Gitlab Install Stuck at logrotate

1. username@servername:~$ sudo EXTERNAL_URL="http://10.7.2.xxx" apt install gitlab-ee
2. Reading package lists... Done
3. Building dependency tree
4. Reading state information... Done
5. The following NEW packages will be installed:
6. gitlab-ee
7. 0 upgraded, 1 newly installed, 0 to remove and 0 not upgraded.
8. Need to get 0 B/1,039 MB of archives.
9. After this operation, 2,841 MB of additional disk space will be used.
10. Selecting previously unselected package gitlab-ee.
11. (Reading database ... 115112 files and directories currently installed.)
12. Preparing to unpack .../gitlab-ee_14.4.2-ee.0_amd64.deb ...
13. Unpacking gitlab-ee (14.4.2-ee.0) ...
14. Setting up gitlab-ee (14.4.2-ee.0) ...
15. Starting Chef Infra Client, version 15.17.4
16. resolving cookbooks for run list: ["gitlab-ee"]
17. Synchronizing Cookbooks:
18. - gitlab-ee (0.0.1)
19. - package (0.1.0)
20. - gitlab (0.0.1)
21. - consul (0.1.0)
22. - patroni (0.1.0)
23. - pgbouncer (0.1.0)
24. - runit (5.1.3)
25. - logrotate (0.1.0)
26. - postgresql (0.1.0)
27. - redis (0.1.0)
28. - monitoring (0.1.0)
29. - registry (0.1.0)
30. - mattermost (0.1.0)
31. - gitaly (0.1.0)
32. - praefect (0.1.0)
33. - gitlab-kas (0.1.0)
34. - gitlab-pages (0.1.0)
35. - letsencrypt (0.1.0)
36. - nginx (0.1.0)
37. - acme (4.1.3)
38. - crond (0.1.0)
39. Installing Cookbook Gems:
40. Compiling Cookbooks...
41. Recipe: gitlab::default
42. * directory[/etc/gitlab] action create
43. - change mode from '0755' to '0775'
44. Converging 303 resources
45. * directory[/etc/gitlab] action create (up to date)
46. * directory[Create /var/opt/gitlab] action create
47. - create new directory /var/opt/gitlab
48. - change mode from '' to '0755'
49. - change owner from '' to 'root'
50. - change group from '' to 'root'
51. * directory[Create /var/log/gitlab] action create (up to date)
52. * directory[/opt/gitlab/embedded/etc] action create
53. - create new directory /opt/gitlab/embedded/etc
54. - change mode from '' to '0755'
55. - change owner from '' to 'root'
56. - change group from '' to 'root'
57. * template[/opt/gitlab/embedded/etc/gitconfig] action create
58. - create new file /opt/gitlab/embedded/etc/gitconfig
59. - update content in file /opt/gitlab/embedded/etc/gitconfig from none to 5a725a
60. --- /opt/gitlab/embedded/etc/gitconfig 2021-11-09 21:15:16.179537769 +0000
61. +++ /opt/gitlab/embedded/etc/.chef-gitconfig20211109-12195-1gjk86b 2021-11-09 21:15:16.179537769 +0000
62. @@ -1 +1,17 @@
63. +[pack]
64. + threads = 1
65. +[receive]
66. + fsckObjects = true
67. +advertisePushOptions = true
68. +[repack]
69. + writeBitmaps = true
70. +[transfer]
71. + hideRefs=^refs/tmp/
72. +hideRefs=^refs/keep-around/
73. +hideRefs=^refs/remotes/
74. +[core]
75. + alternateRefsCommand="exit 0 #"
76. +fsyncObjectFiles = true
77. +[fetch]
78. + writeCommitGraph = true
79. - change mode from '' to '0755'
80. Recipe: gitlab::web-server
81. * account[Webserver user and group] action create
82. * group[Webserver user and group] action create
83. - create group gitlab-www
84. * linux_user[Webserver user and group] action create
85. - create user gitlab-www
86.  
87. Recipe: gitlab::users
88. * directory[/var/opt/gitlab] action create (up to date)
89. * account[GitLab user and group] action create
90. * group[GitLab user and group] action create
91. - create group git
92. * linux_user[GitLab user and group] action create
93. - create user git
94.  
95. * template[/var/opt/gitlab/.gitconfig] action create
96. - create new file /var/opt/gitlab/.gitconfig
97. - update content in file /var/opt/gitlab/.gitconfig from none to 13a569
98. --- /var/opt/gitlab/.gitconfig 2021-11-09 21:15:16.415535502 +0000
99. +++ /var/opt/gitlab/.chef-.gitconfig20211109-12195-hnocy.gitconfig 2021-11-09 21:15:16.415535502 +0000
100. @@ -1 +1,14 @@
101. +# This file is managed by gitlab-ctl. Manual changes will be
102. +# erased! To change the contents below, edit /etc/gitlab/gitlab.rb
103. +# and run `sudo gitlab-ctl reconfigure`.
104. +
105. +[user]
106. + name = GitLab
107. + email = [email protected]
108. +[core]
109. + autocrlf = input
110. + alternateRefsCommand="exit 0 #"
111. + fsyncObjectFiles = true
112. +[gc]
113. + auto = 0
114. - change mode from '' to '0644'
115. - change owner from '' to 'git'
116. - change group from '' to 'git'
117. * directory[/var/opt/gitlab/.bundle] action create
118. - create new directory /var/opt/gitlab/.bundle
119. - change owner from '' to 'git'
120. - change group from '' to 'git'
121. Recipe: gitlab::gitlab-shell
122. * storage_directory[/var/opt/gitlab/.ssh] action create
123. * ruby_block[directory resource: /var/opt/gitlab/.ssh] action run
124. - execute the ruby block directory resource: /var/opt/gitlab/.ssh
125.  
126. * directory[/var/log/gitlab/gitlab-shell/] action create
127. - create new directory /var/log/gitlab/gitlab-shell/
128. - change mode from '' to '0700'
129. - change owner from '' to 'git'
130. * directory[/var/opt/gitlab/gitlab-shell] action create
131. - create new directory /var/opt/gitlab/gitlab-shell
132. - change mode from '' to '0700'
133. - change owner from '' to 'git'
134. * templatesymlink[Create a config.yml and create a symlink to Rails root] action create
135. * template[/var/opt/gitlab/gitlab-shell/config.yml] action create
136. - create new file /var/opt/gitlab/gitlab-shell/config.yml
137. - update content in file /var/opt/gitlab/gitlab-shell/config.yml from none to 237d3d
138. --- /var/opt/gitlab/gitlab-shell/config.yml 2021-11-09 21:15:16.623533502 +0000
139. +++ /var/opt/gitlab/gitlab-shell/.chef-config20211109-12195-1e93glo.yml 2021-11-09 21:15:16.623533502 +0000
140. @@ -1 +1,45 @@
141. +# This file is managed by gitlab-ctl. Manual changes will be
142. +# erased! To change the contents below, edit /etc/gitlab/gitlab.rb
143. +# and run `sudo gitlab-ctl reconfigure`.
144. +
145. +# GitLab user. git by default
146. +user: git
147. +
148. +# Url to gitlab instance. Used for api calls. May but need not end with a slash.
149. +gitlab_url: "http+unix://%2Fvar%2Fopt%2Fgitlab%2Fgitlab-workhorse%2Fsockets%2Fsocket"
150. +
151. +gitlab_relative_url_root:
152. +
153. +http_settings:
154. +
155. +# user: someone
156. +# password: somepass
157. +# ca_file: /etc/ssl/cert.pem
158. +# ca_path: /etc/pki/tls/certs
159. +# self_signed_cert: false
160. +
161. +# File used as authorized_keys for gitlab user
162. +auth_file: "/var/opt/gitlab/.ssh/authorized_keys"
163. +
164. +# SSL certificate dir where custom certificates can be placed
165. +# https://golang.org/pkg/crypto/x509/
166. +ssl_cert_dir: "/opt/gitlab/embedded/ssl/certs/"
167. +
168. +# Log file.
169. +# Default is gitlab-shell.log in the root directory.
170. +log_file: "/var/log/gitlab/gitlab-shell/gitlab-shell.log"
171. +
172. +# Log level. INFO by default
173. +log_level:
174. +
175. +log_format: json
176. +
177. +# Audit usernames.
178. +# Set to true to see real usernames in the logs instead of key ids, which is easier to follow, but
179. +# incurs an extra API call on every gitlab-shell command.
180. +audit_usernames:
181. +
182. +migration:
183. + {"enabled":true,"features":[]}
184. +
185. - change mode from '' to '0640'
186. - change owner from '' to 'root'
187. - change group from '' to 'git'
188. * link[Link /opt/gitlab/embedded/service/gitlab-shell/config.yml to /var/opt/gitlab/gitlab-shell/config.yml] action create
189. - create symlink at /opt/gitlab/embedded/service/gitlab-shell/config.yml to /var/opt/gitlab/gitlab-shell/config.yml
190.  
191. * link[/opt/gitlab/embedded/service/gitlab-shell/.gitlab_shell_secret] action create
192. - create symlink at /opt/gitlab/embedded/service/gitlab-shell/.gitlab_shell_secret to /opt/gitlab/embedded/service/gitlab-rails/.gitlab_shell_secret
193. * file[/var/opt/gitlab/.ssh/authorized_keys] action create_if_missing
194. - create new file /var/opt/gitlab/.ssh/authorized_keys
195. - change mode from '' to '0600'
196. - change owner from '' to 'git'
197. - change group from '' to 'git'
198. Recipe: gitlab::gitlab-rails
199. * storage_directory[/var/opt/gitlab/git-data] action create
200. * ruby_block[directory resource: /var/opt/gitlab/git-data] action run
201. - execute the ruby block directory resource: /var/opt/gitlab/git-data
202.  
203. * storage_directory[/var/opt/gitlab/git-data/repositories] action create
204. * ruby_block[directory resource: /var/opt/gitlab/git-data/repositories] action run
205. - execute the ruby block directory resource: /var/opt/gitlab/git-data/repositories
206.  
207. Recipe: gitlab::rails_pages_shared_path
208. * storage_directory[/var/opt/gitlab/gitlab-rails/shared] action create
209. * ruby_block[directory resource: /var/opt/gitlab/gitlab-rails/shared] action run
210. - execute the ruby block directory resource: /var/opt/gitlab/gitlab-rails/shared
211.  
212. * storage_directory[/var/opt/gitlab/gitlab-rails/shared/pages] action create
213. * ruby_block[directory resource: /var/opt/gitlab/gitlab-rails/shared/pages] action run
214. - execute the ruby block directory resource: /var/opt/gitlab/gitlab-rails/shared/pages
215.  
216. Recipe: gitlab::gitlab-rails
217. * storage_directory[/var/opt/gitlab/gitlab-rails/shared/artifacts] action create
218. * ruby_block[directory resource: /var/opt/gitlab/gitlab-rails/shared/artifacts] action run
219. - execute the ruby block directory resource: /var/opt/gitlab/gitlab-rails/shared/artifacts
220.  
221. * storage_directory[/var/opt/gitlab/gitlab-rails/shared/external-diffs] action create
222. * ruby_block[directory resource: /var/opt/gitlab/gitlab-rails/shared/external-diffs] action run
223. - execute the ruby block directory resource: /var/opt/gitlab/gitlab-rails/shared/external-diffs
224.  
