Add native captcha and enable it by default.
[akkoma] / config / config.exs
1 # .i;;;;i.
2 # iYcviii;vXY:
3 # .YXi .i1c.
4 # .YC. . in7.
5 # .vc. ...... ;1c.
6 # i7, .. .;1;
7 # i7, .. ... .Y1i
8 # ,7v .6MMM@; .YX,
9 # .7;. ..IMMMMMM1 :t7.
10 # .;Y. ;$MMMMMM9. :tc.
11 # vY. .. .nMMM@MMU. ;1v.
12 # i7i ... .#MM@M@C. .....:71i
13 # it: .... $MMM@9;.,i;;;i,;tti
14 # :t7. ..... 0MMMWv.,iii:::,,;St.
15 # .nC. ..... IMMMQ..,::::::,.,czX.
16 # .ct: ....... .ZMMMI..,:::::::,,:76Y.
17 # c2: ......,i..Y$M@t..:::::::,,..inZY
18 # vov ......:ii..c$MBc..,,,,,,,,,,..iI9i
19 # i9Y ......iii:..7@MA,..,,,,,,,,,....;AA:
20 # iIS. ......:ii::..;@MI....,............;Ez.
21 # .I9. ......:i::::...8M1..................C0z.
22 # .z9; ......:i::::,.. .i:...................zWX.
23 # vbv ......,i::::,,. ................. :AQY
24 # c6Y. .,...,::::,,..:t0@@QY. ................ :8bi
25 # :6S. ..,,...,:::,,,..EMMMMMMI. ............... .;bZ,
26 # :6o, .,,,,..:::,,,..i#MMMMMM#v................. YW2.
27 # .n8i ..,,,,,,,::,,,,.. tMMMMM@C:.................. .1Wn
28 # 7Uc. .:::,,,,,::,,,,.. i1t;,..................... .UEi
29 # 7C...::::::::::::,,,,.. .................... vSi.
30 # ;1;...,,::::::,......... .................. Yz:
31 # v97,......... .voC.
32 # izAotX7777777777777777777777777777777777777777Y7n92:
33 # .;CoIIIIIUAA666666699999ZZZZZZZZZZZZZZZZZZZZ6ov.
34 #
35 # !!! ATTENTION !!!
36 # DO NOT EDIT THIS FILE! THIS FILE CONTAINS THE DEFAULT VALUES FOR THE CON-
37 # FIGURATION! EDIT YOUR SECRET FILE (either prod.secret.exs, dev.secret.exs).
38 #
39 # This file is responsible for configuring your application
40 # and its dependencies with the aid of the Mix.Config module.
41 #
42 # This configuration file is loaded before any dependency and
43 # is restricted to this project.
44 use Mix.Config
45
46 # General application configuration
47 config :pleroma, ecto_repos: [Pleroma.Repo]
48
49 config :pleroma, Pleroma.Repo,
50 types: Pleroma.PostgresTypes,
51 telemetry_event: [Pleroma.Repo.Instrumenter],
52 migration_lock: nil
53
54 scheduled_jobs =
55 with digest_config <- Application.get_env(:pleroma, :email_notifications)[:digest],
56 true <- digest_config[:active] do
57 [{digest_config[:schedule], {Pleroma.Daemons.DigestEmailDaemon, :perform, []}}]
58 else
59 _ -> []
60 end
61
62 config :pleroma, Pleroma.Scheduler,
63 global: true,
64 overlap: true,
65 timezone: :utc,
66 jobs: scheduled_jobs
67
68 config :pleroma, Pleroma.Captcha,
69 enabled: true,
70 seconds_valid: 60,
71 method: Pleroma.Captcha.Native
72
73 config :pleroma, :hackney_pools,
74 federation: [
75 max_connections: 50,
76 timeout: 150_000
77 ],
78 media: [
79 max_connections: 50,
80 timeout: 150_000
81 ],
82 upload: [
83 max_connections: 25,
84 timeout: 300_000
85 ]
86
87 # Upload configuration
88 config :pleroma, Pleroma.Upload,
89 uploader: Pleroma.Uploaders.Local,
90 filters: [Pleroma.Upload.Filter.Dedupe],
91 link_name: false,
92 proxy_remote: false,
93 proxy_opts: [
94 redirect_on_failure: false,
95 max_body_length: 25 * 1_048_576,
96 http: [
97 follow_redirect: true,
98 pool: :upload
99 ]
100 ]
101
102 config :pleroma, Pleroma.Uploaders.Local, uploads: "uploads"
103
104 config :pleroma, Pleroma.Uploaders.S3,
105 bucket: nil,
106 streaming_enabled: true,
107 public_endpoint: "https://s3.amazonaws.com"
108
109 config :pleroma, Pleroma.Uploaders.MDII,
110 cgi: "https://mdii.sakura.ne.jp/mdii-post.cgi",
111 files: "https://mdii.sakura.ne.jp"
112
113 config :pleroma, :emoji,
114 shortcode_globs: ["/emoji/custom/**/*.png"],
115 pack_extensions: [".png", ".gif"],
116 groups: [
117 # Put groups that have higher priority than defaults here. Example in `docs/config/custom_emoji.md`
118 Custom: ["/emoji/*.png", "/emoji/**/*.png"]
119 ],
120 default_manifest: "https://git.pleroma.social/pleroma/emoji-index/raw/master/index.json",
121 shared_pack_cache_seconds_per_file: 60
122
123 config :pleroma, :uri_schemes,
124 valid_schemes: [
125 "https",
126 "http",
127 "dat",
128 "dweb",
129 "gopher",
130 "ipfs",
131 "ipns",
132 "irc",
133 "ircs",
134 "magnet",
135 "mailto",
136 "mumble",
137 "ssb",
138 "xmpp"
139 ]
140
141 websocket_config = [
142 path: "/websocket",
143 serializer: [
144 {Phoenix.Socket.V1.JSONSerializer, "~> 1.0.0"},
145 {Phoenix.Socket.V2.JSONSerializer, "~> 2.0.0"}
146 ],
147 timeout: 60_000,
148 transport_log: false,
149 compress: false
150 ]
151
152 # Configures the endpoint
153 config :pleroma, Pleroma.Web.Endpoint,
154 instrumenters: [Pleroma.Web.Endpoint.Instrumenter],
155 url: [host: "localhost"],
156 http: [
157 ip: {127, 0, 0, 1},
158 dispatch: [
159 {:_,
160 [
161 {"/api/v1/streaming", Pleroma.Web.MastodonAPI.WebsocketHandler, []},
162 {"/websocket", Phoenix.Endpoint.CowboyWebSocket,
163 {Phoenix.Transports.WebSocket,
164 {Pleroma.Web.Endpoint, Pleroma.Web.UserSocket, websocket_config}}},
165 {:_, Phoenix.Endpoint.Cowboy2Handler, {Pleroma.Web.Endpoint, []}}
166 ]}
167 ]
168 ],
169 protocol: "https",
170 secret_key_base: "aK4Abxf29xU9TTDKre9coZPUgevcVCFQJe/5xP/7Lt4BEif6idBIbjupVbOrbKxl",
171 signing_salt: "CqaoopA2",
172 render_errors: [view: Pleroma.Web.ErrorView, accepts: ~w(json)],
173 pubsub: [name: Pleroma.PubSub, adapter: Phoenix.PubSub.PG2],
174 secure_cookie_flag: true,
175 extra_cookie_attrs: [
176 "SameSite=Lax"
177 ]
178
179 # Configures Elixir's Logger
180 config :logger, :console,
181 level: :debug,
182 format: "\n$time $metadata[$level] $message\n",
183 metadata: [:request_id]
184
185 config :logger, :ex_syslogger,
186 level: :debug,
187 ident: "pleroma",
188 format: "$metadata[$level] $message",
189 metadata: [:request_id]
190
191 config :quack,
192 level: :warn,
193 meta: [:all],
194 webhook_url: "https://hooks.slack.com/services/YOUR-KEY-HERE"
195
196 config :mime, :types, %{
197 "application/xml" => ["xml"],
198 "application/xrd+xml" => ["xrd+xml"],
199 "application/jrd+json" => ["jrd+json"],
200 "application/activity+json" => ["activity+json"],
201 "application/ld+json" => ["activity+json"]
202 }
203
204 config :tesla, adapter: Tesla.Adapter.Hackney
205
206 # Configures http settings, upstream proxy etc.
