Commit e85bc35f authored by Daniel Stone's avatar Daniel Stone
Browse files

Add initial gitlab.fd.o Helm config

parents
baseDomain: freedesktop.org
legoEmail: daniel@fooishbar.org
gitlabCEImage: gitlab/gitlab-ce:10.5.4-ce.0
mattermostEnable: false
prometheusEnable: false
#postgresStorageSize:
#redisStorageSize:
#gitlabDataStorageSize:
#gitlabRegistryStorageSize:
#gitlabConfigStorageSize:
baseIP: 35.185.111.185
#pagesExternalScheme: http
#pagesExternalDomain: freedesktop.io
#pagesTlsSecret: fdo-gitlab-pages-tls-secret
# randomly generated
#mattermostAppSecret:
#mattermostAppUID:
# randomly generated
#postgresPassword:
# must be the same as gitlab-runner/runnerRegistrationToken
#initialSharedRunnersRegistrationToken:
#gitlab-runner:
# runnerRegistrationToken:
omnibusConfigRuby: |
gitlab_rails['omniauth_enabled'] = true
gitlab_rails['omniauth_allow_single_sign_on'] = true
gitlab_rails['omniauth_block_auto_created_users'] = true
gitlab_rails['omniauth_providers'] = [
{
"name" => "google_oauth2",
"app_id" => "240790885567-tpg15dmo6h25k7ej0sqc55ctsmfcrn71.apps.googleusercontent.com",
"app_secret" => ENV['OAUTH_GOOGLE_SECRET'],
"args" => { "access_type" => "offline", "approval_prompt" => "" }
},
{
"name" => "gitlab",
"app_id" => "f69dfe1b9095161df31752bdc839b268eaffb45c53f6a5228ec7c070b09fab26",
"app_secret" => ENV['OAUTH_GITLAB_SECRET'],
"args" => { "scope" => "api" }
},
{
"name" => "github",
"app_id" => "d3663cdf77c8b1cf500e",
"app_secret" => ENV['OAUTH_GITHUB_SECRET'],
"args" => { "scope" => "user:email" }
},
{
"name" => "twitter",
"app_id" => "c1AJ3XJURmpOGV9fyqXNmHlw8",
"app_secret" => ENV['OAUTH_TWITTER_SECRET']
}
]
gitlab_rails['smtp_enable'] = false
gitlab_rails['smtp_address'] = "gabe.freedesktop.org"
gitlab_rails['smtp_port'] = 5878
gitlab_rails['smtp_user_name'] = "gitlab@gitlab.freedesktop.org"
gitlab_rails['smtp_domain'] = "gitlab.freedesktop.org"
gitlab_rails['smtp_password'] = ENV['SMTP_PASSWORD']
gitlab_rails['smtp_authentication'] = "login"
gitlab_rails['smtp_enable_starttls_auto'] = true
gitlab_rails['smtp_tls'] = false
gitlab_rails['smtp_openssl_verify_mode'] = 'peer'
gitlab_rails['rack_attack_git_basic_auth'] = {
'enabled' => true,
'ip_whitelist' => ["81.107.170.90"], # Whitelisted urls
'maxretry' => 10, # Limit the number of Git HTTP authentication attempts per IP
'findtime' => 360, # Reset the auth attempt counter per IP after 60 seconds
'bantime' => 3600 # Ban an IP for one hour (3600s) after too many auth attempts
}
Supports Markdown
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment