2018-07-02 06:43:06 -04:00
|
|
|
require File.expand_path('boot', __dir__)
|
2011-10-08 17:36:38 -04:00
|
|
|
|
|
|
|
require 'rails/all'
|
2016-04-15 11:35:40 -04:00
|
|
|
|
2013-12-05 09:26:34 -05:00
|
|
|
Bundler.require(:default, Rails.env)
|
2011-10-08 17:36:38 -04:00
|
|
|
|
|
|
|
module Gitlab
|
|
|
|
class Application < Rails::Application
|
2018-01-24 04:05:39 -05:00
|
|
|
require_dependency Rails.root.join('lib/gitlab/redis/wrapper')
|
2017-07-10 23:35:47 -04:00
|
|
|
require_dependency Rails.root.join('lib/gitlab/redis/cache')
|
|
|
|
require_dependency Rails.root.join('lib/gitlab/redis/queues')
|
|
|
|
require_dependency Rails.root.join('lib/gitlab/redis/shared_state')
|
2017-02-06 07:48:46 -05:00
|
|
|
require_dependency Rails.root.join('lib/gitlab/request_context')
|
2018-02-09 12:08:33 -05:00
|
|
|
require_dependency Rails.root.join('lib/gitlab/current_settings')
|
2018-06-12 23:12:38 -04:00
|
|
|
require_dependency Rails.root.join('lib/gitlab/middleware/read_only')
|
2018-09-07 03:21:30 -04:00
|
|
|
require_dependency Rails.root.join('lib/gitlab/middleware/basic_health_check')
|
2016-04-15 11:35:40 -04:00
|
|
|
|
2018-06-09 14:13:50 -04:00
|
|
|
# This needs to be loaded before DB connection is made
|
|
|
|
# to make sure that all connections have NO_ZERO_DATE
|
|
|
|
# setting disabled
|
|
|
|
require_dependency Rails.root.join('lib/mysql_zero_date')
|
|
|
|
|
2011-10-08 17:36:38 -04:00
|
|
|
# Settings in config/environments/* take precedence over those specified here.
|
|
|
|
# Application configuration should go into files in config/initializers
|
|
|
|
# -- all .rb files in that directory are automatically loaded.
|
|
|
|
|
2016-04-05 12:43:48 -04:00
|
|
|
# Sidekiq uses eager loading, but directories not in the standard Rails
|
|
|
|
# directories must be added to the eager load paths:
|
|
|
|
# https://github.com/mperham/sidekiq/wiki/FAQ#why-doesnt-sidekiq-autoload-my-rails-application-code
|
|
|
|
# Also, there is no need to add `lib` to autoload_paths since autoloading is
|
|
|
|
# configured to check for eager loaded paths:
|
|
|
|
# https://github.com/rails/rails/blob/v4.2.6/railties/lib/rails/engine.rb#L687
|
|
|
|
# This is a nice reference article on autoloading/eager loading:
|
|
|
|
# http://blog.arkency.com/2014/11/dont-forget-about-eager-load-when-extending-autoload
|
2017-08-04 09:45:14 -04:00
|
|
|
config.eager_load_paths.push(*%W[#{config.root}/lib
|
2018-03-05 12:51:40 -05:00
|
|
|
#{config.root}/app/models/badges
|
2016-04-05 12:43:48 -04:00
|
|
|
#{config.root}/app/models/hooks
|
2016-04-15 11:35:40 -04:00
|
|
|
#{config.root}/app/models/members
|
2016-10-21 12:13:41 -04:00
|
|
|
#{config.root}/app/models/project_services
|
2017-03-10 07:51:50 -05:00
|
|
|
#{config.root}/app/workers/concerns
|
2018-07-24 10:30:09 -04:00
|
|
|
#{config.root}/app/policies/concerns
|
2017-07-07 13:01:49 -04:00
|
|
|
#{config.root}/app/services/concerns
|
2017-09-04 12:04:33 -04:00
|
|
|
#{config.root}/app/serializers/concerns
|
2018-06-26 12:31:05 -04:00
|
|
|
#{config.root}/app/finders/concerns
|
2018-07-10 10:19:45 -04:00
|
|
|
#{config.root}/app/graphql/resolvers/concerns
|
|
|
|
#{config.root}/app/graphql/mutations/concerns])
|
2011-10-08 17:36:38 -04:00
|
|
|
|
2016-05-19 15:58:35 -04:00
|
|
|
config.generators.templates.push("#{config.root}/generator_templates")
|
|
|
|
|
2017-12-14 10:14:57 -05:00
|
|
|
# Rake tasks ignore the eager loading settings, so we need to set the
|
|
|
|
# autoload paths explicitly
|
|
|
|
config.autoload_paths = config.eager_load_paths.dup
|
|
|
|
|
2011-10-08 17:36:38 -04:00
|
|
|
# Only load the plugins named here, in the order given (default is alphabetical).
|
|
|
|
# :all can be used as a placeholder for all plugins not explicitly named.
|
|
|
|
# config.plugins = [ :exception_notification, :ssl_requirement, :all ]
|
|
|
|
|
|
|
|
# The default locale is :en and all translations from config/locales/*.rb,yml are auto loaded.
|
|
|
|
# config.i18n.load_path += Dir[Rails.root.join('my', 'locales', '*.{rb,yml}').to_s]
|
|
|
|
# config.i18n.default_locale = :de
|
2014-01-09 07:17:02 -05:00
|
|
|
config.i18n.enforce_available_locales = false
|
2011-10-08 17:36:38 -04:00
|
|
|
|
2018-11-21 06:17:26 -05:00
|
|
|
# Enable locale fallbacks for I18n (makes lookups for any locale fall back to
|
|
|
|
# the I18n.default_locale when a translation can not be found).
|
|
|
|
# We have to explicitly set default locale since 1.1.0 - see:
|
|
|
|
# https://github.com/svenfuchs/i18n/pull/415
|
|
|
|
config.i18n.fallbacks = [:en]
|
|
|
|
|
2017-05-04 02:58:57 -04:00
|
|
|
# Translation for AR attrs is not working well for POROs like WikiPage
|
|
|
|
config.gettext_i18n_rails.use_for_active_record_attributes = false
|
|
|
|
|
2011-10-08 17:36:38 -04:00
|
|
|
# Configure the default encoding used in templates for Ruby 1.9.
|
|
|
|
config.encoding = "utf-8"
|
|
|
|
|
2018-06-19 23:18:16 -04:00
|
|
|
# ActionCable mount point.
|
|
|
|
# The default Rails' mount point is `/cable` which may conflict with existing
|
|
|
|
# namespaces/users.
|
|
|
|
# https://github.com/rails/rails/blob/5-0-stable/actioncable/lib/action_cable.rb#L38
|
|
|
|
# Please change this value when configuring ActionCable for real usage.
|
2018-12-07 13:15:06 -05:00
|
|
|
config.action_cable.mount_path = "/-/cable"
