syncserver/syncserver.ini

[server:main]
use = egg:gunicorn
host = 0.0.0.0
port = 5000
workers = 1
timeout = 30

[app:main]
use = egg:syncserver

[syncserver]
# This must be edited to point to the public URL of your server,
# i.e. the URL as seen by Firefox.
public_url = http://localhost:5000/

# This defines the database in which to store all server data.
#sqluri = sqlite:////tmp/syncserver.db

# This is a secret key used for signing authentication tokens.
# It should be long and randomly-generated.
# The following command will give a suitable value on *nix systems:
#
#    head -c 20 /dev/urandom | sha1sum
#
# If not specified then the server will generate a temporary one at startup.
#secret = INSERT_SECRET_KEY_HERE

# Set this to "false" to disable new-user signups on the server.
# Only request by existing accounts will be honoured.
# allow_new_users = false

# Set this to "true" to work around a mismatch between public_url and
# the application URL as seen by python, which can happen in certain reverse-
# proxy hosting setups.  It will overwrite the WSGI environ dict with the
# details from public_url.  This could have security implications if e.g.
# you tell the app that it's on HTTPS but it's really on HTTP, so it should
# only be used as a last resort and after careful checking of server config.
force_wsgi_environ = false

# Uncomment and edit the following to use a local BrowserID verifier
# rather than posting assertions to the mozilla-hosted verifier.
# Audiences should be set to your public_url without a trailing slash.
#[browserid]
#backend = tokenserver.verifiers.LocalVerifier
#audiences = https://localhost:5000
Initial commit; refactored from server-full2 codebase 2014-02-06 06:29:34 +00:00			`[server:main]`
Use gunicorn rather than pserve 2015-05-12 07:25:13 +00:00			`use = egg:gunicorn`
Initial commit; refactored from server-full2 codebase 2014-02-06 06:29:34 +00:00			`host = 0.0.0.0`
			`port = 5000`
Use gunicorn rather than pserve 2015-05-12 07:25:13 +00:00			`workers = 1`
			`timeout = 30`
Initial commit; refactored from server-full2 codebase 2014-02-06 06:29:34 +00:00
			`[app:main]`
			`use = egg:syncserver`

			`[syncserver]`
Add some additional comments in the example config file. 2014-04-30 05:50:21 +00:00			`# This must be edited to point to the public URL of your server,`
			`# i.e. the URL as seen by Firefox.`
Initial commit; refactored from server-full2 codebase 2014-02-06 06:29:34 +00:00			`public_url = http://localhost:5000/`

			`# This defines the database in which to store all server data.`
			`#sqluri = sqlite:////tmp/syncserver.db`

			`# This is a secret key used for signing authentication tokens.`
Add some additional comments in the example config file. 2014-04-30 05:50:21 +00:00			`# It should be long and randomly-generated.`
			`# The following command will give a suitable value on *nix systems:`
			`#`
Whoops, sha1sum only gives you 20 bits of entropy... 2014-04-30 05:55:51 +00:00			`# head -c 20 /dev/urandom \| sha1sum`
Add some additional comments in the example config file. 2014-04-30 05:50:21 +00:00			`#`
			`# If not specified then the server will generate a temporary one at startup.`
Initial commit; refactored from server-full2 codebase 2014-02-06 06:29:34 +00:00			`#secret = INSERT_SECRET_KEY_HERE`
Expose tokenserver's allow_new_users setting at top-level server config. 2014-05-02 02:39:46 +00:00
			`# Set this to "false" to disable new-user signups on the server.`
			`# Only request by existing accounts will be honoured.`
			`# allow_new_users = false`
Use of local browser verification Added additional pre-commented options to syncserver.ini to aid in the setup of a fresh sync-server when using a self-hosted accounts server. 2014-07-24 18:47:33 +00:00
Add "force_wsgi_environ" config option. This is the nuclear option for when your reverse proxy setup doesn't place nicely with our request-signing thing - it causes the app to unilaterally clobber its WSGI environment with values from public_url. 2015-02-13 05:26:17 +00:00			`# Set this to "true" to work around a mismatch between public_url and`
			`# the application URL as seen by python, which can happen in certain reverse-`
			`# proxy hosting setups. It will overwrite the WSGI environ dict with the`
			`# details from public_url. This could have security implications if e.g.`
			`# you tell the app that it's on HTTPS but it's really on HTTP, so it should`
			`# only be used as a last resort and after careful checking of server config.`
			`force_wsgi_environ = false`

Some stylistic fixes in config file comment. 2014-07-30 07:18:32 +00:00			`# Uncomment and edit the following to use a local BrowserID verifier`
Add "force_wsgi_environ" config option. This is the nuclear option for when your reverse proxy setup doesn't place nicely with our request-signing thing - it causes the app to unilaterally clobber its WSGI environment with values from public_url. 2015-02-13 05:26:17 +00:00			`# rather than posting assertions to the mozilla-hosted verifier.`
Some stylistic fixes in config file comment. 2014-07-30 07:18:32 +00:00			`# Audiences should be set to your public_url without a trailing slash.`
Use of local browser verification Added additional pre-commented options to syncserver.ini to aid in the setup of a fresh sync-server when using a self-hosted accounts server. 2014-07-24 18:47:33 +00:00			`#[browserid]`
			`#backend = tokenserver.verifiers.LocalVerifier`
			`#audiences = https://localhost:5000`