Untitled

# nginx['worker_connections'] = 10240
# nginx['log_format'] = '$remote_addr - $remote_u
ser [$time_local] "$request" $status $body_bytes_
sent "$http_referer" "$http_user_agent"'
# nginx['sendfile'] = 'on'
# nginx['tcp_nopush'] = 'on'
# nginx['tcp_nodelay'] = 'on'
# nginx['gzip'] = "on"
# nginx['gzip_http_version'] = "1.0"
# nginx['gzip_comp_level'] = "2"
# nginx['gzip_proxied'] = "any"
# nginx['gzip_types'] = [ "text/plain", "text/css
", "application/x-javascript", "text/xml", "appli
cation/xml", "application/xml+rss", "text/javascr
ipt", "application/json" ]
# nginx['keepalive_timeout'] = 65
# nginx['cache_max_size'] = '5000m'
# nginx['server_names_hash_bucket_size'] = 64

### Nginx status
# nginx['status'] = {
#  "enable" => true,
#  "listen_addresses" => ["127.0.0.1"],
#  "fqdn" => "dev.example.com",
#  "port" => 9999,
#  "options" => {
#    "stub_status" => "on", # Turn on stats
#    "server_tokens" => "off", # Don't show the v
ersion of NGINX
#    "access_log" => "off", # Disable logs for st
ats
#    "allow" => "127.0.0.1", # Only allow access
from localhost
#    "deny" => "all" # Deny access to anyone else
#  }
# }

#################################################
###############################
## GitLab Logging
##! Docs: https://docs.gitlab.com/omnibus/setting
s/logs.html
#################################################
###############################

# logging['svlogd_size'] = 200 * 1024 * 1024 # ro
tate after 200 MB of log data
# logging['svlogd_num'] = 30 # keep 30 rotated lo
g files
# logging['svlogd_timeout'] = 24 * 60 * 60 # rota
te after 24 hours
# logging['svlogd_filter'] = "gzip" # compress lo
gs with gzip
# logging['svlogd_udp'] = nil # transmit log mess
ages via UDP
# logging['svlogd_prefix'] = nil # custom prefix
for log messages
# logging['logrotate_frequency'] = "daily" # rota
te logs daily
# logging['logrotate_size'] = nil # do not rotate
 by size by default
# logging['logrotate_rotate'] = 30 # keep 30 rota
ted logs
# logging['logrotate_compress'] = "compress" # se
e 'man logrotate'
# logging['logrotate_method'] = "copytruncate" #
see 'man logrotate'
# logging['logrotate_postrotate'] = nil # no post
rotate command by default
# logging['logrotate_dateformat'] = nil # use dat
e extensions for rotated files rather than number
s e.g. a value of "-%Y-%m-%d" would give rotated
files like production.log-2016-03-09.gz

#################################################
###############################
## Logrotate
##! Docs: https://docs.gitlab.com/omnibus/setting
s/logs.html#logrotate
##! You can disable built in logrotate feature.
#################################################
###############################
# logrotate['enable'] = true

#################################################
###############################
## Users and groups accounts
##! Disable management of users and groups accoun
ts.
##! **Set only if creating accounts manually**
##! Docs: https://docs.gitlab.com/omnibus/setting
s/configuration.html#disable-user-and-group-accou
nt-management
#################################################
###############################

# manage_accounts['enable'] = false

#################################################
###############################
## Storage directories
##! Disable managing storage directories
##! Docs: https://docs.gitlab.com/omnibus/setting
s/configuration.html#disable-storage-directories-
management
#################################################
###############################

##! **Set only if the select directories are crea
ted manually**
# manage_storage_directories['enable'] = false
# manage_storage_directories['manage_etc'] = fals
e

#################################################
###############################
## Runtime directory
##! Docs: https://docs.gitlab.com//omnibus/settin
gs/configuration.html#runtime-directory
#################################################
###############################

# runtime_dir '/run'

#################################################
###############################
## Git
##! Advanced setting for configuring git system s
ettings for omnibus-gitlab
##! internal git
#################################################
###############################