|
2018-06-19 23:18:16 -04:00
|
|
|
|
2011-10-08 17:36:38 -04:00
|
|
|
# Configure sensitive parameters which will be filtered from the log file.
|
2016-05-19 15:58:35 -04:00
|
|
|
#
|
2016-04-28 14:12:03 -04:00
|
|
|
# Parameters filtered:
|
2017-09-10 10:05:55 -04:00
|
|
|
# - Any parameter ending with `token`
|
2017-08-31 00:14:29 -04:00
|
|
|
# - Any parameter containing `password`
|
|
|
|
# - Any parameter containing `secret`
|
2018-09-11 18:04:40 -04:00
|
|
|
# - Any parameter ending with `key`
|
2016-04-28 14:12:03 -04:00
|
|
|
# - Two-factor tokens (:otp_attempt)
|
|
|
|
# - Repo/Project Import URLs (:import_url)
|
2018-01-11 11:19:59 -05:00
|
|
|
# - Build traces (:trace)
|
2016-04-28 14:12:03 -04:00
|
|
|
# - Build variables (:variables)
|
|
|
|
# - GitLab Pages SSL cert/key info (:certificate, :encrypted_key)
|
|
|
|
# - Webhook URLs (:hook)
|
|
|
|
# - Sentry DSN (:sentry_dsn)
|
2018-05-30 06:12:42 -04:00
|
|
|
# - File content from Web Editor (:content)
|
2018-11-28 13:36:11 -05:00
|
|
|
#
|
|
|
|
# NOTE: It is **IMPORTANT** to also update gitlab-workhorse's filter when adding parameters here to not
|
|
|
|
# introduce another security vulnerability: https://gitlab.com/gitlab-org/gitlab-workhorse/issues/182
|
2018-09-11 18:04:40 -04:00
|
|
|
config.filter_parameters += [/token$/, /password/, /secret/, /key$/]
|
2016-04-28 14:12:03 -04:00
|
|
|
config.filter_parameters += %i(
|
|
|
|
certificate
|
|
|
|
encrypted_key
|
|
|
|
hook
|
|
|
|
import_url
|
|
|
|
otp_attempt
|
|
|
|
sentry_dsn
|
2018-01-11 11:19:59 -05:00
|
|
|
trace
|
2016-04-28 14:12:03 -04:00
|
|
|
variables
|
2018-05-30 06:12:42 -04:00
|
|
|
content
|
2016-04-28 14:12:03 -04:00
|
|
|
)
|
2011-10-08 17:36:38 -04:00
|
|
|
|
2012-11-14 08:45:15 -05:00
|
|
|
# Enable escaping HTML in JSON.
|
|
|
|
config.active_support.escape_html_entities_in_json = true
|
|
|
|
|
|
|
|
# Use SQL instead of Active Record's schema dumper when creating the database.
|
|
|
|
# This is necessary if your schema can't be completely dumped by the schema dumper,
|
|
|
|
# like if you have constraints or database-specific column types
|
|
|
|
# config.active_record.schema_format = :sql
|
|
|
|
|
2016-10-18 18:46:48 -04:00
|
|
|
# Configure webpack
|
|
|
|
config.webpack.config_file = "config/webpack.config.js"
|
|
|
|
config.webpack.output_dir = "public/assets/webpack"
|
|
|
|
config.webpack.public_path = "assets/webpack"
|
2017-02-01 14:05:33 -05:00
|
|
|
|
|
|
|
# Webpack dev server configuration is handled in initializers/static_files.rb
|
2016-11-03 20:11:38 -04:00
|
|
|
config.webpack.dev_server.enabled = false
|
2016-10-18 18:46:48 -04:00
|
|
|
|
2011-10-08 17:36:38 -04:00
|
|
|
# Enable the asset pipeline
|
|
|
|
config.assets.enabled = true
|
2018-01-25 08:14:46 -05:00
|
|
|
|
2017-03-16 03:21:18 -04:00
|
|
|
# Support legacy unicode file named img emojis, `1F939.png`
|
|
|
|
config.assets.paths << Gemojione.images_path
|
2018-01-25 08:14:46 -05:00
|
|
|
config.assets.paths << "#{config.root}/vendor/assets/fonts"
|
|
|
|
|
2014-04-02 08:42:35 -04:00
|
|
|
config.assets.precompile << "print.css"
|
2016-01-28 11:54:13 -05:00
|
|
|
config.assets.precompile << "notify.css"
|
2016-03-22 22:20:47 -04:00
|
|
|
config.assets.precompile << "mailers/*.css"
|
2018-07-26 04:15:13 -04:00
|
|
|
config.assets.precompile << "page_bundles/ide.css"
|
2018-09-18 14:14:49 -04:00
|
|
|
config.assets.precompile << "page_bundles/xterm.css"
|
2017-07-06 15:37:31 -04:00
|
|
|
config.assets.precompile << "performance_bar.css"
|
2016-11-03 17:38:54 -04:00
|
|
|
config.assets.precompile << "lib/ace.js"
|
2017-05-12 17:57:50 -04:00
|
|
|
config.assets.precompile << "test.css"
|
2018-02-06 08:33:18 -05:00
|
|
|
config.assets.precompile << "snippets.css"
|
2017-10-04 07:23:52 -04:00
|
|
|
config.assets.precompile << "locale/**/app.js"
|
2018-05-02 14:23:17 -04:00
|
|
|
config.assets.precompile << "emoji_sprites.css"
|
2018-05-31 17:28:19 -04:00
|
|
|
config.assets.precompile << "errors.css"
|
2018-12-07 20:16:46 -05:00
|
|
|
config.assets.precompile << "csslab.css"
|
2014-02-25 12:15:08 -05:00
|
|
|
|
2018-03-09 16:32:11 -05:00
|
|
|
# Import gitlab-svgs directly from vendored directory
|
2018-10-31 07:35:33 -04:00
|
|
|
config.assets.paths << "#{config.root}/node_modules/@gitlab/svgs/dist"
|
2018-03-09 16:32:11 -05:00
|
|
|
config.assets.precompile << "icons.svg"
|
|
|
|
config.assets.precompile << "icons.json"
|
|
|
|
config.assets.precompile << "illustrations/*.svg"
|
|
|
|
|
2018-08-03 09:15:04 -04:00
|
|
|
# Import css for xterm
|
|
|
|
config.assets.paths << "#{config.root}/node_modules/xterm/src/"
|
2018-08-03 08:41:33 -04:00
|
|
|
config.assets.precompile << "xterm.css"
|
|
|
|
|
2011-10-08 17:36:38 -04:00
|
|
|
# Version of your assets, change this if you want to expire all your assets
|
|
|
|
config.assets.version = '1.0'
|
2013-08-19 16:20:32 -04:00
|
|
|
|
2015-03-10 08:32:28 -04:00
|
|
|
config.action_view.sanitized_allowed_protocols = %w(smb)
|
|
|
|
|
2019-01-15 16:05:36 -05:00
|
|
|
# Can be removed once upgraded to Rails 5.1 or higher
|
|
|
|
config.action_controller.raise_on_unfiltered_parameters = true
|
|
|
|
|
2018-11-16 01:49:48 -05:00
|
|
|
# Nokogiri is significantly faster and uses less memory than REXML
|
|
|
|
ActiveSupport::XmlMini.backend = 'Nokogiri'
|
|
|
|
|
2018-07-06 16:20:02 -04:00
|
|
|
# This middleware needs to precede ActiveRecord::QueryCache and other middlewares that
|
|
|
|
# connect to the database.
|
2018-09-07 03:21:30 -04:00
|
|
|
config.middleware.insert_after Rails::Rack::Logger, ::Gitlab::Middleware::BasicHealthCheck
|
2018-07-06 16:20:02 -04:00
|
|
|
|
2017-09-15 13:31:32 -04:00
|
|
|
config.middleware.insert_after Warden::Manager, Rack::Attack
|
2013-12-05 03:29:45 -05:00
|
|
|
|
|
|
|
# Allow access to GitLab API from other domains
|
2016-09-22 08:20:17 -04:00
|
|
|
config.middleware.insert_before Warden::Manager, Rack::Cors do
|
2016-09-22 08:21:55 -04:00
|
|
|
allow do
|
|
|
|
origins Gitlab.config.gitlab.url
|
|
|
|
resource '/api/*',
|
|
|
|
credentials: true,
|
|
|
|
headers: :any,
|
|
|
|
methods: :any,
|
2017-03-02 04:14:22 -05:00
|
|
|
expose: ['Link', 'X-Total', 'X-Total-Pages', 'X-Per-Page', 'X-Page', 'X-Next-Page', 'X-Prev-Page']
|
2016-09-22 08:21:55 -04:00
|
|
|
