mastodon/config/environments/production.rb

Rails.application.configure do
  # Settings specified here will take precedence over those in config/application.rb.

  # Code is not reloaded between requests.
  config.cache_classes = true

  # Eager load code on boot. This eager loads most of Rails and
  # your application in memory, allowing both threaded web servers
  # and those relying on copy on write to perform better.
  # Rake tasks automatically ignore this option for performance.
  config.eager_load = true

  # Full error reports are disabled and caching is turned on.
  config.consider_all_requests_local       = false
  config.action_controller.perform_caching = true
  config.action_controller.asset_host      = ENV['CDN_HOST'] if ENV['CDN_HOST'].present?

  # Ensures that a master key has been made available in either ENV["RAILS_MASTER_KEY"]
  # or in config/master.key. This key is used to decrypt credentials (and other encrypted files).
  # config.require_master_key = true

  # Disable serving static files from the `/public` folder by default since
  # Apache or NGINX already handles this.
  config.public_file_server.enabled = ENV['RAILS_SERVE_STATIC_FILES'].present?

  ActiveSupport::Logger.new(STDOUT).tap do |logger|
    logger.formatter = config.log_formatter
    config.logger = ActiveSupport::TaggedLogging.new(logger)
  end

  # Compress JavaScripts and CSS.
  # config.assets.js_compressor = Uglifier.new(mangle: false)
  # config.assets.css_compressor = :sass

  # Do not fallback to assets pipeline if a precompiled asset is missed.
  config.assets.compile = false

  # `config.assets.precompile` and `config.assets.version` have moved to config/initializers/assets.rb

  # Specifies the header that your server uses for sending files.
  # config.action_dispatch.x_sendfile_header = 'X-Sendfile' # for Apache
  config.action_dispatch.x_sendfile_header = 'X-Accel-Redirect' # for NGINX

  # Allow to specify public IP of reverse proxy if it's needed
  config.action_dispatch.trusted_proxies = ENV['TRUSTED_PROXY_IP'].split.map { |item| IPAddr.new(item) } if ENV['TRUSTED_PROXY_IP'].present?

  config.force_ssl = true
  config.ssl_options = {
    redirect: {
      exclude: -> request { request.path.start_with?('/health') || request.headers["Host"].end_with?('.onion') }
    }
  }

  # Use the lowest log level to ensure availability of diagnostic information
  # when problems arise.
  config.log_level = ENV.fetch('RAILS_LOG_LEVEL', 'info').to_sym

  # Prepend all log lines with the following tags.
  config.log_tags = [:request_id]

  # Use a different cache store in production.
  config.cache_store = :redis_cache_store, REDIS_CACHE_PARAMS

  # Ignore bad email addresses and do not raise email delivery errors.
  # Set this to true and configure the email server for immediate delivery to raise delivery errors.
  # config.action_mailer.raise_delivery_errors = false

  # Enable locale fallbacks for I18n (makes lookups for any locale fall back to
  # English when a translation cannot be found).
  config.i18n.fallbacks = [:en]

  # Send deprecation notices to registered listeners.
  config.active_support.deprecation = :notify

  # Use default logging formatter so that PID and timestamp are not suppressed.
  config.log_formatter = ::Logger::Formatter.new

  # Better log formatting
  config.lograge.enabled = true

  config.lograge.custom_payload do |controller|
    if controller.respond_to?(:signed_request?) && controller.signed_request?
      { key: controller.signature_key_id }
    end
  end

  # Do not dump schema after migrations.
  config.active_record.dump_schema_after_migration = false

  config.action_mailer.perform_caching = false

  # E-mails
  config.action_mailer.default_options = {
    from: ENV.fetch('SMTP_FROM_ADDRESS', 'notifications@localhost'),
    reply_to: ENV['SMTP_REPLY_TO']
  }

  config.action_mailer.smtp_settings = {
    :port                 => ENV['SMTP_PORT'],
    :address              => ENV['SMTP_SERVER'],
    :user_name            => ENV['SMTP_LOGIN'].presence,
    :password             => ENV['SMTP_PASSWORD'].presence,
    :domain               => ENV['SMTP_DOMAIN'] || ENV['LOCAL_DOMAIN'],
    :authentication       => ENV['SMTP_AUTH_METHOD'] == 'none' ? nil : ENV['SMTP_AUTH_METHOD'] || :plain,
    :ca_file              => ENV['SMTP_CA_FILE'].presence,
    :openssl_verify_mode  => ENV['SMTP_OPENSSL_VERIFY_MODE'],
    :enable_starttls_auto => ENV['SMTP_ENABLE_STARTTLS_AUTO'] || true,
    :tls                  => ENV['SMTP_TLS'].presence,
    :ssl                  => ENV['SMTP_SSL'].presence,
  }

  config.action_mailer.delivery_method = ENV.fetch('SMTP_DELIVERY_METHOD', 'smtp').to_sym

  config.action_dispatch.default_headers = {
    'Server'                 => 'Mastodon',
    'X-Frame-Options'        => 'DENY',
    'X-Content-Type-Options' => 'nosniff',
    'X-XSS-Protection'       => '1; mode=block',
  }

  config.x.otp_secret = ENV.fetch('OTP_SECRET')
end
Initial commit 2016-02-20 21:53:20 +00:00			`Rails.application.configure do`
			`# Settings specified here will take precedence over those in config/application.rb.`