##! For multiple options under one header use arr
ay of comma separated values,
##! eg.:
##! { "receive" => ["fsckObjects = true"], "alias
" => ["st = status", "co = checkout"] }

# omnibus_gitconfig['system'] = {
#  "pack" => ["threads = 1"],
#  "receive" => ["fsckObjects = true"],
#  "repack" => ["writeBitmaps = true"],
#  "transfer" => ["hideRefs=^refs/tmp/", "hideRef
s=^refs/keep-around/"],
# }

#################################################
###############################
## GitLab Pages
##! Docs: https://docs.gitlab.com/ce/pages/admini
stration.html
#################################################
###############################

##! Define to enable GitLab Pages
# pages_external_url "http://pages.example.com/"
# gitlab_pages['enable'] = false

##! Configure to expose GitLab Pages on external
IP address, serving the HTTP
# gitlab_pages['external_http'] = []

##! Configure to expose GitLab Pages on external
IP address, serving the HTTPS
# gitlab_pages['external_https'] = []

# gitlab_pages['listen_proxy'] = "localhost:8090"
# gitlab_pages['redirect_http'] = true
# gitlab_pages['use_http2'] = true
# gitlab_pages['dir'] = "/var/opt/gitlab/gitlab-p
ages"
# gitlab_pages['log_directory'] = "/var/log/gitla
b/gitlab-pages"

##! Prometheus metrics for Pages docs: https://gi
tlab.com/gitlab-org/gitlab-pages/#enable-promethe
us-metrics
# gitlab_pages['metrics_address'] = ":9235"

#################################################
###############################
## GitLab Pages NGINX
#################################################
###############################

# All the settings defined in the "GitLab Nginx"
section are also available in this "GitLab Pages
NGINX" section
# You just have to change the key "nginx['some_se
ttings']" with "pages_nginx['some_settings']"

# Below you can find settings that are exclusive
to "GitLab Pages NGINX"
# pages_nginx['enable'] = false

# gitlab_rails['pages_path'] = "/mnt/storage/page
s"

#################################################
###############################
## GitLab CI
##! Docs: https://docs.gitlab.com/ce/ci/quick_sta
rt/README.html
#################################################
###############################

# gitlab_ci['gitlab_ci_all_broken_builds'] = true
# gitlab_ci['gitlab_ci_add_pusher'] = true
# gitlab_ci['builds_directory'] = '/var/opt/gitla
b/gitlab-ci/builds'

#################################################
###############################
## GitLab Mattermost
##! Docs: https://docs.gitlab.com/omnibus/gitlab-
mattermost
#################################################
###############################

# mattermost_external_url 'http://mattermost.exam
ple.com'

# mattermost['enable'] = false
# mattermost['username'] = 'mattermost'
# mattermost['group'] = 'mattermost'
# mattermost['uid'] = nil
# mattermost['gid'] = nil
# mattermost['home'] = '/var/opt/gitlab/mattermos
t'
# mattermost['database_name'] = 'mattermost_produ
ction'

# mattermost['service_use_ssl'] = false
# mattermost['service_address'] = "127.0.0.1"
# mattermost['service_port'] = "8065"
# mattermost['service_site_url'] = nil
# mattermost['service_maximum_login_attempts'] =
10
# mattermost['service_google_developer_key'] = ni
l
# mattermost['service_enable_incoming_webhooks']
= true
# mattermost['service_enable_post_username_overri
de'] = true
# mattermost['service_enable_post_icon_override']
 = true
# mattermost['service_enable_testing'] = false
# mattermost['service_enable_security_fix_alert']
 = true
# mattermost['service_enable_insecure_outgoing_co
nnections'] = false
# mattermost['service_allow_cors_from'] = ""
# mattermost['service_enable_outgoing_webhooks']
= true
# mattermost['service_enable_commands'] = true
# mattermost['service_enable_custom_emoji'] = fal
se
# mattermost['service_enable_only_admin_integrati
ons'] = true
# mattermost['service_enable_oauth_service_provid
er'] = false
# mattermost['service_enable_developer'] = false
# mattermost['service_session_length_web_in_days'
] = 30
# mattermost['service_session_length_mobile_in_da
ys'] = 30
# mattermost['service_session_length_sso_in_days'
] = 30
# mattermost['service_session_cache_in_minutes']
= 10
# mattermost['service_connection_security'] = nil
# mattermost['service_tls_cert_file'] = nil
# mattermost['service_tls_key_file'] = nil
# mattermost['service_use_lets_encrypt'] = false
# mattermost['service_lets_encrypt_cert_cache_fil
e'] = "./config/letsencrypt.cache"
# mattermost['service_forward_80_to_443'] = false
# mattermost['service_read_timeout'] = 300
# mattermost['service_write_timeout'] = 300
# mattermost['service_time_between_user_typing_up
dates_milliseconds'] = 5000
# mattermost['service_enable_link_previews'] = fa
lse
# mattermost['service_enable_user_typing_messages
'] = true
# mattermost['service_enable_post_search'] = true
# mattermost['service_enable_user_statuses'] = tr
ue