207 config :pleroma, :http,
208 proxy_url: nil,
209 send_user_agent: true,
210 user_agent: :default,
211 adapter: [
212 ssl_options: [
213 # Workaround for remote server certificate chain issues
214 partial_chain: &:hackney_connect.partial_chain/1,
215 # We don't support TLS v1.3 yet
216 versions: [:tlsv1, :"tlsv1.1", :"tlsv1.2"]
217 ]
218 ]
219
220 config :pleroma, :instance,
221 name: "Pleroma",
222 email: "example@example.com",
223 notify_email: "noreply@example.com",
224 description: "A Pleroma instance, an alternative fediverse server",
225 limit: 5_000,
226 chat_limit: 5_000,
227 remote_limit: 100_000,
228 upload_limit: 16_000_000,
229 avatar_upload_limit: 2_000_000,
230 background_upload_limit: 4_000_000,
231 banner_upload_limit: 4_000_000,
232 poll_limits: %{
233 max_options: 20,
234 max_option_chars: 200,
235 min_expiration: 0,
236 max_expiration: 365 * 24 * 60 * 60
237 },
238 registrations_open: true,
239 federating: true,
240 federation_incoming_replies_max_depth: 100,
241 federation_reachability_timeout_days: 7,
242 federation_publisher_modules: [
243 Pleroma.Web.ActivityPub.Publisher
244 ],
245 allow_relay: true,
246 rewrite_policy: Pleroma.Web.ActivityPub.MRF.NoOpPolicy,
247 public: true,
248 quarantined_instances: [],
249 managed_config: true,
250 static_dir: "instance/static/",
251 allowed_post_formats: [
252 "text/plain",
253 "text/html",
254 "text/markdown",
255 "text/bbcode"
256 ],
257 mrf_transparency: true,
258 mrf_transparency_exclusions: [],
259 autofollowed_nicknames: [],
260 max_pinned_statuses: 1,
261 no_attachment_links: true,
262 welcome_user_nickname: nil,
263 welcome_message: nil,
264 max_report_comment_size: 1000,
265 safe_dm_mentions: false,
266 healthcheck: false,
267 remote_post_retention_days: 90,
268 skip_thread_containment: true,
269 limit_to_local_content: :unauthenticated,
270 dynamic_configuration: false,
271 user_bio_length: 5000,
272 user_name_length: 100,
273 max_account_fields: 10,
274 max_remote_account_fields: 20,
275 account_field_name_length: 512,
276 account_field_value_length: 2048,
277 external_user_synchronization: true,
278 extended_nickname_format: true
279
280 config :pleroma, :feed,
281 post_title: %{
282 max_length: 100,
283 omission: "..."
284 }
285
286 config :pleroma, :markup,
287 # XXX - unfortunately, inline images must be enabled by default right now, because
288 # of custom emoji. Issue #275 discusses defanging that somehow.
289 allow_inline_images: true,
290 allow_headings: false,
291 allow_tables: false,
292 allow_fonts: false,
293 scrub_policy: [
294 Pleroma.HTML.Scrubber.Default,
295 Pleroma.HTML.Transform.MediaProxy
296 ]
297
298 config :pleroma, :frontend_configurations,
299 pleroma_fe: %{
300 theme: "pleroma-dark",
301 logo: "/static/logo.png",
302 background: "/images/city.jpg",
303 redirectRootNoLogin: "/main/all",
304 redirectRootLogin: "/main/friends",
305 showInstanceSpecificPanel: true,
306 scopeOptionsEnabled: false,
307 formattingOptionsEnabled: false,
308 collapseMessageWithSubject: false,
309 hidePostStats: false,
310 hideUserStats: false,
311 scopeCopy: true,
312 subjectLineBehavior: "email",
313 alwaysShowSubjectInput: true
314 },
315 masto_fe: %{
316 showInstanceSpecificPanel: true
317 }
318
319 config :pleroma, :assets,
320 mascots: [
321 pleroma_fox_tan: %{
322 url: "/images/pleroma-fox-tan-smol.png",
323 mime_type: "image/png"
324 },
325 pleroma_fox_tan_shy: %{
326 url: "/images/pleroma-fox-tan-shy.png",
327 mime_type: "image/png"
328 }
329 ],
330 default_mascot: :pleroma_fox_tan
331
332 config :pleroma, :manifest,
333 icons: [
334 %{
335 src: "/static/logo.png",