			`# Code is not reloaded between requests.`
			`config.cache_classes = true`

			`# Eager load code on boot. This eager loads most of Rails and`
			`# your application in memory, allowing both threaded web servers`
			`# and those relying on copy on write to perform better.`
			`# Rake tasks automatically ignore this option for performance.`
			`config.eager_load = true`

			`# Full error reports are disabled and caching is turned on.`
			`config.consider_all_requests_local = false`
Adding OAuth access scopes, fixing OAuth authorization UI, adding rate limiting to the API 2016-10-22 17:38:47 +00:00			`config.action_controller.perform_caching = true`
Fix missing protocol in dns-prefetch, improve code style (#8963) Regression from #8942 2018-10-12 00:19:10 +00:00			`config.action_controller.asset_host = ENV['CDN_HOST'] if ENV['CDN_HOST'].present?`
Initial commit 2016-02-20 21:53:20 +00:00
Upgrade Rails to version 5.2.0 (#5898) 2018-04-12 12:45:17 +00:00			`# Ensures that a master key has been made available in either ENV["RAILS_MASTER_KEY"]`
			`# or in config/master.key. This key is used to decrypt credentials (and other encrypted files).`
			`# config.require_master_key = true`

Initial commit 2016-02-20 21:53:20 +00:00			# Disable serving static files from the `/public` folder by default since
			`# Apache or NGINX already handles this.`
Upgrade to Rails 5.0.0.1 2016-08-17 15:56:23 +00:00			`config.public_file_server.enabled = ENV['RAILS_SERVE_STATIC_FILES'].present?`
Initial commit 2016-02-20 21:53:20 +00:00
Remove rails_12factor (#2901) 2017-05-09 03:15:54 +00:00			`ActiveSupport::Logger.new(STDOUT).tap do \|logger\|`
			`logger.formatter = config.log_formatter`
			`config.logger = ActiveSupport::TaggedLogging.new(logger)`
			`end`

Initial commit 2016-02-20 21:53:20 +00:00			`# Compress JavaScripts and CSS.`
remove Uglifier call from production.rb (#6568) 2018-02-27 04:48:11 +00:00			`# config.assets.js_compressor = Uglifier.new(mangle: false)`
Initial commit 2016-02-20 21:53:20 +00:00			`# config.assets.css_compressor = :sass`

			`# Do not fallback to assets pipeline if a precompiled asset is missed.`
			`config.assets.compile = false`

			# `config.assets.precompile` and `config.assets.version` have moved to config/initializers/assets.rb

			`# Specifies the header that your server uses for sending files.`
			`# config.action_dispatch.x_sendfile_header = 'X-Sendfile' # for Apache`
Adding rack timeout of 30sec, PuSH jobs moved to push queue so they can be processed separately 2016-11-29 01:07:14 +00:00			`config.action_dispatch.x_sendfile_header = 'X-Accel-Redirect' # for NGINX`
Initial commit 2016-02-20 21:53:20 +00:00
Allow to specify trusted proxies through env 2017-01-22 19:35:49 +00:00			`# Allow to specify public IP of reverse proxy if it's needed`
lint pass 2 (#8878) * Code quality pass * Typofix * Update applications_controller_spec.rb * Update applications_controller_spec.rb 2018-10-04 15:38:04 +00:00			`config.action_dispatch.trusted_proxies = ENV['TRUSTED_PROXY_IP'].split.map { \|item\| IPAddr.new(item) } if ENV['TRUSTED_PROXY_IP'].present?`
Allow to specify trusted proxies through env 2017-01-22 19:35:49 +00:00
Update Mastodon to Rails 6.1 (#15910) * Update devise-two-factor to unreleased fork for Rails 6 support Update tests to match new `rotp` version. * Update nsa gem to unreleased fork for Rails 6 support * Update rails to 6.1.3 and rails-i18n to 6.0 * Update to unreleased fork of pluck_each for Ruby 6 support * Run "rails app:update" * Add missing ActiveStorage config file * Use config.ssl_options instead of removed ApplicationController#force_ssl Disabled force_ssl-related tests as they do not seem to be easily testable anymore. * Fix nonce directives by removing Rails 5 specific monkey-patching * Fix fixture_file_upload deprecation warning * Fix yield-based test failing with Rails 6 * Use Rails 6's index_with when possible * Use ActiveRecord::Cache::Store#delete_multi from Rails 6 This will yield better performances when deleting an account * Disable Rails 6.1's automatic preload link headers Since Rails 6.1, ActionView adds preload links for javascript files in the Links header per default. In our case, that will bloat headers too much and potentially cause issues with reverse proxies. Furhermore, we don't need those links, as we already output them as HTML link tags. * Switch to Rails 6.0 default config * Switch to Rails 6.1 default config * Do not include autoload paths in the load path 2021-03-24 09:44:31 +00:00			`config.force_ssl = true`
			`config.ssl_options = {`
			`redirect: {`
			`exclude: -> request { request.path.start_with?('/health') \|\| request.headers["Host"].end_with?('.onion') }`
			`}`
			`}`