# mattermost['team_site_name'] = "GitLab Mattermo
st"
# mattermost['team_max_users_per_team'] = 150
# mattermost['team_enable_team_creation'] = true
# mattermost['team_enable_user_creation'] = true
# mattermost['team_enable_open_server'] = false
# mattermost['team_allow_public_link'] = true
# mattermost['team_allow_valet_default'] = false
# mattermost['team_restrict_creation_to_domains']
 = "gmail.com"
# mattermost['team_restrict_team_names'] = true
# mattermost['team_restrict_direct_message'] = "a
ny"
# mattermost['team_max_channels_per_team'] = 2000
# mattermost['team_user_status_away_timeout'] = 3
00

# mattermost['sql_driver_name'] = 'mysql'
# mattermost['sql_data_source'] = "mmuser:mostest
@tcp(dockerhost:3306)/mattermost_test?charset=utf
8mb4,utf8"
# mattermost['sql_data_source_replicas'] = ["mmus
er:mostest@tcp(dockerhost:3306)/mattermost_test?c
harset=utf8mb4,utf8"]
# mattermost['sql_max_idle_conns'] = 10
# mattermost['sql_max_open_conns'] = 10
# mattermost['sql_trace'] = false
# mattermost['sql_data_source_search_replicas'] =
 []

# mattermost['log_file_directory'] = '/var/log/gi
tlab/mattermost'
# mattermost['log_console_enable'] = true
# mattermost['log_console_level'] = 'INFO'
# mattermost['log_enable_file'] = false
# mattermost['log_file_level'] = 'INFO'
# mattermost['log_file_format'] = nil
# mattermost['log_enable_diagnostics'] = true

# mattermost['gitlab_enable'] = false
# mattermost['gitlab_id'] = "12345656"
# mattermost['gitlab_secret'] = "123456789"
# mattermost['gitlab_scope'] = ""
# mattermost['gitlab_auth_endpoint'] = "http://gi
tlab.example.com/oauth/authorize"
# mattermost['gitlab_token_endpoint'] = "http://g
itlab.example.com/oauth/token"
# mattermost['gitlab_user_api_endpoint'] = "http:
//gitlab.example.com/api/v3/user"

# mattermost['aws'] = {'S3AccessKeyId' => '123',
'S3SecretAccessKey' => '123', 'S3Bucket' => 'aa',
 'S3Region' => 'bb'}

# mattermost['email_enable_sign_up_with_email'] =
 true
# mattermost['email_enable_sign_in_with_email'] =
 true
# mattermost['email_enable_sign_in_with_username'
] = false
# mattermost['email_send_email_notifications'] =
false
# mattermost['email_require_email_verification']
= false
# mattermost['email_smtp_username'] = nil
# mattermost['email_smtp_password'] = nil
# mattermost['email_smtp_server'] = nil
# mattermost['email_smtp_port'] = nil
# mattermost['email_connection_security'] = nil
# mattermost['email_feedback_name'] = nil
# mattermost['email_feedback_email'] = nil
# mattermost['email_feedback_organization'] = nil
# mattermost['email_send_push_notifications'] = t
rue
# mattermost['email_push_notification_server'] =
""
# mattermost['email_push_notification_contents']
= "generic"
# mattermost['email_enable_batching'] = false
# mattermost['email_batching_buffer_size'] = 256
# mattermost['email_batching_interval'] = 30
# mattermost['email_skip_server_certificate_verif
ication'] = false

# mattermost['file_max_file_size'] = 52428800
# mattermost['file_driver_name'] = "local"
# mattermost['file_directory'] = "/var/opt/gitlab
/mattermost/data"
# mattermost['file_enable_public_link'] = true
# mattermost['file_thumbnail_width'] = 120
# mattermost['file_thumbnail_height'] = 100
# mattermost['file_preview_width'] = 1024
# mattermost['file_preview_height'] = 0
# mattermost['file_profile_width'] = 128
# mattermost['file_profile_height'] = 128
# mattermost['file_initial_font'] = 'luximbi.ttf'
# mattermost['file_amazon_s3_access_key_id'] = ni
l
# mattermost['file_amazon_s3_bucket'] = nil
# mattermost['file_amazon_s3_secret_access_key']
= nil
# mattermost['file_amazon_s3_region'] = nil
# mattermost["file_amazon_s3_endpoint"] = nil
# mattermost["file_amazon_s3_bucket_endpoint"] =
nil
# mattermost["file_amazon_s3_location_constraint"
] = false
# mattermost["file_amazon_s3_lowercase_bucket"] =
 false
# mattermost["file_amazon_s3_ssl"] = true
# mattermost['file_enable_file_attachments'] = tr
ue

# mattermost['ratelimit_enable_rate_limiter'] = f
alse
# mattermost['ratelimit_per_sec'] = 10
# mattermost['ratelimit_memory_store_size'] = 100
00
# mattermost['ratelimit_vary_by_remote_addr'] = t
rue
# mattermost['ratelimit_vary_by_header'] = nil
# mattermost['ratelimit_max_burst'] = 100

# mattermost['support_terms_of_service_link'] = "
/static/help/terms.html"
# mattermost['support_privacy_policy_link'] = "/s
tatic/help/privacy.html"
# mattermost['support_about_link'] = "/static/hel
p/about.html"
# mattermost['support_report_a_problem_link'] =
"/static/help/report_problem.html"
# mattermost['support_email'] =  "support@example
.com"

# mattermost['privacy_show_email_address'] = true
# mattermost['privacy_show_full_name'] = true

# mattermost['localization_server_locale'] = "en"
# mattermost['localization_client_locale'] = "en"
# mattermost['localization_available_locales'] =
"en,es,fr,ja,pt-BR"

# mattermost['webrtc_enable'] = false
# mattermost['webrtc_gateway_websocket_url'] = ni
l
# mattermost['webrtc_gateway_admin_url'] = nil
# mattermost['webrtc_gateway_admin_secret'] = nil
# mattermost['webrtc_gateway_stun_uri'] = nil
# mattermost['webrtc_gateway_turn_uri'] = nil
# mattermost['webrtc_gateway_turn_username'] = ni
l
# mattermost['webrtc_gateway_turn_shared_key'] =
nil

#################################################
###############################
## Mattermost NGINX
#################################################
###############################

# All the settings defined in the "GitLab NGINX"
section are also available in this "Mattermost NG
INX" section
# You just have to change the key "nginx['some_se
ttings']" with "mattermost_nginx['some_settings']
"

# Below you can find settings that are exclusive
to "Mattermost NGINX"
# mattermost_nginx['enable'] = false

# mattermost_nginx['custom_gitlab_mattermost_serv
er_config'] = "location ^~ /foo-namespace/bar-pro
ject/raw/ {\n deny all;\n}\n"
# mattermost_nginx['proxy_set_headers'] = {
#   "Host" => "$http_host",
#   "X-Real-IP" => "$remote_addr",
#   "X-Forwarded-For" => "$proxy_add_x_forwarded_
for",
#   "X-Frame-Options" => "SAMEORIGIN",
#   "X-Forwarded-Proto" => "https",
#   "X-Forwarded-Ssl" => "on",
#   "Upgrade" => "$http_upgrade",
#   "Connection" => "$connection_upgrade"
# }


#################################################
###############################
## Registry NGINX
#################################################
###############################

# All the settings defined in the "GitLab NGINX"
section are also available in this "Registry NGIN
X" section
# You just have to change the key "nginx['some_se
ttings']" with "registry_nginx['some_settings']"

# Below you can find settings that are exclusive
to "Registry NGINX"
# registry_nginx['enable'] = false

# registry_nginx['proxy_set_headers'] = {
#  "Host" => "$http_host",
#  "X-Real-IP" => "$remote_addr",
#  "X-Forwarded-For" => "$proxy_add_x_forwarded_f
or",
#  "X-Forwarded-Proto" => "https",
#  "X-Forwarded-Ssl" => "on"
# }

#################################################
###############################
## Prometheus
##! Docs: https://docs.gitlab.com/ce/administrati
on/monitoring/prometheus/
#################################################
###############################

# prometheus['enable'] = true
# prometheus['monitor_kubernetes'] = true
# prometheus['username'] = 'gitlab-prometheus'
# prometheus['uid'] = nil
# prometheus['gid'] = nil
# prometheus['shell'] = '/bin/sh'
# prometheus['home'] = '/var/opt/gitlab/prometheu
s'
# prometheus['log_directory'] = '/var/log/gitlab/
prometheus'
# prometheus['scrape_interval'] = 15
# prometheus['scrape_timeout'] = 15
# prometheus['chunk_encoding_version'] = 2
#
### Custom scrape configs
#
# Prometheus can scrape additional jobs via scrap
e_configs.  The default automatically
# includes all of the exporters supported by the
omnibus config.
#
# See: https://prometheus.io/docs/operating/confi
guration/#<scrape_config>
#
# Example:
#
# prometheus['scrape_configs'] = [
#   {
#     'job_name': 'example',
#     'static_configs' => [
#       'targets' => ['hostname:port'],
#     ],
#   },
# ]
#
### Prometheus Memory Management
#
# Prometheus needs to be configured for how much
memory is used.
# * This sets the target heap size.
# * This value accounts for approximately 2/3 of
the memory used by the server.
# * The recommended memory is 4kb per unique metr
ics time-series.
# See: https://prometheus.io/docs/operating/stora
ge/#memory-usage
#
# prometheus['target_heap_size'] = (
#   # Use 25mb + 2% of total memory for Prometheu
s memory.
#   26_214_400 + (node['memory']['total'].to_i *
1024 * 0.02 )
# ).to_i
#
# prometheus['flags'] = {
#   'storage.local.path' => "#{node['gitlab']['pr
ometheus']['home']}/data",
#   'storage.local.chunk-encoding-version' => use
r_config['chunk-encoding-version'],
#   'storage.local.target-heap-size' => node['git
lab']['prometheus']['target-heap-size'],
#   'config.file' => "#{node['gitlab']['prometheu
s']['home']}/prometheus.yml"
# }

##! Advanced settings. Should be changed only if
absolutely needed.
# prometheus['listen_address'] = 'localhost:9090'

#################################################
###############################
## Prometheus Node Exporter
##! Docs: https://docs.gitlab.com/ce/administrati
on/monitoring/prometheus/node_exporter.html
#################################################
###############################

# node_exporter['enable'] = true
# node_exporter['home'] = '/var/opt/gitlab/node-e
xporter'
# node_exporter['log_directory'] = '/var/log/gitl
ab/node-exporter'
# node_exporter['flags'] = {
#   'collector.textfile.directory' => "#{node['gi
tlab']['node-exporter']['home']}/textfile_collect
or"
# }

##! Advanced settings. Should be changed only if
absolutely needed.
# node_exporter['listen_address'] = 'localhost:91
00'

#################################################
###############################
## Prometheus Redis exporter
##! Docs: https://docs.gitlab.com/ce/administrati
on/monitoring/prometheus/redis_exporter.html
#################################################
###############################

# redis_exporter['enable'] = true
# redis_exporter['log_directory'] = '/var/log/git
lab/redis-exporter'
# redis_exporter['flags'] = {
#   'redis.addr' => "unix://#{node['gitlab']['git
lab-rails']['redis_socket']}",
# }

##! Advanced settings. Should be changed only if
absolutely needed.
# redis_exporter['listen_address'] = 'localhost:9
121'

#################################################
###############################
## Prometheus Postgres exporter
##! Docs: https://docs.gitlab.com/ce/administrati
on/monitoring/prometheus/postgres_exporter.html
#################################################
###############################

# postgres_exporter['enable'] = true
# postgres_exporter['home'] = '/var/opt/gitlab/po
stgres-exporter'
# postgres_exporter['log_directory'] = '/var/log/
gitlab/postgres-exporter'
# postgres_exporter['flags'] = {}
# postgres_exporter['listen_address'] = 'localhos
t:9187'

#################################################
###############################
## Prometheus Gitlab monitor
##! Docs: https://docs.gitlab.com/ce/administrati
on/monitoring/prometheus/gitlab_monitor_exporter.
html
#################################################
###############################


# gitlab_monitor['enable'] = true
# gitlab_monitor['log_directory'] = "/var/log/git
lab/gitlab-monitor"
# gitlab_monitor['home'] = "/var/opt/gitlab/gitla
b-monitor"

##! Advanced settings. Should be changed only if
absolutely needed.
# gitlab_monitor['listen_address'] = 'localhost'
# gitlab_monitor['listen_port'] = '9168'

# To completely disable prometheus, and all of it
's exporters, set to false
# prometheus_monitoring['enable'] = true

#################################################
###############################
## Gitaly
##! Docs:
#################################################
###############################


# gitaly['enable'] = false
# gitaly['dir'] = "/var/opt/gitlab/gitaly"
# gitaly['log_directory'] = "/var/log/gitlab/gita
ly"
# gitaly['bin_path'] = "/opt/gitlab/embedded/bin/
gitaly"
# gitaly['env_directory'] = "/opt/gitlab/etc/gita
ly"
# gitaly['env'] = {
#  'PATH' => "/opt/gitlab/bin:/opt/gitlab/embedde
d/bin:/bin:/usr/bin",
#  'HOME' => '/var/opt/gitlab'
# }
# gitaly['socket_path'] = "/var/opt/gitlab/gitaly
/gitaly.socket"
# gitaly['listen_addr'] = "localhost:8075"
# gitaly['prometheus_listen_addr'] = "localhost:9
175"
# gitaly['logging_format'] = "json"
# gitaly['sentry_dsn'] = "https://<key>:<secret>@
sentry.io/<project>"
# gitaly['grpc_latency_buckets'] = "[0.001, 0.005
, 0.025, 0.1, 0.5, 1.0, 10.0, 30.0, 60.0, 300.0,
1500.0]"


#################################################
###############################
#################################################
###############################
##                  Configuration Settings for Gi
tLab EE only                 ##
#################################################
###############################
#################################################
###############################


#################################################
###############################
## Auxiliary cron jobs applicable to GitLab EE on
ly
#################################################
###############################
#
# gitlab_rails['geo_bulk_notify_worker_cron'] = "
*/10 * * * * *"
# gitlab_rails['geo_file_download_dispatch_worker
_cron'] = "*/10 * * * *"
# gitlab_rails['geo_repository_sync_worker_cron']
 = "*/5 * * * *"
# gitlab_rails['ldap_sync_worker_cron'] = "30 1 *
 * *"
# gitlab_rails['ldap_group_sync_worker_cron'] = "
0 * * * *"
# gitlab_rails['historical_data_worker_cron'] = "
0 12 * * *"

#################################################
###############################
## Kerberos (EE Only)
##! Docs: https://docs.gitlab.com/ee/integration/
kerberos.html#http-git-access
#################################################
###############################

# gitlab_rails['kerberos_enabled'] = true
# gitlab_rails['kerberos_keytab'] = /etc/http.key
tab
# gitlab_rails['kerberos_service_principal_name']
 = HTTP/gitlab.example.com@EXAMPLE.COM
# gitlab_rails['kerberos_use_dedicated_port'] = t
rue
# gitlab_rails['kerberos_port'] = 8443
# gitlab_rails['kerberos_https'] = true