336 type: "image/png"
337 }
338 ],
339 theme_color: "#282c37",
340 background_color: "#191b22"
341
342 config :pleroma, :activitypub,
343 unfollow_blocked: true,
344 outgoing_blocks: true,
345 follow_handshake_timeout: 500,
346 sign_object_fetches: true
347
348 config :pleroma, :streamer,
349 workers: 3,
350 overflow_workers: 2
351
352 config :pleroma, :user, deny_follow_blocked: true
353
354 config :pleroma, :mrf_normalize_markup, scrub_policy: Pleroma.HTML.Scrubber.Default
355
356 config :pleroma, :mrf_rejectnonpublic,
357 allow_followersonly: false,
358 allow_direct: false
359
360 config :pleroma, :mrf_hellthread,
361 delist_threshold: 10,
362 reject_threshold: 20
363
364 config :pleroma, :mrf_simple,
365 media_removal: [],
366 media_nsfw: [],
367 federated_timeline_removal: [],
368 report_removal: [],
369 reject: [],
370 accept: [],
371 avatar_removal: [],
372 banner_removal: []
373
374 config :pleroma, :mrf_keyword,
375 reject: [],
376 federated_timeline_removal: [],
377 replace: []
378
379 config :pleroma, :mrf_subchain, match_actor: %{}
380
381 config :pleroma, :mrf_vocabulary,
382 accept: [],
383 reject: []
384
385 config :pleroma, :mrf_object_age,
386 threshold: 172_800,
387 actions: [:delist, :strip_followers]
388
389 config :pleroma, :rich_media,
390 enabled: true,
391 ignore_hosts: [],
392 ignore_tld: ["local", "localdomain", "lan"],
393 parsers: [
394 Pleroma.Web.RichMedia.Parsers.TwitterCard,
395 Pleroma.Web.RichMedia.Parsers.OGP,
396 Pleroma.Web.RichMedia.Parsers.OEmbed
397 ],
398 ttl_setters: [Pleroma.Web.RichMedia.Parser.TTL.AwsSignedUrl]
399
400 config :pleroma, :media_proxy,
401 enabled: false,
402 proxy_opts: [
403 redirect_on_failure: false,
404 max_body_length: 25 * 1_048_576,
405 http: [
406 follow_redirect: true,
407 pool: :media
408 ]
409 ],
410 whitelist: []
411
412 config :pleroma, :chat, enabled: true
413
414 config :phoenix, :format_encoders, json: Jason
415
416 config :phoenix, :json_library, Jason
417
418 config :pleroma, :gopher,
419 enabled: false,
420 ip: {0, 0, 0, 0},
421 port: 9999
422
423 config :pleroma, Pleroma.Web.Metadata,
424 providers: [
425 Pleroma.Web.Metadata.Providers.OpenGraph,
426 Pleroma.Web.Metadata.Providers.TwitterCard,
427 Pleroma.Web.Metadata.Providers.RelMe,
428 Pleroma.Web.Metadata.Providers.Feed
429 ],
430 unfurl_nsfw: false
431
432 config :pleroma, :suggestions,
433 enabled: false,
434 third_party_engine:
435 "http://vinayaka.distsn.org/cgi-bin/vinayaka-user-match-suggestions-api.cgi?{{host}}+{{user}}",
436 timeout: 300_000,
437 limit: 40,
438 web: "https://vinayaka.distsn.org"
439
440 config :pleroma, :http_security,
441 enabled: true,
442 sts: false,
443 sts_max_age: 31_536_000,
444 ct_max_age: 2_592_000,
445 referrer_policy: "same-origin"
446
447 config :cors_plug,
448 max_age: 86_400,
449 methods: ["POST", "PUT", "DELETE", "GET", "PATCH", "OPTIONS"],
450 expose: [
451 "Link",
452 "X-RateLimit-Reset",
453 "X-RateLimit-Limit",
454 "X-RateLimit-Remaining",
455 "X-Request-Id",
456 "Idempotency-Key"
457 ],
458 credentials: true,
459 headers: ["Authorization", "Content-Type", "Idempotency-Key"]
460
461 config :pleroma, Pleroma.User,
462 restricted_nicknames: [
463 ".well-known",
464 "~",
465 "about",
466 "activities",
467 "api",
468 "auth",
469 "check_password",
470 "dev",
471 "friend-requests",
472 "inbox",
473 "internal",
474 "main",
475 "media",
476 "nodeinfo",
477 "notice",
478 "oauth",
479 "objects",
480 "ostatus_subscribe",
481 "pleroma",
482 "proxy",
483 "push",
484 "registration",
485 "relay",
486 "settings",
487 "status",
488 "tag",
489 "user-search",
490 "user_exists",
491 "users",
492 "web"
493 ]
