'theme' => 'neo-gnu',
'path' => $_path,
'logfile' => null,
+ 'logdebug' => false,
'logo' => null,
'ssllogo' => null,
- 'logdebug' => false,
'logperf' => false, // Enable to dump performance counters to syslog
'logperf_detail' => false, // Enable to dump every counter hit
'fancy' => false,
'notice' => null, // site wide notice text
'build' => 1, // build number, for code-dependent cache
),
+ 'security' =>
+ array('hash_algos' => ['sha1', 'sha256', 'sha512'], // set to null for anything that hash_hmac() can handle (and is in hash_algos())
+ ),
'db' =>
array('database' => null, // must be set
'schema_location' => INSTALLDIR . '/classes',
'log_queries' => false, // true to log all DB queries
'log_slow_queries' => 0, // if set, log queries taking over N seconds
'mysql_foreign_keys' => false), // if set, enables experimental foreign key support on MySQL
+ 'fix' =>
+ array('fancyurls' => true, // makes sure aliases in WebFinger etc. are not f'd by index.php/ URLs
+ 'legacy_http' => false, // set this to true if you have upgraded your site from http=>https
+ ),
+ 'log' => [
+ 'debugtrace' => false, // index.php handleError function, whether to include exception backtrace in log
+ ],
'syslog' =>
array('appname' => 'statusnet', # for syslog
'priority' => 'debug', # XXX: currently ignored
array('banned' => array(),
'biolimit' => null,
'changenick' => false,
+ 'allowprivate' => false, // whether to allow setting stream to private ("only followers can read")
'backup' => false, // can cause DoS, so should be done via CLI
'restore' => false,
'delete' => false,
'path' => $_path . '/avatar/',
'ssl' => null,
'maxsize' => 300),
+ 'foaf' =>
+ array(
+ 'mbox_sha1sum' => false,
+ ),
'public' =>
array('localonly' => false,
'blacklist' => array(),
'application/vnd.oasis.opendocument.text-web' => 'oth',
'application/pdf' => 'pdf',
'application/zip' => 'zip',
+ 'application/x-bzip2' => 'bz2',
+ 'application/x-go-sgf' => 'sgf',
'application/xml' => 'xml',
+ 'application/gpx+xml' => 'gpx',
'image/png' => 'png',
'image/jpeg' => 'jpg',
'image/gif' => 'gif',
'user_quota' => 50000000,
'monthly_quota' => 15000000,
'uploads' => true,
- 'filename_base' => 'hash', // for new files, choose one: 'upload', 'hash'
'show_html' => false, // show (filtered) text/html attachments (and oEmbed HTML etc.). Doesn't affect AJAX calls.
'show_thumbs' => true, // show thumbnails in notice lists for uploaded images, and photos and videos linked remotely that provide oEmbed info
'process_links' => true, // check linked resources for embeddable photos and videos; this will hit referenced external web sites when processing new messages.
+ 'extblacklist' => [
+ 'php' => 'phps', // this turns .php into .phps
+ 'exe' => false, // this would deny any uploads to keep the "exe" file extension
+ ],
),
- 'thumbnail' =>
- array('crop' => false, // overridden to true if thumb height === null
+ 'thumbnail' => [
+ 'dir' => null, // falls back to File::path('thumb') (equivalent to ['attachments']['dir'] . '/thumb/')
+ 'path' => null, // falls back to generating a URL with File::url('thumb/$filename') (equivalent to ['attachments']['path'] . '/thumb/')
+ 'server' => null, // Only used if ['thumbnail']['path'] is NOT empty, and then it falls back to ['site']['server'], schema is decided from GNUsocial::useHTTPS()
+
+ 'crop' => false, // overridden to true if thumb height === null
'maxsize' => 1000, // thumbs with an edge larger than this will not be generated
'width' => 450,
'height' => 600,
'upscale' => false,
- 'animated' => false), // null="UseFileAsThumbnail", false="can use still frame". true requires ImageMagickPlugin
+ 'animated' => false, // null="UseFileAsThumbnail", false="can use still frame". true requires ImageMagickPlugin
+ ],
'application' =>
array('desclimit' => null),
'group' =>
array('maxaliases' => 3,
'desclimit' => null,
- 'addtag' => false),
+ 'addtag' => true),
'peopletag' =>
array('maxtags' => 100, // maximum number of tags a user can create.
'maxpeople' => 500, // maximum no. of people with the same tag by the same user
array('handle' => false, // whether to handle sessions ourselves
'debug' => false, // debugging output for sessions
'gc_limit' => 1000), // max sessions to expire at a time
- 'htmlfilter' => array( // purify HTML through HTMLPurifier
+ 'htmlfilter' => [ // remove tags from user/remotely generated HTML if they are === true
'img' => true,
'video' => true,
'audio' => true,
- ),
+ ],
+ 'htmlpurifier' => [ // configurable options for HTMLPurifier
+ 'Cache.DefinitionImpl' => 'Serializer',
+ 'Cache.SerializerPath' => implode(DIRECTORY_SEPARATOR, [sys_get_temp_dir(), 'gnusocial']),
+ ],
'notice' =>
array('contentlimit' => null,
+ 'allowprivate' => false, // whether to allow users to "check the padlock" to publish notices available for their subscribers.
'defaultscope' => null, // null means 1 if site/private, 0 otherwise
'hidespam' => true), // Whether to hide silenced users from timelines
'message' =>
'default' => array(
'Activity' => array(),
'AntiBrute' => array(),
+ 'Blacklist' => array(),
'Bookmark' => array(),
'ClientSideShorten' => array(),
'DefaultLayout' => array(),
'OpportunisticQM' => array(),
'OStatus' => array(),
'Poll' => array(),
- 'SearchSub' => array(),
'SimpleCaptcha' => array(),
'TagSub' => array(),
'WebFinger' => array(),
'ssl_verify_host' => true, // HTTPRequest2 makes sure this is set to CURLOPT_SSL_VERIFYHOST==2 if using curl
'curl' => false, // Use CURL backend for HTTP fetches if available. (If not, PHP's socket streams will be used.)
'connect_timeout' => 5,
+ 'timeout' => 60,
'proxy_host' => null,
'proxy_port' => null,
'proxy_user' => null,