#################################################
###############################
## GitLab Sentinel (EE Only)
##! Docs: http://docs.gitlab.com/ce/administratio
n/high_availability/redis.html#high-availability-
with-sentinel
#################################################
###############################

##! **Make sure you configured all redis['master_
*'] keys above before
##!   continuing.**

##! To enable Sentinel and disable all other serv
ices in this machine,
##! uncomment the line below (if you've enabled R
edis role, it will keep it).
##! Docs: https://docs.gitlab.com/ce/administrati
on/high_availability/redis.html
# redis_sentinel_role['enable'] = true

# sentinel['enable'] = true

##! Bind to all interfaces, uncomment to specify
an IP and bind to a single one
# sentinel['bind'] = '0.0.0.0'

##! Uncomment to change default port
# sentinel['port'] = 26379

##! Quorum must reflect the amount of voting sent
inels it take to start a
##! failover.
##! **Value must NOT be greater then the amount o
f sentinels.**
##! The quorum can be used to tune Sentinel in tw
o ways:
##! 1. If a the quorum is set to a value smaller
than the majority of Sentinels
##!    we deploy, we are basically making Sentine
l more sensible to master
##!    failures, triggering a failover as soon as
 even just a minority of
##!    Sentinels is no longer able to talk with t
he master.
##! 2. If a quorum is set to a value greater than
 the majority of Sentinels, we
##!    are making Sentinel able to failover only
when there are a very large
##!    number (larger than majority) of well conn
ected Sentinels which agree
##!    about the master being down.
# sentinel['quorum'] = 1

### Consider unresponsive server down after x amo
unt of ms.
# sentinel['down_after_milliseconds'] = 10000

### Specifies the failover timeout in millisecond
s.
##! It is used in many ways:
##!
##! - The time needed to re-start a failover afte
r a previous failover was
##!   already tried against the same master by a
given Sentinel, is two
##!   times the failover timeout.
##!
##! - The time needed for a slave replicating to
a wrong master according
##!   to a Sentinel current configuration, to be
forced to replicate
##!   with the right master, is exactly the failo
ver timeout (counting since
##!   the moment a Sentinel detected the misconfi
guration).
##!
##! - The time needed to cancel a failover that i
s already in progress but
##!   did not produced any configuration change (
SLAVEOF NO ONE yet not
##!   acknowledged by the promoted slave).
##!
##! - The maximum time a failover in progress wai
ts for all the slaves to be
##!   reconfigured as slaves of the new master. H
owever even after this time
##!   the slaves will be reconfigured by the Sent
inels anyway, but not with
##!   the exact parallel-syncs progression as spe
cified.
# sentinel['failover_timeout'] = 60000

#################################################
###############################
## Logging (Additional, EE Only features)
##! Docs: http://docs.gitlab.com/omnibus/settings
/logs.html#udp-log-shipping-gitlab-enterprise-edi
tion-only-
#################################################
###############################

##! remote host to ship log messages to via UDP
# logging['udp_log_shipping_host'] = nil

##! remote port to ship log messages to via UDP
# logging['udp_log_shipping_port'] = 514

#################################################
###############################
## GitLab Sidekiq Cluster (EE only)
#################################################
###############################

##! GitLab Enterprise Edition allows one to start
 an extra set of Sidekiq processes
##! besides the default one. These processes can
be used to consume a dedicated set
##! of queues. This can be used to ensure certain
 queues always have dedicated
##! workers, no matter the amount of jobs that ne
ed to be processed.