225. * storage_directory[/var/opt/gitlab/gitlab-rails/shared/lfs-objects] action create
226. * ruby_block[directory resource: /var/opt/gitlab/gitlab-rails/shared/lfs-objects] action run
227. - execute the ruby block directory resource: /var/opt/gitlab/gitlab-rails/shared/lfs-objects
228.  
229. * storage_directory[/var/opt/gitlab/gitlab-rails/shared/packages] action create
230. * ruby_block[directory resource: /var/opt/gitlab/gitlab-rails/shared/packages] action run
231. - execute the ruby block directory resource: /var/opt/gitlab/gitlab-rails/shared/packages
232.  
233. * storage_directory[/var/opt/gitlab/gitlab-rails/shared/dependency_proxy] action create
234. * ruby_block[directory resource: /var/opt/gitlab/gitlab-rails/shared/dependency_proxy] action run
235. - execute the ruby block directory resource: /var/opt/gitlab/gitlab-rails/shared/dependency_proxy
236.  
237. * storage_directory[/var/opt/gitlab/gitlab-rails/shared/terraform_state] action create
238. * ruby_block[directory resource: /var/opt/gitlab/gitlab-rails/shared/terraform_state] action run
239. - execute the ruby block directory resource: /var/opt/gitlab/gitlab-rails/shared/terraform_state
240.  
241. * storage_directory[/var/opt/gitlab/gitlab-rails/shared/encrypted_settings] action create
242. * ruby_block[directory resource: /var/opt/gitlab/gitlab-rails/shared/encrypted_settings] action run
243. - execute the ruby block directory resource: /var/opt/gitlab/gitlab-rails/shared/encrypted_settings
244.  
245. * storage_directory[/var/opt/gitlab/gitlab-rails/uploads] action create
246. * ruby_block[directory resource: /var/opt/gitlab/gitlab-rails/uploads] action run
247. - execute the ruby block directory resource: /var/opt/gitlab/gitlab-rails/uploads
248.  
249. * storage_directory[/var/opt/gitlab/gitlab-ci/builds] action create
250. * ruby_block[directory resource: /var/opt/gitlab/gitlab-ci/builds] action run
251. - execute the ruby block directory resource: /var/opt/gitlab/gitlab-ci/builds
252.  
253. * storage_directory[/var/opt/gitlab/gitlab-rails/shared/cache] action create
254. * ruby_block[directory resource: /var/opt/gitlab/gitlab-rails/shared/cache] action run
255. - execute the ruby block directory resource: /var/opt/gitlab/gitlab-rails/shared/cache
256.  
257. * storage_directory[/var/opt/gitlab/gitlab-rails/shared/tmp] action create
258. * ruby_block[directory resource: /var/opt/gitlab/gitlab-rails/shared/tmp] action run
259. - execute the ruby block directory resource: /var/opt/gitlab/gitlab-rails/shared/tmp
260.  
261. * storage_directory[/opt/gitlab/embedded/service/gitlab-rails/public] action create (skipped due to only_if)
262. * directory[create /var/opt/gitlab/gitlab-rails/etc] action create
263. - create new directory /var/opt/gitlab/gitlab-rails/etc
264. - change mode from '' to '0700'
265. - change owner from '' to 'git'
266. * directory[create /opt/gitlab/etc/gitlab-rails] action create
267. - create new directory /opt/gitlab/etc/gitlab-rails
268. - change mode from '' to '0700'
269. - change owner from '' to 'git'
270. * directory[create /var/opt/gitlab/gitlab-rails/working] action create
271. - create new directory /var/opt/gitlab/gitlab-rails/working
272. - change mode from '' to '0700'
273. - change owner from '' to 'git'
274. * directory[create /var/opt/gitlab/gitlab-rails/tmp] action create
275. - create new directory /var/opt/gitlab/gitlab-rails/tmp
276. - change mode from '' to '0700'
277. - change owner from '' to 'git'
278. * directory[create /var/opt/gitlab/gitlab-rails/upgrade-status] action create
279. - create new directory /var/opt/gitlab/gitlab-rails/upgrade-status
280. - change mode from '' to '0700'
281. - change owner from '' to 'git'
282. * directory[create /var/log/gitlab/gitlab-rails] action create
283. - create new directory /var/log/gitlab/gitlab-rails
284. - change mode from '' to '0700'
285. - change owner from '' to 'git'
286. * storage_directory[/var/opt/gitlab/backups] action create
287. * ruby_block[directory resource: /var/opt/gitlab/backups] action run
288. - execute the ruby block directory resource: /var/opt/gitlab/backups
289.  
290. * directory[/var/opt/gitlab/gitlab-rails] action create
291. - change owner from 'root' to 'git'
292. * directory[/var/opt/gitlab/gitlab-ci] action create
293. - change owner from 'root' to 'git'
294. * file[/var/opt/gitlab/gitlab-rails/etc/gitlab-registry.key] action create (skipped due to only_if)
295. * template[/opt/gitlab/etc/gitlab-rails-rc] action create
296. - create new file /opt/gitlab/etc/gitlab-rails-rc
297. - update content in file /opt/gitlab/etc/gitlab-rails-rc from none to 7b16c8
298. --- /opt/gitlab/etc/gitlab-rails-rc 2021-11-09 21:15:19.403506803 +0000
299. +++ /opt/gitlab/etc/.chef-gitlab-rails-rc20211109-12195-1lfygpj 2021-11-09 21:15:19.403506803 +0000
300. @@ -1 +1,6 @@
301. +gitlab_user='git'
302. +gitlab_group='git'
303. +registry_dir=''
304. +registry_user='registry'
305. +registry_group='registry'
306. - change mode from '' to '0644'
307. - change owner from '' to 'root'
308. - change group from '' to 'root'
309. * file[/opt/gitlab/etc/gitlab-rails/gitlab-rails-rc] action delete (up to date)
310. * file[/opt/gitlab/embedded/service/gitlab-rails/.secret] action delete (up to date)
311. * file[/var/opt/gitlab/gitlab-rails/etc/secret] action delete (up to date)
312. * templatesymlink[Create a database.yml and create a symlink to Rails root] action create
313. * template[/var/opt/gitlab/gitlab-rails/etc/database.yml] action create
314. - create new file /var/opt/gitlab/gitlab-rails/etc/database.yml
315. - update content in file /var/opt/gitlab/gitlab-rails/etc/database.yml from none to 9cd048
316. --- /var/opt/gitlab/gitlab-rails/etc/database.yml 2021-11-09 21:15:19.467506189 +0000
317. +++ /var/opt/gitlab/gitlab-rails/etc/.chef-database20211109-12195-aea1u6.yml 2021-11-09 21:15:19.467506189 +0000
318. @@ -1 +1,32 @@
319. +# This file is managed by gitlab-ctl. Manual changes will be
320. +# erased! To change the contents below, edit /etc/gitlab/gitlab.rb
321. +# and run `sudo gitlab-ctl reconfigure`.
322. +
323. +production:
324. + main:
325. + adapter: postgresql
326. + encoding: unicode
327. + collation:
328. + database: gitlabhq_production
329. + username: "gitlab"
330. + password:
331. + host: "/var/opt/gitlab/postgresql"
332. + port: 5432
333. + socket:
334. + sslmode:
335. + sslcompression: 0
336. + sslrootcert:
337. + sslca:
338. + load_balancing: {"hosts":[]}
339. + prepared_statements: false
340. + statement_limit: 1000
341. + connect_timeout:
342. + keepalives:
343. + keepalives_idle:
344. + keepalives_interval:
345. + keepalives_count:
346. + tcp_user_timeout:
347. + application_name:
348. + variables:
349. + statement_timeout:
350. - change mode from '' to '0640'
351. - change owner from '' to 'root'
352. - change group from '' to 'git'
353. * link[Link /opt/gitlab/embedded/service/gitlab-rails/config/database.yml to /var/opt/gitlab/gitlab-rails/etc/database.yml] action create
354. - create symlink at /opt/gitlab/embedded/service/gitlab-rails/config/database.yml to /var/opt/gitlab/gitlab-rails/etc/database.yml
355.  
356. * templatesymlink[Create a secrets.yml and create a symlink to Rails root] action create
357. * template[/var/opt/gitlab/gitlab-rails/etc/secrets.yml] action create
358. - create new file /var/opt/gitlab/gitlab-rails/etc/secrets.yml
359. - update content in file /var/opt/gitlab/gitlab-rails/etc/secrets.yml from none to 3a9935
360. - suppressed sensitive resource
361. - change mode from '' to '0644'
362. - change owner from '' to 'root'
363. - change group from '' to 'root'
364. * link[Link /opt/gitlab/embedded/service/gitlab-rails/config/secrets.yml to /var/opt/gitlab/gitlab-rails/etc/secrets.yml] action create
365. - create symlink at /opt/gitlab/embedded/service/gitlab-rails/config/secrets.yml to /var/opt/gitlab/gitlab-rails/etc/secrets.yml
366.  
367. * templatesymlink[Create a resque.yml and create a symlink to Rails root] action create
368. * template[/var/opt/gitlab/gitlab-rails/etc/resque.yml] action create
369. - create new file /var/opt/gitlab/gitlab-rails/etc/resque.yml
370. - update content in file /var/opt/gitlab/gitlab-rails/etc/resque.yml from none to ec4232
371. --- /var/opt/gitlab/gitlab-rails/etc/resque.yml 2021-11-09 21:15:19.511505767 +0000
372. +++ /var/opt/gitlab/gitlab-rails/etc/.chef-resque20211109-12195-1sulun7.yml 2021-11-09 21:15:19.511505767 +0000
373. @@ -1 +1,3 @@
374. +production:
375. + url: unix:/var/opt/gitlab/redis/redis.socket
376. - change mode from '' to '0644'
377. - change owner from '' to 'root'
378. - change group from '' to 'root'
379. * link[Link /opt/gitlab/embedded/service/gitlab-rails/config/resque.yml to /var/opt/gitlab/gitlab-rails/etc/resque.yml] action create
380. - create symlink at /opt/gitlab/embedded/service/gitlab-rails/config/resque.yml to /var/opt/gitlab/gitlab-rails/etc/resque.yml
381.  
382. * templatesymlink[Create a cable.yml and create a symlink to Rails root] action create
383. * template[/var/opt/gitlab/gitlab-rails/etc/cable.yml] action create
384. - create new file /var/opt/gitlab/gitlab-rails/etc/cable.yml
385. - update content in file /var/opt/gitlab/gitlab-rails/etc/cable.yml from none to 551667
386. --- /var/opt/gitlab/gitlab-rails/etc/cable.yml 2021-11-09 21:15:19.531505575 +0000
387. +++ /var/opt/gitlab/gitlab-rails/etc/.chef-cable20211109-12195-7hcv6j.yml 2021-11-09 21:15:19.531505575 +0000
388. @@ -1 +1,4 @@
389. +production:
390. + adapter: redis
391. + url: unix:/var/opt/gitlab/redis/redis.socket
392. - change mode from '' to '0644'
393. - change owner from '' to 'root'
394. - change group from '' to 'root'
395. * link[Link /opt/gitlab/embedded/service/gitlab-rails/config/cable.yml to /var/opt/gitlab/gitlab-rails/etc/cable.yml] action create
396. - create symlink at /opt/gitlab/embedded/service/gitlab-rails/config/cable.yml to /var/opt/gitlab/gitlab-rails/etc/cable.yml
397.  
