mirror of
https://we.phorge.it/source/phorge.git
synced 2024-12-20 12:30:56 +01:00
02b174c2af
Summary: Ref T6941. In the cluster (and in other reasonable setups) we've separated SSH load balancers from HTTP load balancers. In particular, ELBs will not let you load balance port 22, so this is likely a reasonable/common issue in larger clusters in AWS. Allow users to specify an alternate host for SSH traffic. Test Plan: Set host to someting different, saw it reflected in UI. Reviewers: btrahan Reviewed By: btrahan Subscribers: epriestley Maniphest Tasks: T6941 Differential Revision: https://secure.phabricator.com/D11800
143 lines
5.6 KiB
PHP
143 lines
5.6 KiB
PHP
<?php
|
|
|
|
final class PhabricatorDiffusionConfigOptions
|
|
extends PhabricatorApplicationConfigOptions {
|
|
|
|
public function getName() {
|
|
return pht('Diffusion');
|
|
}
|
|
|
|
public function getDescription() {
|
|
return pht('Configure Diffusion repository browsing.');
|
|
}
|
|
|
|
public function getFontIcon() {
|
|
return 'fa-code';
|
|
}
|
|
|
|
public function getGroup() {
|
|
return 'apps';
|
|
}
|
|
|
|
public function getOptions() {
|
|
return array(
|
|
$this->newOption(
|
|
'metamta.diffusion.subject-prefix',
|
|
'string',
|
|
'[Diffusion]')
|
|
->setDescription(pht('Subject prefix for Diffusion mail.')),
|
|
$this->newOption(
|
|
'metamta.diffusion.reply-handler-domain',
|
|
'string',
|
|
null)
|
|
->setLocked(true)
|
|
->setDescription(
|
|
pht(
|
|
'See {{metamta.maniphest.reply-handler}}. This does the same '.
|
|
'thing, but affects Diffusion.')),
|
|
$this->newOption(
|
|
'metamta.diffusion.reply-handler',
|
|
'class',
|
|
'PhabricatorAuditReplyHandler')
|
|
->setLocked(true)
|
|
->setBaseClass('PhabricatorMailReplyHandler')
|
|
->setDescription(pht('Override mail reply handler class.')),
|
|
$this->newOption(
|
|
'metamta.diffusion.attach-patches',
|
|
'bool',
|
|
false)
|
|
->setBoolOptions(
|
|
array(
|
|
pht('Attach Patches'),
|
|
pht('Do Not Attach Patches'),
|
|
))
|
|
->setDescription(pht(
|
|
'Set this to true if you want patches to be attached to commit '.
|
|
'notifications from Diffusion.')),
|
|
$this->newOption('metamta.diffusion.inline-patches', 'int', 0)
|
|
->setSummary(pht('Include patches in Diffusion mail as body text.'))
|
|
->setDescription(
|
|
pht(
|
|
'To include patches in Diffusion email bodies, set this to a '.
|
|
'positive integer. Patches will be inlined if they are at most '.
|
|
'that many lines. By default, patches are not inlined.')),
|
|
$this->newOption('metamta.diffusion.byte-limit', 'int', 1024 * 1024)
|
|
->setDescription(pht('Hard byte limit on including patches in email.')),
|
|
$this->newOption('metamta.diffusion.time-limit', 'int', 60)
|
|
->setDescription(pht('Hard time limit on generating patches.')),
|
|
$this->newOption(
|
|
'audit.can-author-close-audit',
|
|
'bool',
|
|
false)
|
|
->setBoolOptions(
|
|
array(
|
|
pht('Enable Closing Audits'),
|
|
pht('Disable Closing Audits'),
|
|
))
|
|
->setDescription(pht('Controls whether Author can Close Audits.')),
|
|
|
|
$this->newOption('bugtraq.url', 'string', '')
|
|
->addExample('https://bugs.php.net/%BUGID%', pht('PHP bugs'))
|
|
->addExample('/%BUGID%', pht('Local Maniphest URL'))
|
|
->setDescription(pht(
|
|
'URL of external bug tracker used by Diffusion. %s will be '.
|
|
'substituted by the bug ID.',
|
|
'%BUGID%')),
|
|
$this->newOption('bugtraq.logregex', 'list<regex>', array())
|
|
->addExample(array('/\B#([1-9]\d*)\b/'), pht('Issue #123'))
|
|
->addExample(
|
|
array('/[Ii]ssues?:?(\s*,?\s*#\d+)+/', '/(\d+)/'),
|
|
pht('Issue #123, #456'))
|
|
->addExample(array('/(?<!#)\b(T[1-9]\d*)\b/'), pht('Task T123'))
|
|
->addExample('/[A-Z]{2,}-\d+/', pht('JIRA-1234'))
|
|
->setDescription(pht(
|
|
'Regular expression to link external bug tracker. See '.
|
|
'http://tortoisesvn.net/docs/release/TortoiseSVN_en/'.
|
|
'tsvn-dug-bugtracker.html for further explanation.')),
|
|
$this->newOption('diffusion.allow-http-auth', 'bool', false)
|
|
->setBoolOptions(
|
|
array(
|
|
pht('Allow HTTP Basic Auth'),
|
|
pht('Disable HTTP Basic Auth'),
|
|
))
|
|
->setSummary(pht('Enable HTTP Basic Auth for repositories.'))
|
|
->setDescription(
|
|
pht(
|
|
"Phabricator can serve repositories over HTTP, using HTTP basic ".
|
|
"auth.\n\n".
|
|
"Because HTTP basic auth is less secure than SSH auth, it is ".
|
|
"disabled by default. You can enable it here if you'd like to use ".
|
|
"it anyway. There's nothing fundamentally insecure about it as ".
|
|
"long as Phabricator uses HTTPS, but it presents a much lower ".
|
|
"barrier to attackers than SSH does.\n\n".
|
|
"Consider using SSH for authenticated access to repositories ".
|
|
"instead of HTTP.")),
|
|
$this->newOption('diffusion.ssh-user', 'string', null)
|
|
->setLocked(true)
|
|
->setSummary(pht('Login username for SSH connections to repositories.'))
|
|
->setDescription(
|
|
pht(
|
|
'When constructing clone URIs to show to users, Diffusion will '.
|
|
'fill in this login username. If you have configured a VCS user '.
|
|
'like `git`, you should provide it here.')),
|
|
$this->newOption('diffusion.ssh-port', 'int', null)
|
|
->setLocked(true)
|
|
->setSummary(pht('Port for SSH connections to repositories.'))
|
|
->setDescription(
|
|
pht(
|
|
'When constructing clone URIs to show to users, Diffusion by '.
|
|
'default will not display a port assuming the default for your '.
|
|
'VCS. Explicitly declare when running on a non-standard port.')),
|
|
$this->newOption('diffusion.ssh-host', 'string', null)
|
|
->setLocked(true)
|
|
->setSummary(pht('Host for SSH connections to repositories.'))
|
|
->setDescription(
|
|
pht(
|
|
'If you accept Phabricator SSH traffic on a different host '.
|
|
'from web traffic (for example, if you use different SSH and '.
|
|
'web load balancers), you can set the SSH hostname here. This '.
|
|
'is an advanced option.')),
|
|
);
|
|
}
|
|
|
|
}
|