# sidekiq_cluster['enable'] = false
# sidekiq_cluster['ha'] = false
# sidekiq_cluster['log_directory'] = "/var/log/gi
tlab/sidekiq-cluster"
# sidekiq_cluster['interval'] = 5 # The number of
 seconds to wait between worker checks

##! Each entry in the queue_groups array denotes
a group of queues that have to be processed by a
##! Sidekiq process. Multiple queues can be proce
ssed by the same process by
##! separating them with a comma within the group
 entry

# sidekiq_cluster['queue_groups'] = [
#   "process_commit,post_receive",
#   "gitlab_shell"
# ]
#

#################################################
###############################
# Additional Database Settings (EE only)
#################################################
###############################
# gitlab_rails['db_load_balancing'] = { 'hosts' =
> ['secondary1.example.com'] }

#################################################
###############################
## GitLab Geo
##! Docs: https://docs.gitlab.com/ee/gitlab-geo
#################################################
###############################
# geo_primary_role['enable'] = false
# geo_secondary_role['enable'] = false

#################################################
###############################
## GitLab Geo Secondary (EE only)
#################################################
###############################
# geo_secondary['auto_migrate'] = true
# geo_secondary['db_adapter'] = "postgresql"
# geo_secondary['db_encoding'] = "unicode"
# geo_secondary['db_collation'] = nil
# geo_secondary['db_database'] = "gitlabhq_geo_pr
oduction"
# geo_secondary['db_pool'] = 10
# geo_secondary['db_username'] = "gitlab_geo"
# geo_secondary['db_password'] = nil
# geo_secondary['db_host'] = "/var/opt/gitlab/geo
-postgresql"
# geo_secondary['db_port'] = 5431
# geo_secondary['db_socket'] = nil
# geo_secondary['db_sslmode'] = nil
# geo_secondary['db_sslrootcert'] = nil
# geo_secondary['db_sslca'] = nil

#################################################
###############################
## GitLab Geo Secondary Tracking Database (EE onl
y)
#################################################
###############################

# geo_postgresql['enable'] = false
# geo_postgresql['ha'] = false
# geo_postgresql['dir'] = '/var/opt/gitlab/geo-po
stgresql'
# geo_postgresql['data_dir'] = '/var/opt/gitlab/g
eo-postgresql/data'
#
#################################################
###############################
# Pgbouncer (EE only)
# See [GitLab PgBouncer documentation](http://doc
s.gitlab.com/omnibus/settings/database.html#enabl
ing-pgbouncer-ee-only)
# See the [PgBouncer page](https://pgbouncer.gith
ub.io/config.html) for details
#################################################
###############################
# pgbouncer['enable'] = false
# pgbouncer['log_directory'] = '/var/log/gitlab/p
gbouncer'
# pgbouncer['data_directory'] = '/var/opt/gitlab/
pgbouncer'
# pgbouncer['listen_addr'] = '0.0.0.0'
# pgbouncer['listen_port'] = '6432'
# pgbouncer['pool_mode'] = 'session'
# pgbouncer['server_reset_query'] = 'DISCARD ALL'
# pgbouncer['max_client_conn'] = '100'
# pgbouncer['default_pool_size'] = '20'
# pgbouncer['min_pool_size'] = '0'
# pgbouncer['reserve_pool_size'] = '0'
# pgbouncer['reserve_pool_timeout'] = '5.0'
# pgbouncer['server_round_robin'] = '0'
# pgbouncer['log_connections'] = '0'
# pgbouncer['server_idle_timeout'] = '600.0'
# pgbouncer['dns_max_ttl'] = '15.0'
# pgbouncer['dns_zone_check_period'] = '0'
# pgbouncer['dns_nxdomain_ttl'] = '15.0'
# pgbouncer['admin_users'] = %w(gitlab-psql postg
res pgbouncer)
# pgbouncer['stats_users'] = %w(gitlab-psql postg
res pgbouncer)
# pgbouncer['ignore_startup_parameters'] = 'extra
_float_digits'
# pgbouncer['databases'] = {
#   DATABASE_NAME: {
#     host: HOSTNAME,
#     port: PORT
#     user: USERNAME,
#     password: PASSWORD
###! generate this with `echo -n '$password + $us
ername' | md5sum`
#   }
#   ...
# }
# pgbouncer['auth_type'] = 'md5'
# pgbouncer['auth_hba_file'] = nil
# pgbouncer['auth_query'] = 'SELECT username, pas
sword FROM public.pg_shadow_lookup($1)'
# postgresql['pgbouncer_user'] = nil
# postgresql['pgbouncer_user_password'] = nil
root@gitlab:/etc/gitlab#