398. * templatesymlink[Create a redis.cache.yml and create a symlink to Rails root] action create (skipped due to not_if)
399. * file[/opt/gitlab/embedded/service/gitlab-rails/config/redis.cache.yml] action delete (up to date)
400. * file[/var/opt/gitlab/gitlab-rails/etc/redis.cache.yml] action delete (up to date)
401. * templatesymlink[Create a redis.queues.yml and create a symlink to Rails root] action create (skipped due to not_if)
402. * file[/opt/gitlab/embedded/service/gitlab-rails/config/redis.queues.yml] action delete (up to date)
403. * file[/var/opt/gitlab/gitlab-rails/etc/redis.queues.yml] action delete (up to date)
404. * templatesymlink[Create a redis.shared_state.yml and create a symlink to Rails root] action create (skipped due to not_if)
405. * file[/opt/gitlab/embedded/service/gitlab-rails/config/redis.shared_state.yml] action delete (up to date)
406. * file[/var/opt/gitlab/gitlab-rails/etc/redis.shared_state.yml] action delete (up to date)
407. * templatesymlink[Create a redis.trace_chunks.yml and create a symlink to Rails root] action create (skipped due to not_if)
408. * file[/opt/gitlab/embedded/service/gitlab-rails/config/redis.trace_chunks.yml] action delete (up to date)
409. * file[/var/opt/gitlab/gitlab-rails/etc/redis.trace_chunks.yml] action delete (up to date)
410. * templatesymlink[Create a redis.rate_limiting.yml and create a symlink to Rails root] action create (skipped due to not_if)
411. * file[/opt/gitlab/embedded/service/gitlab-rails/config/redis.rate_limiting.yml] action delete (up to date)
412. * file[/var/opt/gitlab/gitlab-rails/etc/redis.rate_limiting.yml] action delete (up to date)
413. * templatesymlink[Create a smtp_settings.rb and create a symlink to Rails root] action delete
414. * file[/var/opt/gitlab/gitlab-rails/etc/smtp_settings.rb] action delete (up to date)
415. * link[/opt/gitlab/embedded/service/gitlab-rails/config/initializers/smtp_settings.rb] action delete (up to date)
416. (up to date)
417. * templatesymlink[Create a gitlab.yml and create a symlink to Rails root] action create
418. * template[/var/opt/gitlab/gitlab-rails/etc/gitlab.yml] action create
419. - create new file /var/opt/gitlab/gitlab-rails/etc/gitlab.yml
420. - update content in file /var/opt/gitlab/gitlab-rails/etc/gitlab.yml from none to 239aaf
421. --- /var/opt/gitlab/gitlab-rails/etc/gitlab.yml 2021-11-09 21:15:19.711503847 +0000
422. +++ /var/opt/gitlab/gitlab-rails/etc/.chef-gitlab20211109-12195-1on99ux.yml 2021-11-09 21:15:19.711503847 +0000
423. @@ -1 +1,804 @@
424. +# This file is managed by gitlab-ctl. Manual changes will be
425. +# erased! To change the contents below, edit /etc/gitlab/gitlab.rb
426. +# and run `sudo gitlab-ctl reconfigure`.
427. +
428. +production: &base
429. + #
430. + # 1. GitLab app settings
431. + # ==========================
432. +
433. + ## GitLab settings
434. + gitlab:
435. + ## Web server settings (note: host is the FQDN, do not include http://)
436. + host: 10.7.2.xxx
437. + port: 80
438. + https: false
439. +
440. + # The maximum time puma can spend on the request. This needs to be smaller than the worker timeout.
441. + # Default is 95% of the worker timeout
442. + max_request_duration_seconds: 57
443. +
444. + # Uncommment this line below if your ssh host is different from HTTP/HTTPS one
445. + # (you'd obviously need to replace ssh.host_example.com with your own host).
446. + # Otherwise, ssh host will be set to the `host:` value above
447. + ssh_host:
448. +
449. + # If your ssh user differs from the system user, you need to specify it here
450. + # Set it to an empty string to omit the username from any ssh url altogether
451. + ssh_user:
452. +
453. + # WARNING: See config/application.rb under "Relative url support" for the list of
454. + # other files that need to be changed for relative url support
455. + relative_url_root:
456. +
457. + # Trusted Proxies
458. + # Customize if you have GitLab behind a reverse proxy which is running on a different machine.
459. + # Add the IP address for your reverse proxy to the list, otherwise users will appear signed in from that address.
460. + trusted_proxies:
461. +
462. +
463. +
464. + # Uncomment and customize if you can't use the default user to run GitLab (default: 'git')
465. + user: git
466. +
467. + ## Date & Time settings
468. + time_zone:
469. +
470. + ## Email settings
471. + # Uncomment and set to false if you need to disable email sending from GitLab (default: true)
472. + email_enabled:
473. + # Email address used in the "From" field in mails sent by GitLab
474. + email_from: [email protected]
475. + email_display_name:
476. + email_reply_to:
477. + email_subject_suffix:
478. + # Email SMIME signing settings
479. + email_smime:
480. + enabled: false
481. + key_file: /etc/gitlab/ssl/gitlab_smime.key
482. + cert_file: /etc/gitlab/ssl/gitlab_smime.crt
483. + ca_certs_file:
484. +
485. + # Email server smtp settings are in [a separate file](initializers/smtp_settings.rb.sample).
486. +
487. + ## User settings
488. + default_can_create_group: # default: true
489. + username_changing_enabled: # default: true - User can change her username/namespace
490. + ## Default theme
491. + ## 1 - Graphite
492. + ## 2 - Charcoal
493. + ## 3 - Green
494. + ## 4 - Gray
495. + ## 5 - Violet
496. + ## 6 - Blue
497. + default_theme: # default: 2
498. +
499. + ## Automatic issue closing
500. + # If a commit message matches this regular expression, all issues referenced from the matched text will be closed.
501. + # This happens when the commit is pushed or merged into the default branch of a project.
502. + # When not specified the default issue_closing_pattern as specified below will be used.
503. + # Tip: you can test your closing pattern at http://rubular.com
504. + issue_closing_pattern:
505. +
506. + ## Default project features settings
507. + default_projects_features:
508. + issues:
509. + merge_requests:
510. + wiki:
511. + snippets:
512. + builds:
513. + container_registry:
514. +
515. + ## Webhook settings
516. + # Number of seconds to wait for HTTP response after sending webhook HTTP POST request (default: 10)
517. + webhook_timeout:
518. +
519. + ### GraphQL Settings
520. + # Tells the rails application how long it has to complete a GraphQL request.
521. + # We suggest this value to be higher than the database timeout value
522. + # and lower than the worker timeout set in puma. (default: 30)
523. + graphql_timeout:
524. +
525. + ## Repository downloads directory
526. + # When a user clicks e.g. 'Download zip' on a project, a temporary zip file is created in the following directory.
527. + # The default is 'tmp/repositories' relative to the root of the Rails app.
528. + repository_downloads_path:
529. +
530. + ## Impersonation settings
531. + impersonation_enabled:
532. +
533. + ## Application settings cache expiry in seconds. (default: 60)
534. + application_settings_cache_seconds:
535. +
536. + usage_ping_enabled:
537. +
538. + ## Print initial root password to stdout during initialization
539. + display_initial_root_password: false
540. +
541. + ## Reply by email
542. + # Allow users to comment on issues and merge requests by replying to notification emails.
543. + # For documentation on how to set this up, see https://docs.gitlab.com/ee/administration/reply_by_email.html
544. + incoming_email:
545. + enabled: false
546. +
547. + # The email address including the `%{key}` placeholder that will be replaced to reference the item being replied to.
548. + # The placeholder can be omitted but if present, it must appear in the "user" part of the address (before the `@`).
549. + address:
550. +
551. + # Email account username
552. + # With third party providers, this is usually the full email address.
553. + # With self-hosted email servers, this is usually the user part of the email address.
554. + user:
555. + # Email account password
556. + password:
557. +
558. + # IMAP server host
559. + host:
560. + # IMAP server port
561. + port:
562. + # Whether the IMAP server uses SSL
563. + ssl:
564. + # Whether the IMAP server uses StartTLS
565. + start_tls:
566. +
567. + # Inbox configuration (for Microsoft Graph)
568. + inbox_method: imap
569. +
570. + # The mailbox where incoming mail will end up. Usually "inbox".
571. + mailbox: "inbox"
572. + # The IDLE command timeout.
573. + idle_timeout:
574. + # file path of internal `mail_room` JSON logs
575. + log_path: /var/log/gitlab/mailroom/mail_room_json.log
576. +
577. + # Whether to expunge (permanently remove) messages from the mailbox when they are deleted after delivery
578. + expunge_deleted:
579. +
580. +
581. + ## Service desk email
582. + # Allow users to use a separate service desk address
583. + # For documentation on how to set this up, see http://doc.gitlab.com/ce/administration/reply_by_email.html
584. + service_desk_email:
585. + enabled: false
586. +
587. + # The email address including the `%{key}` placeholder that will be replaced to reference the item being replied to.
588. + # The placeholder can be omitted but if present, it must appear in the "user" part of the address (before the `@`).
589. + address:
590. +
591. + # Email account username
592. + # With third party providers, this is usually the full email address.
593. + # With self-hosted email servers, this is usually the user part of the email address.
594. + user:
595. + # Email account password
596. + password:
597. +
598. + # IMAP server host
599. + host:
600. + # IMAP server port
601. + port:
602. + # Whether the IMAP server uses SSL
603. + ssl:
604. + # Whether the IMAP server uses StartTLS
605. + start_tls:
606. +
607. + # Inbox configuration (for Microsoft Graph)
608. + inbox_method: imap
609. +
610. + # The mailbox where incoming mail will end up. Usually "inbox".
611. + mailbox: "inbox"
612. + # The IDLE command timeout.
613. + idle_timeout:
614. + # file path of internal `mail_room` JSON logs
615. + log_path: /var/log/gitlab/mailroom/mail_room_json.log
616. +
617. + ## Build Artifacts
618. + artifacts:
619. + enabled: true
620. + # The location where Build Artifacts are stored (default: shared/artifacts).
621. + path: /var/opt/gitlab/gitlab-rails/shared/artifacts
622. + object_store:
623. + enabled: false
624. + direct_upload: false
625. + background_upload: true
626. + proxy_download: false
627. + remote_directory: "artifacts"
628. + connection: {}
629. +
630. + ## External merge request diffs
631. + external_diffs:
632. + enabled:
633. + # The location where merge request diffs are stored (default: shared/external-diffs).
634. + storage_path: /var/opt/gitlab/gitlab-rails/shared/external-diffs
635. + object_store:
636. + enabled: false
637. + direct_upload: false
638. + background_upload: true
639. + proxy_download: false
640. + remote_directory: "external-diffs"
641. + connection: {}
642. +
643. + ## Git LFS
644. + lfs:
645. + enabled:
646. + # The location where LFS objects are stored (default: shared/lfs-objects).
647. + storage_path: /var/opt/gitlab/gitlab-rails/shared/lfs-objects
648. + object_store:
649. + enabled: false
650. + direct_upload: false
651. + background_upload: true
652. + proxy_download: false
653. + remote_directory: "lfs-objects"
654. + connection: {}
655. +
656. + ## Uploads
657. + uploads:
658. + # The location where uploads objects are stored (default: public/).
659. + storage_path: /opt/gitlab/embedded/service/gitlab-rails/public
660. + object_store:
661. + enabled: false
662. + direct_upload: false
663. + background_upload: true
664. + proxy_download: false
665. + remote_directory: "uploads"
666. + connection: {}
667. +
668. + ## Packages
669. + packages:
670. + enabled:
671. + # The location where build packages are stored (default: shared/packages).
672. + storage_path: /var/opt/gitlab/gitlab-rails/shared/packages
673. + object_store:
674. + enabled: false
675. + direct_upload: false
676. + background_upload: true
677. + proxy_download: false
678. + remote_directory: "packages"
679. + connection: {}
680. +
681. + ## Dependency proxy (EE only)
682. + dependency_proxy:
683. + enabled:
684. + # The location where dependency_proxy blobs are stored (default: shared/dependency_proxy).
685. + storage_path: /var/opt/gitlab/gitlab-rails/shared/dependency_proxy
686. + object_store:
687. + enabled: false
688. + direct_upload: false
689. + background_upload: true
690. + proxy_download: false
691. + remote_directory: "dependency_proxy"
692. + connection: {}
693. +
694. + ## Terraform state
695. + terraform_state:
696. + enabled:
697. + # The location where terraform state files are stored (default: shared/terraform_state).
698. + storage_path: /var/opt/gitlab/gitlab-rails/shared/terraform_state
699. + object_store:
700. + enabled: false
701. + remote_directory: "terraform"
702. + connection: {}
703. +
704. + ## Container Registry
705. + registry:
706. + enabled: false
707. + host:
708. + port:
709. + api_url: # internal address to the registry, will be used by GitLab to directly communicate with API
710. + path:
711. + key: /var/opt/gitlab/gitlab-rails/etc/gitlab-registry.key
712. + issuer: omnibus-gitlab-issuer
713. + notification_secret:
714. +
715. + ## Kubernetes Agent Server
716. + gitlab_kas:
717. + enabled: false
718. + internal_url:
719. + external_url:
720. +
721. + ## Error Reporting and Logging with Sentry
722. + sentry:
723. + enabled: false
724. + dsn:
725. + clientside_dsn:
726. + environment: # e.g. development, staging, production
727. +
728. + mattermost:
729. + enabled: false
730. + host:
731. +
732. + ## GitLab Pages
733. + pages:
734. + enabled: false
735. + access_control: false
736. + path: /var/opt/gitlab/gitlab-rails/shared/pages
737. + host:
738. + port:
739. + https: false
740. + external_http: false
741. + external_https: false
742. + artifacts_server: true
743. + object_store:
744. + enabled: false
745. + remote_directory: "pages"
746. + connection: {}
747. + local_store:
748. + enabled: true
749. + path: /var/opt/gitlab/gitlab-rails/shared/pages
750. +
751. + ## Gravatar
752. + ## For Libravatar see: https://docs.gitlab.com/ee/customization/libravatar.html
753. + gravatar:
754. + # gravatar urls: possible placeholders: %{hash} %{size} %{email}
755. + plain_url: # default: http://www.gravatar.com/avatar/%{hash}?s=%{size}&d=identicon
756. + ssl_url: # default: https://secure.gravatar.com/avatar/%{hash}?s=%{size}&d=identicon
757. +
758. + ## Sidekiq
759. + sidekiq:
760. + log_format: json
761. +
762. + ## Auxiliary jobs
763. + # Periodically executed jobs, to self-heal GitLab, do external synchronizations, etc.
764. + # Please read here for more information: https://github.com/ondrejbartas/sidekiq-cron#adding-cron-job
765. + cron_jobs:
766. + # Flag stuck CI builds as failed
767. +
768. + # Remove expired build artifacts
769. +
770. + # Stop expired environments
771. +
772. + # Schedule pipelines in the near future
773. +
774. + # Periodically run 'git fsck' on all repositories. If started more than
775. + # once per hour you will have concurrent 'git fsck' jobs.
776. +
777. + # Send admin emails once a week
778. +
779. + # Send emails about personal tokens about to expired
780. +
781. + # Send emails about personal tokens that have expired
782. +
783. + # Remove outdated repository archives
784. +
785. + # Archive live traces which have not been archived yet
786. +
787. + # Verify custom GitLab Pages domains
788. +
789. + # Obtain and renew SSL certificates for pages domain through Let's Encrypt
790. +
791. + # Removes unverified pages domains
792. +
793. + # Remove unaccepted member invitations
794. +
795. + # Periodically migrate diffs from the database to external storage
796. +
797. + # Update CI Platform Metrics daily
798. +
799. + # Send emails about ssh keys that have expired
800. +
801. + # Send emails about ssh keys that are expiring soon
802. +
803. + ##
804. + # GitLab EE only jobs:
805. +
806. + # Snapshot Devops Adoption statistics
807. +
808. + # Snapshot active users statistics
809. +
810. + # In addition to refreshing users when they log in,
811. + # periodically refresh LDAP users membership.
812. + # NOTE: This will only take effect if LDAP is enabled
813. +
814. + # GitLab LDAP group sync worker
815. + # NOTE: This will only take effect if LDAP is enabled
816. +
817. + # GitLab Geo prune event log worker
818. + # NOTE: This will only take effect if Geo is enabled (primary node only)
819. +
820. + # GitLab Geo repository sync worker
821. + # NOTE: This will only take effect if Geo is enabled
822. +
823. + # GitLab Geo registry backfill worker
824. + # NOTE: This will only take effect if Geo is enabled (secondary nodes only)
825. +
826. + # GitLab Geo Secondary Usage Data worker
827. + # NOTE: This will only take effect if Geo and Usage Data are enabled (secondary nodes only)
828. +
829. + # GitLab Geo file download dispatch worker
830. + # NOTE: This will only take effect if Geo is enabled
831. +
832. + # GitLab Geo repository verification primary batch worker
833. + # NOTE: This will only take effect if Geo is enabled
834. +
835. + # GitLab Geo repository verification secondary scheduler worker
836. + # NOTE: This will only take effect if Geo is enabled
837. +
838. + # GitLab Geo migrated local files clean up worker
839. + # NOTE: This will only take effect if Geo is enabled (secondary nodes only)
840. +
841. + # Export pseudonymized data in CSV format for analysis
842. +
843. +
844. + # Worker for triggering counter jobs for usage trends
845. +
846. + # Worker for triggering member invitation reminder emails
847. +
848. + # Worker for the scheduled user status cleanup
849. +
850. + # Worker for triggering in-product marketing emails
851. +
852. + ## Geo
853. + # NOTE: These settings will only take effect if Geo is enabled
854. + geo:
855. + # This is an optional identifier which Geo nodes can use to identify themselves.
856. + # For example, if external_url is the same for two secondaries, you must specify
857. + # a unique Geo node name for those secondaries.
858. + #
859. + # If it is blank, it defaults to external_url.
860. + node_name:
861. +
862. + registry_replication:
863. + enabled: false
864. + primary_api_url: # internal address to the primary registry, will be used by GitLab to directly communicate with primary registry API
865. +
866. + ## Feature Flag https://docs.gitlab.com/ee/user/project/operations/feature_flags.html
867. + feature_flags:
868. + unleash:
869. + enabled: false
870. +
871. + #
872. + # 2. GitLab CI settings
873. + # ==========================
874. +
875. + gitlab_ci:
876. + # Default project notifications settings:
877. + #
878. + # Send emails only on broken builds (default: true)
879. + all_broken_builds:
880. + #
881. + # Add pusher to recipients list (default: false)
882. + add_pusher:
883. +
884. + # The location where build traces are stored (default: builds/). Relative paths are relative to Rails.root
885. + builds_path: /var/opt/gitlab/gitlab-ci/builds
886. +
887. + #
888. + # 3. Auth settings
889. + # ==========================
890. +
891. + ## LDAP settings
892. + # You can inspect a sample of the LDAP users with login access by running:
893. + # bundle exec rake gitlab:ldap:check RAILS_ENV=production
894. + ldap:
895. + enabled: false
896. + sync_time:
897. + prevent_ldap_sign_in: false
898. + host:
899. + port:
900. + uid:
901. + method: # "tls" or "ssl" or "plain"
902. + bind_dn:
903. + password:
904. + active_directory:
905. + allow_username_or_email_login:
906. + lowercase_usernames:
907. + base:
908. + user_filter:
909. +
910. + ## EE only
911. + group_base:
912. + admin_group:
913. + sync_ssh_keys:
914. + sync_time:
915. +
916. + ## Smartcard authentication settings
917. + smartcard:
918. + # Allow smartcard authentication
919. + enabled: false
920. +
921. + # Path to a file containing a CA certificate
922. + ca_file: "/etc/gitlab/ssl/CA.pem"
923. +
924. + # Host and port where the client side certificate is requested by the
925. + # webserver (NGINX/Apache)
926. + client_certificate_required_host:
927. + client_certificate_required_port: 3444
928. +
929. + # Browser session with smartcard sign-in is required for Git access
930. + required_for_git_access: false
931. +
932. + # SAN extensions to match users with certificates
933. + san_extensions: false
934. +
935. + ## Kerberos settings
936. + kerberos:
937. + # Allow the HTTP Negotiate authentication method for Git clients
938. + enabled:
939. +
940. + # Kerberos 5 keytab file. The keytab file must be readable by the GitLab user,
941. + # and should be different from other keytabs in the system.
942. + # (default: use default keytab from Krb5 config)
943. + keytab:
944. +
945. + # The Kerberos service name to be used by GitLab.
946. + # (default: accept any service name in keytab file)
947. + service_principal_name:
948. +
949. + # Kerberos realms/domains that are allowed to automatically link LDAP identities.
950. + # By default, GitLab accepts a realm that matches the domain derived from the
951. + # LDAP `base` DN. For example, `ou=users,dc=example,dc=com` would allow users
952. + # with a realm matching `example.com`.
953. + simple_ldap_linking_allowed_realms: null
954. +
955. + # Dedicated port: Git before 2.4 does not fall back to Basic authentication if Negotiate fails.
956. + # To support both Basic and Negotiate methods with older versions of Git, configure
957. + # nginx to proxy GitLab on an extra port (e.g. 8443) and uncomment the following lines
958. + # to dedicate this port to Kerberos authentication. (default: false)
959. + use_dedicated_port:
960. + port:
961. + https:
962. +
963. +
964. + ## OmniAuth settings
965. + omniauth:
966. + # Allow login via Twitter, Google, etc. using OmniAuth providers
967. + enabled:
968. +
969. + # Uncomment this to automatically sign in with a specific omniauth provider's without
970. + # showing GitLab's sign-in page (default: show the GitLab sign-in page)
971. + auto_sign_in_with_provider:
972. +
973. + # Sync user's email address from the specified Omniauth provider every time the user logs
974. + # in (default: nil). And consequently make this field read-only.
975. +
976. + # Sync user's profile from the specified Omniauth providers every time the user logs in (default: empty).
977. + # Define the allowed providers using an array, e.g. ["cas3", "saml", "twitter"],
978. + # or as true/false to allow all providers or none.
979. + # sync_profile_from_provider: []
980. +
981. + # Select which info to sync from the providers above. (default: email).
982. + # Define the synced profile info using an array. Available options are "name", "email" and "location"
983. + # e.g. ["name", "email", "location"] or as true to sync all available.
984. + # This consequently will make the selected attributes read-only.
985. + # sync_profile_attributes: true
986. +
987. + # CAUTION!
988. + # This allows users to login without having a user account first. Define the allowed
989. + # providers using an array, e.g. ["saml", "twitter"]
990. + # User accounts will be created automatically when authentication was successful.
991. + allow_single_sign_on: ["saml"]
992. +
993. + # Locks down those users until they have been cleared by the admin (default: true).
994. + block_auto_created_users:
995. + # Look up new users in LDAP servers. If a match is found (same uid), automatically
996. + # link the omniauth identity with the LDAP account. (default: false)
997. + auto_link_ldap_user:
998. +
999. + # Allow users with existing accounts to login and auto link their account via SAML
1000. + # login, without having to do a manual login first and manually add SAML
1001. + # (default: false)
1002. + auto_link_saml_user: null
1003. +
1004. + # Allow users with existing accounts to sign in and auto link their account via OmniAuth
1005. + # login, without having to do a manual login first and manually add OmniAuth. Links on email.
1006. + # Define the allowed providers using an array, e.g. ["saml", "twitter"], or as true/false to
1007. + # allow all providers or none.
1008. + # (default: false)
1009. + auto_link_user: null
1010. +
1011. + # Set different Omniauth providers as external so that all users creating accounts
1012. + # via these providers will not be able to have access to internal projects. You
1013. + # will need to use the full name of the provider, like `google_oauth2` for Google.
1014. + # Refer to the examples below for the full names of the supported providers.
1015. + # (default: [])
1016. + external_providers: null
1017. +
1018. + # CAUTION!
1019. + # This allows users to login with the specified providers without two factor. Define the allowed providers
1020. + # using an array, e.g. ["twitter", 'google_oauth2'], or as true/false to allow all providers or none.
1021. + # This option should only be configured for providers which already have two factor.
1022. + # (default: false)
1023. + allow_bypass_two_factor: null
1024. +
1025. + ## Auth providers
1026. + # Uncomment the following lines and fill in the data of the auth provider you want to use
1027. + # If your favorite auth provider is not listed you can use others:
1028. + # see https://github.com/gitlabhq/gitlab-public-wiki/wiki/Custom-omniauth-provider-configurations
1029. + # The 'app_id' and 'app_secret' parameters are always passed as the first two
1030. + # arguments, followed by optional 'args' which can be either a hash or an array.
1031. + # Documentation for this is available at https://docs.gitlab.com/ee/integration/omniauth.html
1032. + providers:
1033. + # - { name: 'google_oauth2', app_id: 'YOUR APP ID',
1034. + # app_secret: 'YOUR APP SECRET',
1035. + # args: { access_type: 'offline', approval_prompt: '' } }
1036. + # - { name: 'twitter', app_id: 'YOUR APP ID',
1037. + # app_secret: 'YOUR APP SECRET'}
1038. + # - { name: 'github', app_id: 'YOUR APP ID',
1039. + # app_secret: 'YOUR APP SECRET',
1040. + # args: { scope: 'user:email' } }
1041. +
1042. + ## cas3-specific settings, specifically session_duration:
1043. +
1044. + ## max SAML message size setting. Will be useful in case received SAML message is too big.
1045. +
1046. + # FortiAuthenticator settings
1047. + forti_authenticator:
1048. + # Allow using FortiAuthenticator as OTP provider
1049. + enabled: false
1050. +
1051. +
1052. + # FortiToken Cloud settings
1053. + forti_token_cloud:
1054. + # Allow using FortiToken Cloud as OTP provider
1055. + enabled: false
1056. +
1057. +
1058. + # Shared file storage settings
1059. + shared:
1060. + path: /var/opt/gitlab/gitlab-rails/shared
1061. +
1062. + # Encrypted Settings configuration
1063. + encrypted_settings:
1064. + path: /var/opt/gitlab/gitlab-rails/shared/encrypted_settings
1065. +
1066. + # Gitaly settings
1067. + # This setting controls whether GitLab uses Gitaly
1068. + # Eventually Gitaly use will become mandatory and
1069. + # this option will disappear.
1070. + gitaly:
1071. + client_path: /opt/gitlab/embedded/bin
1072. + token: ""
1073. +
1074. +
1075. + #
1076. + # 4. Advanced settings
1077. + # ==========================
1078. +
1079. + ## Repositories settings
1080. + repositories:
1081. + # Paths where repositories can be stored. Give the canonicalized absolute pathname.
1082. + # NOTE: REPOS PATHS MUST NOT CONTAIN ANY SYMLINK!!!
1083. + storages: {"default":{"path":"/var/opt/gitlab/git-data/repositories","gitaly_address":"unix:/var/opt/gitlab/gitaly/gitaly.socket"}}
1084. +
1085. + ## Backup settings
1086. + backup:
1087. + path: "/var/opt/gitlab/backups" # Relative paths are relative to Rails.root (default: tmp/backups/)
1088. + gitaly_backup_path: "/opt/gitlab/embedded/bin/gitaly-backup" # Path of the gitaly-backup binary (default: searches $PATH)
1089. + archive_permissions: # Permissions for the resulting backup.tar file (default: 0600)
1090. + keep_time: # default: 0 (forever) (in seconds)
1091. + pg_schema: # default: nil, it means that all schemas will be backed up
1092. + upload:
1093. + # Fog storage connection settings, see http://fog.io/storage/ .
1094. + connection:
1095. + # The remote 'directory' to store your backups. For S3, this would be the bucket name.
1096. + remote_directory:
1097. + multipart_chunk_size:
1098. + encryption:
1099. + encryption_key:
1100. + storage_options: {}
1101. + storage_class:
1102. +
1103. + ## Pseudonymizer settings
1104. + pseudonymizer:
1105. + manifest:
1106. + upload:
1107. + remote_directory:
1108. + connection: {}
1109. +
1110. + ## GitLab Shell settings
1111. + gitlab_shell:
1112. + path: /opt/gitlab/embedded/service/gitlab-shell/
1113. + hooks_path: /opt/gitlab/embedded/service/gitlab-shell/hooks/
1114. + authorized_keys_file: /var/opt/gitlab/.ssh/authorized_keys
1115. +
1116. + # Git over HTTP
1117. + upload_pack:
1118. + receive_pack:
1119. +
1120. + # If you use non-standard ssh port you need to specify it
1121. + ssh_port:
1122. +
1123. + # Git import/fetch timeout
1124. + git_timeout: 10800
1125. +
1126. + ## Git settings
1127. + # CAUTION!
1128. + # Use the default values unless you really know what you are doing
1129. + git:
1130. + bin_path: /opt/gitlab/embedded/bin/git
1131. +
1132. + monitoring:
1133. + # IP whitelist controlling access to monitoring endpoints
1134. + ip_whitelist:
1135. + - "127.0.0.0/8"
1136. + - "::1/128"
1137. + # Sidekiq exporter is webserver built in to Sidekiq to expose Prometheus metrics
1138. + sidekiq_exporter:
1139. + enabled: true
1140. + log_enabled: false
1141. + address: 127.0.0.1
1142. + port: 8082
1143. +
1144. + # Web exporter is webserver built in to Unicorn/Puma to expose Prometheus metrics
1145. + web_exporter:
1146. + enabled: false
1147. + address: 127.0.0.1
1148. + port: 8083
1149. +
1150. + shutdown:
1151. + blackout_seconds: 10
1152. +
1153. + ## Prometheus settings
1154. + # Do not modify these settings here. They should be modified in /etc/gitlab/gitlab.rb
1155. + # if you installed GitLab via Omnibus.
1156. + # If you installed from source, you need to install and configure Prometheus
1157. + # yourself, and then update the values here.
1158. + # https://docs.gitlab.com/ee/administration/monitoring/prometheus/
1159. + prometheus:
1160. + enabled: true
1161. + server_address: "localhost:9090"
1162. +
1163. + ## Consul settings
1164. + consul:
1165. + api_url: ""
1166. +
1167. + #
1168. + # 5. Extra customization
1169. + # ==========================
1170. +
1171. + extra:
1172. +
1173. +
1174. +
1175. + rack_attack:
1176. + git_basic_auth:
1177. +
1178. +
1179. +development:
1180. + <<: *base
1181. +
1182. +test:
1183. + <<: *base
1184. + gravatar:
1185. + enabled: true
1186. + gitlab:
1187. + host: localhost
1188. + port: 80
1189. +
1190. + # When you run tests we clone and setup gitlab-shell
1191. + # In order to setup it correctly you need to specify
1192. + # your system username you use to run GitLab
1193. + # user: YOUR_USERNAME
1194. + repositories:
1195. + storages:
1196. + default: { "path": "tmp/tests/repositories/" }
1197. + gitlab_shell:
1198. + path: tmp/tests/gitlab-shell/
1199. + hooks_path: tmp/tests/gitlab-shell/hooks/
1200. + issues_tracker:
1201. + redmine:
1202. + title: "Redmine"
1203. + project_url: "http://redmine/projects/:issues_tracker_id"
1204. + issues_url: "http://redmine/:project_id/:issues_tracker_id/:id"
1205. + new_issue_url: "http://redmine/projects/:issues_tracker_id/issues/new"
1206. + jira:
1207. + title: "JIRA"
1208. + url: https://samplecompany.example.net
1209. + project_key: PROJECT
1210. + ldap:
1211. + enabled: false
1212. + servers:
1213. + main:
1214. + label: ldap
1215. + host: 127.0.0.1
1216. + port: 3890
1217. + uid: 'uid'
1218. + method: 'plain' # "tls" or "ssl" or "plain"
1219. + base: 'dc=example,dc=com'
1220. + user_filter: ''
1221. + group_base: 'ou=groups,dc=example,dc=com'
1222. + admin_group: ''
1223. + sync_ssh_keys: false
1224. +
1225. +staging:
1226. + <<: *base
1227. - change mode from '' to '0640'
1228. - change owner from '' to 'root'
1229. - change group from '' to 'git'
1230. * link[Link /opt/gitlab/embedded/service/gitlab-rails/config/gitlab.yml to /var/opt/gitlab/gitlab-rails/etc/gitlab.yml] action create
1231. - create symlink at /opt/gitlab/embedded/service/gitlab-rails/config/gitlab.yml to /var/opt/gitlab/gitlab-rails/etc/gitlab.yml
1232.  
1233. * templatesymlink[Create a gitlab_workhorse_secret and create a symlink to Rails root] action create
1234. * template[/var/opt/gitlab/gitlab-rails/etc/gitlab_workhorse_secret] action create
1235. - create new file /var/opt/gitlab/gitlab-rails/etc/gitlab_workhorse_secret
1236. - update content in file /var/opt/gitlab/gitlab-rails/etc/gitlab_workhorse_secret from none to 900159
1237. - suppressed sensitive resource
1238. - change mode from '' to '0644'
1239. - change owner from '' to 'root'
1240. - change group from '' to 'root'
1241. * link[Link /opt/gitlab/embedded/service/gitlab-rails/.gitlab_workhorse_secret to /var/opt/gitlab/gitlab-rails/etc/gitlab_workhorse_secret] action create
1242. - create symlink at /opt/gitlab/embedded/service/gitlab-rails/.gitlab_workhorse_secret to /var/opt/gitlab/gitlab-rails/etc/gitlab_workhorse_secret
1243.  