Update Rails to version 5.1.1 (#3121) * Update rails to version 5.1.1 * Run `rails app:update` * Remove the override of polymorphic activity relationship * Silence warning about otp_secret attribute being unknown to rails * We will only introduce form_with where we want to use remote data 2017-06-01 18:53:37 +00:00			`# Use the lowest log level to ensure availability of diagnostic information`
Initial commit 2016-02-20 21:53:20 +00:00			`# when problems arise.`
Change default log level in production from :debug to :info for less I/O (#1579) 2017-04-11 21:28:23 +00:00			`config.log_level = ENV.fetch('RAILS_LOG_LEVEL', 'info').to_sym`
Initial commit 2016-02-20 21:53:20 +00:00
			`# Prepend all log lines with the following tags.`
Improve glow 2017-02-23 01:14:35 +00:00			`config.log_tags = [:request_id]`
Initial commit 2016-02-20 21:53:20 +00:00
Set config.cache_store in environments file. (#3219) * Set config.cache_store in application.rb * Set config.cache_store in environments. * fix code format. 2017-05-22 13:01:02 +00:00			`# Use a different cache store in production.`
Prepare Mastodon for Rails 6 (#15911) * Fix misuse of foreign_type * Fix use of removed "add_template_helper" * Use response.media_type instead of response.content_type in tests * Fix CSV export controller test on Rails 6 Rails 6 sets a "filename" field in the Content-Disposition header to explicitly encode the filename as UTF-8. This changes checks the first part of the Content-Disposition header so it matches in both Rails 5 and Rails 6. Fix emoji formatting with Rails 6 * Make emoji output more idiomatic and robust * Switch from redis-rails gem to built-in Rails redis cache storage 2021-03-17 09:09:55 +00:00			`config.cache_store = :redis_cache_store, REDIS_CACHE_PARAMS`
Set config.cache_store in environments file. (#3219) * Set config.cache_store in application.rb * Set config.cache_store in environments. * fix code format. 2017-05-22 13:01:02 +00:00
Initial commit 2016-02-20 21:53:20 +00:00			`# Ignore bad email addresses and do not raise email delivery errors.`
			`# Set this to true and configure the email server for immediate delivery to raise delivery errors.`
			`# config.action_mailer.raise_delivery_errors = false`

			`# Enable locale fallbacks for I18n (makes lookups for any locale fall back to`
Fix i18n fallback configuration conflicts with environment configurations (#6843) 2018-03-20 15:36:20 +00:00			`# English when a translation cannot be found).`
			`config.i18n.fallbacks = [:en]`
Initial commit 2016-02-20 21:53:20 +00:00
			`# Send deprecation notices to registered listeners.`
			`config.active_support.deprecation = :notify`

			`# Use default logging formatter so that PID and timestamp are not suppressed.`
			`config.log_formatter = ::Logger::Formatter.new`

Improving production logs, removing n+1 on media attachments in atom, adding attachments display to static views 2016-09-07 23:24:26 +00:00			`# Better log formatting`
			`config.lograge.enabled = true`

Add HTTP signature keyId to request log (#11591) 2019-08-18 16:03:56 +00:00			`config.lograge.custom_payload do \|controller\|`
			`if controller.respond_to?(:signed_request?) && controller.signed_request?`
			`{ key: controller.signature_key_id }`
			`end`
			`end`

Initial commit 2016-02-20 21:53:20 +00:00			`# Do not dump schema after migrations.`
			`config.active_record.dump_schema_after_migration = false`
Adding e-mail configuration 2016-03-16 11:13:40 +00:00
Upgrade to Rails 5.0.0.1 2016-08-17 15:56:23 +00:00			`config.action_mailer.perform_caching = false`

