header and accept the post. |
| 483 # Allowed values: required, yes, logfailure, no | 484 # Allowed values: required, yes, logfailure, no |
| 511 # the host part of the tracker.web setting in config.ini. | 512 # the host part of the tracker.web setting in config.ini. |
| 512 # Set this to 'required' to block the post and notify | 513 # Set this to 'required' to block the post and notify |
| 513 # the user if the header is missing or invalid. | 514 # the user if the header is missing or invalid. |
| 514 # Set this to 'yes' to block the post and notify the user | 515 # Set this to 'yes' to block the post and notify the user |
| 515 # if the header is invalid, but accept the form if | 516 # if the header is invalid, but accept the form if |
| 516 # the field is missing. | 517 # the header is missing. |
| 517 # Set this to 'logfailure' to log a notice to the roundup | 518 # Set this to 'logfailure' to log a notice to the roundup |
| 518 # log if the header is invalid or missing, but accept | 519 # log if the header is invalid or missing, but accept |
| 519 # the post. | 520 # the post. |
| 520 # Set this to 'no' to ignore the header and accept the post. | 521 # Set this to 'no' to ignore the header and accept the post. |
| 521 # Allowed values: required, yes, logfailure, no | 522 # Allowed values: required, yes, logfailure, no |
| 527 # tracker.web setting in config.ini. | 528 # tracker.web setting in config.ini. |
| 528 # Set this to 'required' to block the post and notify | 529 # Set this to 'required' to block the post and notify |
| 529 # the user if the header is missing or invalid. | 530 # the user if the header is missing or invalid. |
| 530 # Set this to 'yes' to block the post and notify the user | 531 # Set this to 'yes' to block the post and notify the user |
| 531 # if the header is invalid, but accept the form if | 532 # if the header is invalid, but accept the form if |
| 532 # the field is missing. | 533 # the header is missing. |
| 533 # Set this to 'logfailure' to log a notice to the roundup | 534 # Set this to 'logfailure' to log a notice to the roundup |
| 534 # log if the header is invalid or missing, but accept | 535 # log if the header is invalid or missing, but accept |
| 535 # the post. | 536 # the post. |
| 536 # Set this to 'no' to ignore the header and accept the post. | 537 # Set this to 'no' to ignore the header and accept the post. |
| 537 # Allowed values: required, yes, logfailure, no | 538 # Allowed values: required, yes, logfailure, no |
| 626 .. index:: config.ini; sections rdbms | 627 .. index:: config.ini; sections rdbms |
| 627 .. _`config-ini-section-rdbms`: | 628 .. _`config-ini-section-rdbms`: |
| 628 .. code:: ini | 629 .. code:: ini |
| 629 | 630 |
| 630 | 631 |
| 631 # Settings in this section (except for backend) are used | 632 # Most settings in this section (except for backend and debug_filter) |
| 632 # by RDBMS backends only. | 633 # are used by RDBMS backends only. |
| 633 | 634 |
| 634 [rdbms] | 635 [rdbms] |
| 635 | 636 |
| 636 # Database backend. | 637 # Database backend. |
| 637 # Available backends: anydbm, mysql, sqlite, postgresql | 638 # Available backends: anydbm, mysql, sqlite, postgresql |
| 638 # Default: NO DEFAULT | 639 # Default: NO DEFAULT |
| 639 #backend = NO DEFAULT | 640 #backend = NO DEFAULT |
| 641 | |
| 642 # Filter debugging: Permissions can define additional filter | |
| 643 # functions that are used when checking permissions on results | |
| 644 # returned by the database. This is done to improve | |
| 645 # performance since the filtering is done in the database | |
| 646 # backend, not in python (at least for the SQL backends). The | |
| 647 # user is responsible for making the filter return the same | |
| 648 # set of results as the check function for a permission. So it | |
| 649 # makes sense to aid in debugging (and performance | |
| 650 # measurements) to allow turning off the usage of filter | |
| 651 # functions using only the check functions. | |
| 652 # Allowed values: yes, no | |
| 653 # Default: no | |
| 654 debug_filter = no | |
| 640 | 655 |
| 641 # Name of the database to use. For Postgresql, this can | 656 # Name of the database to use. For Postgresql, this can |
| 642 # be database.schema to use a specific schema within | 657 # be database.schema to use a specific schema within |
| 643 # a Postgres database. | 658 # a Postgres database. |
| 644 # Default: roundup | 659 # Default: roundup |