1244. * templatesymlink[Create a gitlab_shell_secret and create a symlink to Rails root] action create
1245. * template[/var/opt/gitlab/gitlab-rails/etc/gitlab_shell_secret] action create
1246. - create new file /var/opt/gitlab/gitlab-rails/etc/gitlab_shell_secret
1247. - update content in file /var/opt/gitlab/gitlab-rails/etc/gitlab_shell_secret from none to c742f1
1248. - suppressed sensitive resource
1249. - change mode from '' to '0644'
1250. - change owner from '' to 'root'
1251. - change group from '' to 'root'
1252. * link[Link /opt/gitlab/embedded/service/gitlab-rails/.gitlab_shell_secret to /var/opt/gitlab/gitlab-rails/etc/gitlab_shell_secret] action create
1253. - create symlink at /opt/gitlab/embedded/service/gitlab-rails/.gitlab_shell_secret to /var/opt/gitlab/gitlab-rails/etc/gitlab_shell_secret
1254.  
1255. * templatesymlink[Create a gitlab_pages_secret and create a symlink to Rails root] action create
1256. * template[/var/opt/gitlab/gitlab-rails/etc/gitlab_pages_secret] action create
1257. - create new file /var/opt/gitlab/gitlab-rails/etc/gitlab_pages_secret
1258. - update content in file /var/opt/gitlab/gitlab-rails/etc/gitlab_pages_secret from none to 85129b
1259. - suppressed sensitive resource
1260. - change mode from '' to '0644'
1261. - change owner from '' to 'root'
1262. - change group from '' to 'root'
1263. * link[Link /opt/gitlab/embedded/service/gitlab-rails/.gitlab_pages_secret to /var/opt/gitlab/gitlab-rails/etc/gitlab_pages_secret] action create
1264. - create symlink at /opt/gitlab/embedded/service/gitlab-rails/.gitlab_pages_secret to /var/opt/gitlab/gitlab-rails/etc/gitlab_pages_secret
1265.  
1266. * templatesymlink[Create a gitlab_kas_secret and create a symlink to Rails root] action create
1267. * template[/var/opt/gitlab/gitlab-rails/etc/gitlab_kas_secret] action create
1268. - create new file /var/opt/gitlab/gitlab-rails/etc/gitlab_kas_secret
1269. - update content in file /var/opt/gitlab/gitlab-rails/etc/gitlab_kas_secret from none to 85e31f
1270. - suppressed sensitive resource
1271. - change mode from '' to '0644'
1272. - change owner from '' to 'root'
1273. - change group from '' to 'root'
1274. * link[Link /opt/gitlab/embedded/service/gitlab-rails/.gitlab_kas_secret to /var/opt/gitlab/gitlab-rails/etc/gitlab_kas_secret] action create
1275. - unlink existing symlink to file at /opt/gitlab/embedded/service/gitlab-rails/.gitlab_kas_secret
1276. - create symlink at /opt/gitlab/embedded/service/gitlab-rails/.gitlab_kas_secret to /var/opt/gitlab/gitlab-rails/etc/gitlab_kas_secret
1277.  
1278. * link[/opt/gitlab/embedded/service/gitlab-rails/config/initializers/relative_url.rb] action delete (up to date)
1279. * file[/var/opt/gitlab/gitlab-rails/etc/relative_url.rb] action delete (up to date)
1280. * env_dir[/opt/gitlab/etc/gitlab-rails/env] action create
1281. * directory[/opt/gitlab/etc/gitlab-rails/env] action create
1282. - create new directory /opt/gitlab/etc/gitlab-rails/env
1283. * file[/opt/gitlab/etc/gitlab-rails/env/HOME] action create
1284. - create new file /opt/gitlab/etc/gitlab-rails/env/HOME
1285. - update content in file /opt/gitlab/etc/gitlab-rails/env/HOME from none to 205bb9
1286. - suppressed sensitive resource
1287. * file[/opt/gitlab/etc/gitlab-rails/env/RAILS_ENV] action create
1288. - create new file /opt/gitlab/etc/gitlab-rails/env/RAILS_ENV
1289. - update content in file /opt/gitlab/etc/gitlab-rails/env/RAILS_ENV from none to ab8e18
1290. - suppressed sensitive resource
1291. * file[/opt/gitlab/etc/gitlab-rails/env/LD_PRELOAD] action create
1292. - create new file /opt/gitlab/etc/gitlab-rails/env/LD_PRELOAD
1293. - update content in file /opt/gitlab/etc/gitlab-rails/env/LD_PRELOAD from none to f79114
1294. - suppressed sensitive resource
1295. * file[/opt/gitlab/etc/gitlab-rails/env/BUNDLE_GEMFILE] action create
1296. - create new file /opt/gitlab/etc/gitlab-rails/env/BUNDLE_GEMFILE
1297. - update content in file /opt/gitlab/etc/gitlab-rails/env/BUNDLE_GEMFILE from none to 28d586
1298. - suppressed sensitive resource
1299. * file[/opt/gitlab/etc/gitlab-rails/env/SIDEKIQ_MEMORY_KILLER_MAX_RSS] action create
1300. - create new file /opt/gitlab/etc/gitlab-rails/env/SIDEKIQ_MEMORY_KILLER_MAX_RSS
1301. - update content in file /opt/gitlab/etc/gitlab-rails/env/SIDEKIQ_MEMORY_KILLER_MAX_RSS from none to dd80d7
1302. - suppressed sensitive resource
1303. * file[/opt/gitlab/etc/gitlab-rails/env/PATH] action create
1304. - create new file /opt/gitlab/etc/gitlab-rails/env/PATH
1305. - update content in file /opt/gitlab/etc/gitlab-rails/env/PATH from none to d5dc07
1306. - suppressed sensitive resource
1307. * file[/opt/gitlab/etc/gitlab-rails/env/ICU_DATA] action create
1308. - create new file /opt/gitlab/etc/gitlab-rails/env/ICU_DATA
1309. - update content in file /opt/gitlab/etc/gitlab-rails/env/ICU_DATA from none to a04260
1310. - suppressed sensitive resource
1311. * file[/opt/gitlab/etc/gitlab-rails/env/PYTHONPATH] action create
1312. - create new file /opt/gitlab/etc/gitlab-rails/env/PYTHONPATH
1313. - update content in file /opt/gitlab/etc/gitlab-rails/env/PYTHONPATH from none to 98c9f4
1314. - suppressed sensitive resource
1315. * file[/opt/gitlab/etc/gitlab-rails/env/EXECJS_RUNTIME] action create
1316. - create new file /opt/gitlab/etc/gitlab-rails/env/EXECJS_RUNTIME
1317. - update content in file /opt/gitlab/etc/gitlab-rails/env/EXECJS_RUNTIME from none to 75081b
1318. - suppressed sensitive resource
1319. * file[/opt/gitlab/etc/gitlab-rails/env/TZ] action create
1320. - create new file /opt/gitlab/etc/gitlab-rails/env/TZ
1321. - update content in file /opt/gitlab/etc/gitlab-rails/env/TZ from none to 983a95
1322. - suppressed sensitive resource
1323.  
1324. * link[/opt/gitlab/embedded/service/gitlab-rails/tmp] action create
1325. - create symlink at /opt/gitlab/embedded/service/gitlab-rails/tmp to /var/opt/gitlab/gitlab-rails/tmp
1326. * link[/opt/gitlab/embedded/service/gitlab-rails/public/uploads] action create
1327. - create symlink at /opt/gitlab/embedded/service/gitlab-rails/public/uploads to /var/opt/gitlab/gitlab-rails/uploads
1328. * link[/opt/gitlab/embedded/service/gitlab-rails/log] action create
1329. - create symlink at /opt/gitlab/embedded/service/gitlab-rails/log to /var/log/gitlab/gitlab-rails
1330. * link[/var/log/gitlab/gitlab-rails/sidekiq.log] action delete (skipped due to only_if)
1331. * file[/opt/gitlab/embedded/service/gitlab-rails/db/structure.sql] action create
1332. - change owner from 'root' to 'git'
1333. * remote_file[/var/opt/gitlab/gitlab-rails/VERSION] action create/opt/gitlab/embedded/lib/ruby/gems/2.7.0/gems/chef-15.17.4/lib/chef/provider/remote_file/local_file.rb:43: warning: URI.unescape is obsolete
1334.  
1335. - create new file /var/opt/gitlab/gitlab-rails/VERSION
1336. - update content in file /var/opt/gitlab/gitlab-rails/VERSION from none to 391f4c
1337. --- /var/opt/gitlab/gitlab-rails/VERSION 2021-11-09 21:15:20.011500969 +0000
1338. +++ /var/opt/gitlab/gitlab-rails/.chef-VERSION20211109-12195-178b84o 2021-11-09 21:15:20.011500969 +0000
1339. @@ -1 +1,2 @@
1340. +14.4.2-ee
1341. * remote_file[/var/opt/gitlab/gitlab-rails/REVISION] action create/opt/gitlab/embedded/lib/ruby/gems/2.7.0/gems/chef-15.17.4/lib/chef/provider/remote_file/local_file.rb:43: warning: URI.unescape is obsolete
1342.  
1343. - create new file /var/opt/gitlab/gitlab-rails/REVISION
1344. - update content in file /var/opt/gitlab/gitlab-rails/REVISION from none to 004aea
1345. --- /var/opt/gitlab/gitlab-rails/REVISION 2021-11-09 21:15:20.027500814 +0000
1346. +++ /var/opt/gitlab/gitlab-rails/.chef-REVISION20211109-12195-1ylrn87 2021-11-09 21:15:20.027500814 +0000
1347. @@ -1 +1,2 @@
1348. +84aa6daaffd
1349. * version_file[Create version file for Rails] action create
1350. * file[/var/opt/gitlab/gitlab-rails/RUBY_VERSION] action create
1351. - create new file /var/opt/gitlab/gitlab-rails/RUBY_VERSION
1352. - update content in file /var/opt/gitlab/gitlab-rails/RUBY_VERSION from none to a499eb
1353. --- /var/opt/gitlab/gitlab-rails/RUBY_VERSION 2021-11-09 21:15:20.079500317 +0000
1354. +++ /var/opt/gitlab/gitlab-rails/.chef-RUBY_VERSION20211109-12195-l7d8fi 2021-11-09 21:15:20.079500317 +0000
1355. @@ -1 +1,2 @@
1356. +ruby 2.7.4p191 (2021-07-07 revision a21a3b7d23) [x86_64-linux]
1357.  