end
|
|
|
|
|
|
|
|
# Cross-origin requests must not have the session cookie available
|
2013-12-05 03:29:45 -05:00
|
|
|
allow do
|
|
|
|
origins '*'
|
2015-01-23 15:33:20 -05:00
|
|
|
resource '/api/*',
|
2016-09-22 08:21:55 -04:00
|
|
|
credentials: false,
|
2015-01-23 15:33:20 -05:00
|
|
|
headers: :any,
|
2015-10-07 22:08:37 -04:00
|
|
|
methods: :any,
|
2017-03-02 04:14:22 -05:00
|
|
|
expose: ['Link', 'X-Total', 'X-Total-Pages', 'X-Per-Page', 'X-Page', 'X-Next-Page', 'X-Prev-Page']
|
2013-12-05 03:29:45 -05:00
|
|
|
end
|
|
|
|
end
|
2014-08-29 05:38:21 -04:00
|
|
|
|
2017-07-10 23:35:47 -04:00
|
|
|
# Use caching across all environments
|
|
|
|
caching_config_hash = Gitlab::Redis::Cache.params
|
|
|
|
caching_config_hash[:namespace] = Gitlab::Redis::Cache::CACHE_NAMESPACE
|
|
|
|
caching_config_hash[:expires_in] = 2.weeks # Cache should not grow forever
|
2016-09-22 02:38:35 -04:00
|
|
|
if Sidekiq.server? # threaded context
|
2017-07-10 23:35:47 -04:00
|
|
|
caching_config_hash[:pool_size] = Sidekiq.options[:concurrency] + 5
|
|
|
|
caching_config_hash[:pool_timeout] = 1
|
2016-09-22 02:38:35 -04:00
|
|
|
end
|
2018-01-11 11:34:01 -05:00
|
|
|
|
2017-07-10 23:35:47 -04:00
|
|
|
config.cache_store = :redis_store, caching_config_hash
|
2014-11-18 10:15:51 -05:00
|
|
|
|
2015-11-26 08:48:01 -05:00
|
|
|
config.active_job.queue_adapter = :sidekiq
|
|
|
|
|
2014-11-18 10:15:51 -05:00
|
|
|
# This is needed for gitlab-shell
|
|
|
|
ENV['GITLAB_PATH_OUTSIDE_HOOK'] = ENV['PATH']
|
2017-03-31 06:42:04 -04:00
|
|
|
ENV['GIT_TERMINAL_PROMPT'] = '0'
|
2016-03-04 15:00:11 -05:00
|
|
|
|
2018-09-21 08:05:37 -04:00
|
|
|
# GitLab Read-only middleware support
|
2018-06-12 23:12:38 -04:00
|
|
|
config.middleware.insert_after ActionDispatch::Flash, ::Gitlab::Middleware::ReadOnly
|
2017-09-19 03:44:58 -04:00
|
|
|
|
2016-03-04 15:00:11 -05:00
|
|
|
config.generators do |g|
|
2017-12-13 19:13:44 -05:00
|
|
|
g.factory_bot false
|
2016-03-04 15:00:11 -05:00
|
|
|
end
|
2017-06-29 13:06:35 -04:00
|
|
|
|
|
|
|
config.after_initialize do
|
|
|
|
Rails.application.reload_routes!
|
|
|
|
|
|
|
|
project_url_helpers = Module.new do
|
2017-07-07 11:43:37 -04:00
|
|
|
extend ActiveSupport::Concern
|
|
|
|
|
|
|
|
Gitlab::Application.routes.named_routes.helper_names.each do |name|
|
2017-06-29 13:06:35 -04:00
|
|
|
next unless name.include?('namespace_project')
|
|
|
|
|
|
|
|
define_method(name.sub('namespace_project', 'project')) do |project, *args|
|
2018-07-02 06:43:06 -04:00
|
|
|
send(name, project&.namespace, project, *args)
|
2017-06-29 13:06:35 -04:00
|
|
|
end
|
|
|
|
end
|
|
|
|
end
|
|
|
|
|
2017-08-03 07:50:06 -04:00
|
|
|
# We add the MilestonesRoutingHelper because we know that this does not
|
|
|
|
# conflict with the methods defined in `project_url_helpers`, and we want
|
|
|
|
# these methods available in the same places.
|
2017-07-07 11:43:37 -04:00
|
|
|
Gitlab::Routing.add_helpers(project_url_helpers)
|
2017-08-03 07:50:06 -04:00
|
|
|
Gitlab::Routing.add_helpers(MilestonesRoutingHelper)
|
2017-06-29 13:06:35 -04:00
|
|
|
end
|
2011-10-08 17:36:38 -04:00
|
|
|
end
|
|
|
|
end
|