494
495 config :pleroma, Oban,
496 repo: Pleroma.Repo,
497 verbose: false,
498 prune: {:maxlen, 1500},
499 queues: [
500 activity_expiration: 10,
501 federator_incoming: 50,
502 federator_outgoing: 50,
503 web_push: 50,
504 mailer: 10,
505 transmogrifier: 20,
506 scheduled_activities: 10,
507 background: 5
508 ]
509
510 config :pleroma, :workers,
511 retries: [
512 federator_incoming: 5,
513 federator_outgoing: 5
514 ]
515
516 config :pleroma, :fetch_initial_posts,
517 enabled: false,
518 pages: 5
519
520 config :auto_linker,
521 opts: [
522 scheme: true,
523 extra: true,
524 # TODO: Set to :no_scheme when it works properly
525 validate_tld: true,
526 class: false,
527 strip_prefix: false,
528 new_window: false,
529 rel: "ugc"
530 ]
531
532 config :pleroma, :ldap,
533 enabled: System.get_env("LDAP_ENABLED") == "true",
534 host: System.get_env("LDAP_HOST") || "localhost",
535 port: String.to_integer(System.get_env("LDAP_PORT") || "389"),
536 ssl: System.get_env("LDAP_SSL") == "true",
537 sslopts: [],
538 tls: System.get_env("LDAP_TLS") == "true",
539 tlsopts: [],
540 base: System.get_env("LDAP_BASE") || "dc=example,dc=com",
541 uid: System.get_env("LDAP_UID") || "cn"
542
543 config :esshd,
544 enabled: false
545
546 oauth_consumer_strategies =
547 System.get_env("OAUTH_CONSUMER_STRATEGIES")
548 |> to_string()
549 |> String.split()
550 |> Enum.map(&hd(String.split(&1, ":")))
551
552 ueberauth_providers =
553 for strategy <- oauth_consumer_strategies do
554 strategy_module_name = "Elixir.Ueberauth.Strategy.#{String.capitalize(strategy)}"
555 strategy_module = String.to_atom(strategy_module_name)
556 {String.to_atom(strategy), {strategy_module, [callback_params: ["state"]]}}
557 end
558
559 config :ueberauth,
560 Ueberauth,
561 base_path: "/oauth",
562 providers: ueberauth_providers
563
564 config :pleroma,
565 :auth,
566 enforce_oauth_admin_scope_usage: false,
567 oauth_consumer_strategies: oauth_consumer_strategies
568
569 config :pleroma, Pleroma.Emails.Mailer, adapter: Swoosh.Adapters.Sendmail, enabled: false
570
571 config :pleroma, Pleroma.Emails.UserEmail,
572 logo: nil,
573 styling: %{
574 link_color: "#d8a070",
575 background_color: "#2C3645",
576 content_background_color: "#1B2635",
577 header_color: "#d8a070",
578 text_color: "#b9b9ba",
579 text_muted_color: "#b9b9ba"
580 }
581
582 config :prometheus, Pleroma.Web.Endpoint.MetricsExporter, path: "/api/pleroma/app_metrics"
583
584 config :pleroma, Pleroma.ScheduledActivity,
585 daily_user_limit: 25,
586 total_user_limit: 300,
587 enabled: true
588
589 config :pleroma, :email_notifications,
590 digest: %{
591 active: false,
592 schedule: "0 0 * * 0",
593 interval: 7,
594 inactivity_threshold: 7
595 }
596
597 config :pleroma, :oauth2,
598 token_expires_in: 600,
599 issue_new_refresh_token: true,
600 clean_expired_tokens: false,
601 clean_expired_tokens_interval: 86_400_000
602
603 config :pleroma, :database, rum_enabled: false
604
605 config :pleroma, :env, Mix.env()
606
607 config :http_signatures,
608 adapter: Pleroma.Signature
609
610 config :pleroma, :rate_limit, authentication: {60_000, 15}
611
612 config :pleroma, Pleroma.ActivityExpiration, enabled: true
613
614 config :pleroma, Pleroma.Plugs.RemoteIp, enabled: false
615
616 config :pleroma, :static_fe, enabled: false
617
618 config :pleroma, :web_cache_ttl,
619 activity_pub: nil,
620 activity_pub_question: 30_000
621
622 config :swarm, node_blacklist: [~r/myhtml_.*$/]
623 # Import environment specific config. This must remain at the bottom
624 # of this file so it overrides the configuration defined above.
625 import_config "#{Mix.env()}.exs"