1358. * execute[clear the gitlab-rails cache] action nothing (skipped due to action :nothing)
1359. * file[/var/opt/gitlab/gitlab-rails/config.ru] action delete (up to date)
1360. Recipe: gitlab::selinux
1361. * bash[Set proper security context on ssh files for selinux] action nothing (skipped due to action :nothing)
1362. Recipe: gitlab::add_trusted_certs
1363. * directory[/etc/gitlab/trusted-certs] action create
1364. - create new directory /etc/gitlab/trusted-certs
1365. - change mode from '' to '0755'
1366. * directory[/opt/gitlab/embedded/ssl/certs] action create (up to date)
1367. * file[/opt/gitlab/embedded/ssl/certs/README] action create
1368. - create new file /opt/gitlab/embedded/ssl/certs/README
1369. - update content in file /opt/gitlab/embedded/ssl/certs/README from none to 623059
1370. --- /opt/gitlab/embedded/ssl/certs/README 2021-11-09 21:15:20.115499971 +0000
1371. +++ /opt/gitlab/embedded/ssl/certs/.chef-README20211109-12195-8rxww1 2021-11-09 21:15:20.111500009 +0000
1372. @@ -1 +1,4 @@
1373. +This directory is managed by omnibus-gitlab.
1374. + Any file placed in this directory will be ignored
1375. +. Place certificates in /etc/gitlab/trusted-certs.
1376. - change mode from '' to '0644'
1377. * ruby_block[Move existing certs and link to /opt/gitlab/embedded/ssl/certs] action run
1378.  
1379. * Moving existing certificates found in /opt/gitlab/embedded/ssl/certs
1380.  
1381. * Symlinking existing certificates found in /etc/gitlab/trusted-certs
1382.  
1383. - execute the ruby block Move existing certs and link to /opt/gitlab/embedded/ssl/certs
1384. Recipe: gitlab::default
1385. * service[create a temporary puma service] action nothing (skipped due to action :nothing)
1386. * service[create a temporary sidekiq service] action nothing (skipped due to action :nothing)
1387. * service[create a temporary mailroom service] action nothing (skipped due to action :nothing)
1388. Recipe: package::runit_systemd
1389. * directory[/usr/lib/systemd/system] action create (up to date)
1390. * template[/usr/lib/systemd/system/gitlab-runsvdir.service] action create (up to date)
1391. * file[/etc/systemd/system/default.target.wants/gitlab-runsvdir.service] action delete (up to date)
1392. * file[/etc/systemd/system/basic.target.wants/gitlab-runsvdir.service] action delete (up to date)
1393. * execute[systemctl daemon-reload] action nothing (skipped due to action :nothing)
1394. * execute[systemctl enable gitlab-runsvdir] action nothing (skipped due to action :nothing)
1395. * execute[systemctl start gitlab-runsvdir] action nothing (skipped due to action :nothing)
1396. Recipe: package::sysctl
1397. * execute[reload all sysctl conf] action nothing (skipped due to action :nothing)
1398. Recipe: logrotate::folders_and_configs
1399. * directory[/var/opt/gitlab/logrotate] action create
1400. - create new directory /var/opt/gitlab/logrotate
1401. - change mode from '' to '0700'
1402. * directory[/var/opt/gitlab/logrotate/logrotate.d] action create
1403. - create new directory /var/opt/gitlab/logrotate/logrotate.d
1404. - change mode from '' to '0700'
1405. * directory[/var/log/gitlab/logrotate] action create
1406. - create new directory /var/log/gitlab/logrotate
1407. - change mode from '' to '0700'
1408. * template[/var/opt/gitlab/logrotate/logrotate.conf] action create
1409. - create new file /var/opt/gitlab/logrotate/logrotate.conf
1410. - update content in file /var/opt/gitlab/logrotate/logrotate.conf from none to c1c320
1411. --- /var/opt/gitlab/logrotate/logrotate.conf 2021-11-09 21:15:20.219498974 +0000
1412. +++ /var/opt/gitlab/logrotate/.chef-logrotate20211109-12195-1kvnmdy.conf 2021-11-09 21:15:20.219498974 +0000
1413. @@ -1 +1,13 @@
1414. +# Generated by 'gitlab-ctl reconfigure'.
1415. +# Modifications will be overwritten!
1416. +
1417. +include /var/opt/gitlab/logrotate/logrotate.d/nginx
1418. +include /var/opt/gitlab/logrotate/logrotate.d/puma
1419. +include /var/opt/gitlab/logrotate/logrotate.d/gitlab-rails
1420. +include /var/opt/gitlab/logrotate/logrotate.d/gitlab-shell
1421. +include /var/opt/gitlab/logrotate/logrotate.d/gitlab-workhorse
1422. +include /var/opt/gitlab/logrotate/logrotate.d/gitlab-pages
1423. +include /var/opt/gitlab/logrotate/logrotate.d/gitlab-kas
1424. +include /var/opt/gitlab/logrotate/logrotate.d/gitaly
1425. +include /var/opt/gitlab/logrotate/logrotate.d/mailroom
1426. - change mode from '' to '0644'
1427. * template[/var/opt/gitlab/logrotate/logrotate.d/nginx] action create
1428. - create new file /var/opt/gitlab/logrotate/logrotate.d/nginx
1429. - update content in file /var/opt/gitlab/logrotate/logrotate.d/nginx from none to e17e19
1430. --- /var/opt/gitlab/logrotate/logrotate.d/nginx 2021-11-09 21:15:20.239498782 +0000
1431. +++ /var/opt/gitlab/logrotate/logrotate.d/.chef-nginx20211109-12195-yw68ks 2021-11-09 21:15:20.239498782 +0000
1432. @@ -1 +1,18 @@
1433. +# Generated by gitlab-ctl reconfigure
1434. +# Modifications will be overwritten!
1435. +
1436. +/var/log/gitlab/nginx/*.log {
1437. + su root root
1438. + daily
1439. +
1440. +
1441. + rotate 30
1442. + compress
1443. + copytruncate
1444. + missingok
1445. + notifempty
1446. + postrotate
1447. +
1448. + endscript
1449. +}
1450. * template[/var/opt/gitlab/logrotate/logrotate.d/puma] action create
1451. - create new file /var/opt/gitlab/logrotate/logrotate.d/puma
1452. - update content in file /var/opt/gitlab/logrotate/logrotate.d/puma from none to 44ad27
1453. --- /var/opt/gitlab/logrotate/logrotate.d/puma 2021-11-09 21:15:20.255498628 +0000
1454. +++ /var/opt/gitlab/logrotate/logrotate.d/.chef-puma20211109-12195-uw0lyf 2021-11-09 21:15:20.255498628 +0000
1455. @@ -1 +1,18 @@
1456. +# Generated by gitlab-ctl reconfigure
1457. +# Modifications will be overwritten!
1458. +
1459. +/var/log/gitlab/puma/*.log {
1460. + su git git
1461. + daily
1462. +
1463. +
1464. + rotate 30
1465. + compress
1466. + copytruncate
1467. + missingok
1468. + notifempty
1469. + postrotate
1470. +
1471. + endscript
1472. +}
1473. * template[/var/opt/gitlab/logrotate/logrotate.d/gitlab-rails] action create
1474. - create new file /var/opt/gitlab/logrotate/logrotate.d/gitlab-rails
1475. - update content in file /var/opt/gitlab/logrotate/logrotate.d/gitlab-rails from none to 26254a
1476. --- /var/opt/gitlab/logrotate/logrotate.d/gitlab-rails 2021-11-09 21:15:20.271498475 +0000
1477. +++ /var/opt/gitlab/logrotate/logrotate.d/.chef-gitlab-rails20211109-12195-qd1d1c 2021-11-09 21:15:20.271498475 +0000
1478. @@ -1 +1,18 @@
1479. +# Generated by gitlab-ctl reconfigure
1480. +# Modifications will be overwritten!
1481. +
1482. +/var/log/gitlab/gitlab-rails/*.log {
1483. + su git git
1484. + daily
1485. +
1486. +
1487. + rotate 30
1488. + compress
1489. + copytruncate
1490. + missingok
1491. + notifempty
1492. + postrotate
1493. +
1494. + endscript
1495. +}
1496. * template[/var/opt/gitlab/logrotate/logrotate.d/gitlab-shell] action create
1497. - create new file /var/opt/gitlab/logrotate/logrotate.d/gitlab-shell
1498. - update content in file /var/opt/gitlab/logrotate/logrotate.d/gitlab-shell from none to 3a880d
1499. --- /var/opt/gitlab/logrotate/logrotate.d/gitlab-shell 2021-11-09 21:15:20.287498322 +0000
1500. +++ /var/opt/gitlab/logrotate/logrotate.d/.chef-gitlab-shell20211109-12195-sbfykx 2021-11-09 21:15:20.287498322 +0000
1501. @@ -1 +1,18 @@
1502. +# Generated by gitlab-ctl reconfigure
1503. +# Modifications will be overwritten!
1504. +
1505. +/var/log/gitlab/gitlab-shell//*.log {
1506. + su git git
1507. + daily
1508. +
1509. +
1510. + rotate 30
1511. + compress
1512. + copytruncate
1513. + missingok
1514. + notifempty
1515. + postrotate
1516. +
1517. + endscript
1518. +}
1519. * template[/var/opt/gitlab/logrotate/logrotate.d/gitlab-workhorse] action create
1520. - create new file /var/opt/gitlab/logrotate/logrotate.d/gitlab-workhorse
1521. - update content in file /var/opt/gitlab/logrotate/logrotate.d/gitlab-workhorse from none to 3453f6
1522. --- /var/opt/gitlab/logrotate/logrotate.d/gitlab-workhorse 2021-11-09 21:15:20.303498167 +0000
1523. +++ /var/opt/gitlab/logrotate/logrotate.d/.chef-gitlab-workhorse20211109-12195-hy5f32 2021-11-09 21:15:20.303498167 +0000
1524. @@ -1 +1,18 @@
1525. +# Generated by gitlab-ctl reconfigure
1526. +# Modifications will be overwritten!
1527. +
1528. +/var/log/gitlab/gitlab-workhorse/*.log {
1529. + su git git
1530. + daily
1531. +
1532. +
1533. + rotate 30
1534. + compress
1535. + copytruncate
1536. + missingok
1537. + notifempty
1538. + postrotate
1539. +
1540. + endscript
1541. +}
1542. * template[/var/opt/gitlab/logrotate/logrotate.d/gitlab-pages] action create
1543. - create new file /var/opt/gitlab/logrotate/logrotate.d/gitlab-pages
1544. - update content in file /var/opt/gitlab/logrotate/logrotate.d/gitlab-pages from none to 3c118a
1545. --- /var/opt/gitlab/logrotate/logrotate.d/gitlab-pages 2021-11-09 21:15:20.323497975 +0000
1546. +++ /var/opt/gitlab/logrotate/logrotate.d/.chef-gitlab-pages20211109-12195-6omkpv 2021-11-09 21:15:20.323497975 +0000
1547. @@ -1 +1,18 @@
1548. +# Generated by gitlab-ctl reconfigure
1549. +# Modifications will be overwritten!