Adding e-mail configuration 2016-03-16 11:13:40 +00:00			`# E-mails`
Add SMTP reply_to option (#11718) * Add SMTP_REPLY_TO in .env.production.sample * Set reply_to in SMTP options 2019-09-02 16:12:40 +00:00			`config.action_mailer.default_options = {`
			`from: ENV.fetch('SMTP_FROM_ADDRESS', 'notifications@localhost'),`
			`reply_to: ENV['SMTP_REPLY_TO']`
			`}`
Set default From address in config (#3756) The old implementation sets default From address in mailers. It sets the address from SMTP_FROM_ADDRESS, or notifications@localhost. The behavior is occasionally undesired results. In production environment, notifications@localhost is likely to be incorrect. In testing environment, the email address should not be varied by a environment variable. After appling this change, In production environment, it will throw an exception when launching Mastodon. In testing environment, the address will be fixed with notifications@localhost. 2017-07-06 22:12:12 +00:00
Adding e-mail configuration 2016-03-16 11:13:40 +00:00			`config.action_mailer.smtp_settings = {`
Fix #1535 - #1372 set a wrong default on :openssl_verify_mode (#1563) 2017-04-11 20:49:53 +00:00			`:port => ENV['SMTP_PORT'],`
			`:address => ENV['SMTP_SERVER'],`
Send nil for SMTP_LOGIN or SMTP_PASSWORD if it was left blank in the envfile, otherwise Ruby still attempts auth even if SMTP_AUTH_METHOD is none (#2180) 2017-04-20 01:12:14 +00:00			`:user_name => ENV['SMTP_LOGIN'].presence,`
			`:password => ENV['SMTP_PASSWORD'].presence,`
Modify ActionMailer configuration to default to ENV['LOCAL_DOMAIN'] if ENV['SMTP_DOMAIN'] is not set. The previous fallback, config.x.local_domain, is undefined when the code is called. (#1745) 2017-04-14 09:02:25 +00:00			`:domain => ENV['SMTP_DOMAIN'] \|\| ENV['LOCAL_DOMAIN'],`
Allow using an SMTP server without authentication (#1597) * Allow using an SMTP server without authentication (e.g Postfix relay on the same host) by setting SMTP_LOGIN and SMTP_AUTH_METHOD to 'none' * Add note in .env.production.sample about SMTP settings for servers where no auth is required * Assume that SMTP_LOGIN and SMTP_PASSWORD will be blank if we set SMTP_AUTH_METHOD to none 2017-04-17 08:41:19 +00:00			`:authentication => ENV['SMTP_AUTH_METHOD'] == 'none' ? nil : ENV['SMTP_AUTH_METHOD'] \|\| :plain,`
Allow to set CA file for SMTP (#2713) 2017-05-02 23:03:12 +00:00			`:ca_file => ENV['SMTP_CA_FILE'].presence,`
Fix #1535 - #1372 set a wrong default on :openssl_verify_mode (#1563) 2017-04-11 20:49:53 +00:00			`:openssl_verify_mode => ENV['SMTP_OPENSSL_VERIFY_MODE'],`
More SMTP customization (#1372) * Allow SMTP auth method customization * Add SMTP openssl_verify_mode option support Allows one use self-signed certs with their SMTP server. * Add SMTP enable_starttls_auto option support 2017-04-10 19:48:30 +00:00			`:enable_starttls_auto => ENV['SMTP_ENABLE_STARTTLS_AUTO'] \|\| true,`
Add SMTP_TLS variable for configuring TLS when server uses non-standard port (#4227) 2017-07-16 21:48:35 +00:00			`:tls => ENV['SMTP_TLS'].presence,`
add ssl option in smtp setting (#14309) 2020-07-15 12:43:49 +00:00			`:ssl => ENV['SMTP_SSL'].presence,`
Adding e-mail configuration 2016-03-16 11:13:40 +00:00			`}`

smtp delivery type fix (#1556) * delivery fix # Conflicts: # config/environments/production.rb * added stub in .env file * reordered and added a comment 2017-04-13 17:51:49 +00:00			`config.action_mailer.delivery_method = ENV.fetch('SMTP_DELIVERY_METHOD', 'smtp').to_sym`

Add digest e-mails 2017-03-03 22:45:48 +00:00			`config.action_dispatch.default_headers = {`
			`'Server' => 'Mastodon',`
			`'X-Frame-Options' => 'DENY',`
			`'X-Content-Type-Options' => 'nosniff',`
			`'X-XSS-Protection' => '1; mode=block',`
			`}`
Provide default OTP_SECRET value for development environment (#6617) 2018-03-04 19:28:24 +00:00
			`config.x.otp_secret = ENV.fetch('OTP_SECRET')`
Initial commit 2016-02-20 21:53:20 +00:00			`end`