1550. +
1551. +/var/log/gitlab/gitlab-pages/*.log {
1552. + su git git
1553. + daily
1554. +
1555. +
1556. + rotate 30
1557. + compress
1558. + copytruncate
1559. + missingok
1560. + notifempty
1561. + postrotate
1562. +
1563. + endscript
1564. +}
1565. * template[/var/opt/gitlab/logrotate/logrotate.d/gitlab-kas] action create
1566. - create new file /var/opt/gitlab/logrotate/logrotate.d/gitlab-kas
1567. - update content in file /var/opt/gitlab/logrotate/logrotate.d/gitlab-kas from none to 0ba4f0
1568. --- /var/opt/gitlab/logrotate/logrotate.d/gitlab-kas 2021-11-09 21:15:20.339497822 +0000
1569. +++ /var/opt/gitlab/logrotate/logrotate.d/.chef-gitlab-kas20211109-12195-12vy3vo 2021-11-09 21:15:20.339497822 +0000
1570. @@ -1 +1,18 @@
1571. +# Generated by gitlab-ctl reconfigure
1572. +# Modifications will be overwritten!
1573. +
1574. +/var/log/gitlab/gitlab-kas/*.log {
1575. + su git git
1576. + daily
1577. +
1578. +
1579. + rotate 30
1580. + compress
1581. + copytruncate
1582. + missingok
1583. + notifempty
1584. + postrotate
1585. +
1586. + endscript
1587. +}
1588. * template[/var/opt/gitlab/logrotate/logrotate.d/gitaly] action create
1589. - create new file /var/opt/gitlab/logrotate/logrotate.d/gitaly
1590. - update content in file /var/opt/gitlab/logrotate/logrotate.d/gitaly from none to 02bda7
1591. --- /var/opt/gitlab/logrotate/logrotate.d/gitaly 2021-11-09 21:15:20.355497670 +0000
1592. +++ /var/opt/gitlab/logrotate/logrotate.d/.chef-gitaly20211109-12195-dl2t8k 2021-11-09 21:15:20.355497670 +0000
1593. @@ -1 +1,18 @@
1594. +# Generated by gitlab-ctl reconfigure
1595. +# Modifications will be overwritten!
1596. +
1597. +/var/log/gitlab/gitaly/*.log {
1598. + su git git
1599. + daily
1600. +
1601. +
1602. + rotate 30
1603. + compress
1604. + copytruncate
1605. + missingok
1606. + notifempty
1607. + postrotate
1608. +
1609. + endscript
1610. +}
1611. * template[/var/opt/gitlab/logrotate/logrotate.d/mailroom] action create
1612. - create new file /var/opt/gitlab/logrotate/logrotate.d/mailroom
1613. - update content in file /var/opt/gitlab/logrotate/logrotate.d/mailroom from none to 8fcea3
1614. --- /var/opt/gitlab/logrotate/logrotate.d/mailroom 2021-11-09 21:15:20.371497515 +0000
1615. +++ /var/opt/gitlab/logrotate/logrotate.d/.chef-mailroom20211109-12195-1fw11wz 2021-11-09 21:15:20.371497515 +0000
1616. @@ -1 +1,18 @@
1617. +# Generated by gitlab-ctl reconfigure
1618. +# Modifications will be overwritten!
1619. +
1620. +/var/log/gitlab/mailroom/*.log {
1621. + su git git
1622. + daily
1623. +
1624. +
1625. + rotate 30
1626. + compress
1627. + copytruncate
1628. + missingok
1629. + notifempty
1630. + postrotate
1631. +
1632. + endscript
1633. +}
1634. Recipe: logrotate::enable
1635. * service[logrotate] action nothing (skipped due to action :nothing)
1636. * runit_service[logrotate] action enable
1637. * ruby_block[restart_service] action nothing (skipped due to action :nothing)
1638. * ruby_block[restart_log_service] action nothing (skipped due to action :nothing)
1639. * ruby_block[reload_log_service] action nothing (skipped due to action :nothing)
1640. * directory[/opt/gitlab/sv/logrotate] action create
1641. - create new directory /opt/gitlab/sv/logrotate
1642. - change mode from '' to '0755'
1643. - change owner from '' to 'root'
1644. - change group from '' to 'root'
1645. * template[/opt/gitlab/sv/logrotate/run] action create
1646. - create new file /opt/gitlab/sv/logrotate/run
1647. - update content in file /opt/gitlab/sv/logrotate/run from none to 07f1b6
1648. --- /opt/gitlab/sv/logrotate/run 2021-11-09 21:15:20.395497285 +0000
1649. +++ /opt/gitlab/sv/logrotate/.chef-run20211109-12195-wako1u 2021-11-09 21:15:20.395497285 +0000
1650. @@ -1 +1,11 @@
1651. +#!/bin/sh
1652. +exec 2>&1
1653. +
1654. +cd /var/opt/gitlab/logrotate
1655. +
1656. +exec /opt/gitlab/embedded/bin/chpst -P /usr/bin/env \
1657. + dir=/var/opt/gitlab/logrotate \
1658. + pre_sleep=600 \
1659. + post_sleep=3000 \
1660. + /opt/gitlab/embedded/bin/gitlab-logrotate-wrapper
1661. - change mode from '' to '0755'
1662. - change owner from '' to 'root'
1663. - change group from '' to 'root'
1664. * directory[/opt/gitlab/sv/logrotate/log] action create
1665. - create new directory /opt/gitlab/sv/logrotate/log
1666. - change mode from '' to '0755'
1667. - change owner from '' to 'root'
1668. - change group from '' to 'root'
1669. * directory[/opt/gitlab/sv/logrotate/log/main] action create
1670. - create new directory /opt/gitlab/sv/logrotate/log/main
1671. - change mode from '' to '0755'
1672. - change owner from '' to 'root'
1673. - change group from '' to 'root'
1674. * template[/opt/gitlab/sv/logrotate/log/config] action create
1675. - create new file /opt/gitlab/sv/logrotate/log/config
1676. - update content in file /opt/gitlab/sv/logrotate/log/config from none to 623c00
1677. --- /opt/gitlab/sv/logrotate/log/config 2021-11-09 21:15:20.419497055 +0000
1678. +++ /opt/gitlab/sv/logrotate/log/.chef-config20211109-12195-jfd1ew 2021-11-09 21:15:20.419497055 +0000
1679. @@ -1 +1,7 @@
1680. +s209715200
1681. +n30
1682. +t86400
1683. +!gzip
1684. +
1685. +
1686. - change mode from '' to '0644'
1687. - change owner from '' to 'root'
1688. - change group from '' to 'root'
1689. * ruby_block[verify_chown_persisted_on_logrotate] action create
1690. - execute the ruby block verify_chown_persisted_on_logrotate
1691. * ruby_block[verify_chown_persisted_on_logrotate] action nothing (skipped due to action :nothing)
1692. * link[/var/log/gitlab/logrotate/config] action create
1693. - create symlink at /var/log/gitlab/logrotate/config to /opt/gitlab/sv/logrotate/log/config
1694. * template[/opt/gitlab/sv/logrotate/log/run] action create
1695. - create new file /opt/gitlab/sv/logrotate/log/run
1696. - update content in file /opt/gitlab/sv/logrotate/log/run from none to 94afe6
1697. --- /opt/gitlab/sv/logrotate/log/run 2021-11-09 21:15:20.435496902 +0000
1698. +++ /opt/gitlab/sv/logrotate/log/.chef-run20211109-12195-1tiagn3 2021-11-09 21:15:20.435496902 +0000
1699. @@ -1 +1,3 @@
1700. +#!/bin/sh
1701. +exec svlogd -tt /var/log/gitlab/logrotate
1702. - change mode from '' to '0755'
1703. - change owner from '' to 'root'
1704. - change group from '' to 'root'
1705. * directory[/opt/gitlab/sv/logrotate/env] action create
1706. - create new directory /opt/gitlab/sv/logrotate/env
1707. - change mode from '' to '0755'
1708. - change owner from '' to 'root'
1709. - change group from '' to 'root'
1710. * ruby_block[Delete unmanaged env files for logrotate service] action run (skipped due to only_if)
1711. * template[/opt/gitlab/sv/logrotate/check] action create (skipped due to only_if)
1712. * template[/opt/gitlab/sv/logrotate/finish] action create (skipped due to only_if)
1713. * directory[/opt/gitlab/sv/logrotate/control] action create
1714. - create new directory /opt/gitlab/sv/logrotate/control
1715. - change mode from '' to '0755'
1716. - change owner from '' to 'root'
1717. - change group from '' to 'root'
1718. * template[/opt/gitlab/sv/logrotate/control/t] action create
1719. - create new file /opt/gitlab/sv/logrotate/control/t
1720. - update content in file /opt/gitlab/sv/logrotate/control/t from none to 8fa3fa
1721. --- /opt/gitlab/sv/logrotate/control/t 2021-11-09 21:15:20.459496672 +0000
1722. +++ /opt/gitlab/sv/logrotate/control/.chef-t20211109-12195-yvvyll 2021-11-09 21:15:20.459496672 +0000
1723. @@ -1 +1,4 @@
1724. +#!/bin/sh
1725. +echo "Received TERM from runit, sending to process group (-PID)"
1726. +kill -- -$(cat /opt/gitlab/service/logrotate/supervise/pid)
1727. - change mode from '' to '0755'
1728. - change owner from '' to 'root'
1729. - change group from '' to 'root'
1730. * link[/opt/gitlab/init/logrotate] action create
1731. - create symlink at /opt/gitlab/init/logrotate to /opt/gitlab/embedded/bin/sv
1732. * file[/opt/gitlab/sv/logrotate/down] action nothing (skipped due to action :nothing)
1733. * ruby_block[restart_service] action run (skipped due to only_if)
1734. * ruby_block[reload_log_service] action create
1735. * ruby_block[restart_service] action nothing (skipped due to action :nothing)
1736. * ruby_block[restart_log_service] action nothing (skipped due to action :nothing)
1737. * ruby_block[reload_log_service] action nothing (skipped due to action :nothing)
1738. * directory[/opt/gitlab/sv/logrotate] action create (up to date)
1739. * template[/opt/gitlab/sv/logrotate/run] action create (up to date)
1740. * directory[/opt/gitlab/sv/logrotate/log] action create (up to date)
1741. * directory[/opt/gitlab/sv/logrotate/log/main] action create (up to date)
1742. * template[/opt/gitlab/sv/logrotate/log/config] action create (up to date)
1743. * ruby_block[verify_chown_persisted_on_logrotate] action nothing (skipped due to action :nothing)
1744. * link[/var/log/gitlab/logrotate/config] action create (up to date)
1745. * template[/opt/gitlab/sv/logrotate/log/run] action create (up to date)
1746. * directory[/opt/gitlab/sv/logrotate/env] action create (up to date)
1747. * ruby_block[Delete unmanaged env files for logrotate service] action run (skipped due to only_if)
1748. * template[/opt/gitlab/sv/logrotate/check] action create (skipped due to only_if)
1749. * template[/opt/gitlab/sv/logrotate/finish] action create (skipped due to only_if)
1750. * directory[/opt/gitlab/sv/logrotate/control] action create (up to date)
1751. * template[/opt/gitlab/sv/logrotate/control/t] action create (up to date)
1752. * link[/opt/gitlab/init/logrotate] action create (up to date)
1753. * file[/opt/gitlab/sv/logrotate/down] action nothing (skipped due to action :nothing)
1754. * directory[/opt/gitlab/service] action create (up to date)
1755. * link[/opt/gitlab/service/logrotate] action create
1756. - create symlink at /opt/gitlab/service/logrotate to /opt/gitlab/sv/logrotate
1757. * ruby_block[wait for logrotate service socket] action run
1758.