[%# The contents of this file are subject to the Mozilla Public # License Version 1.1 (the "License"); you may not use this file # except in compliance with the License. You may obtain a copy of # the License at http://www.mozilla.org/MPL/ # # Software distributed under the License is distributed on an "AS # IS" basis, WITHOUT WARRANTY OF ANY KIND, either express or # implied. See the License for the specific language governing # rights and limitations under the License. # # The Original Code is the Bugzilla Bug Tracking System. # # The Initial Developer of the Original Code is Netscape Communications # Corporation. Portions created by Netscape are # Copyright (C) 1998 Netscape Communications Corporation. All # Rights Reserved. # # Contributor(s): Dave Miller # Frédéric Buclin #%] [% title = "Advanced" desc = "Settings for advanced configurations." %] [% sts_desc = BLOCK %] Enables the sending of the Strict-Transport-Security header along with HTTP responses on SSL connections. This adds greater security to your SSL connections by forcing the browser to always access your domain over SSL and never accept an invalid certificate. However, it should only be used if you have the ssl_redirect parameter turned on, [% terms.Bugzilla %] is the only thing running on its domain (i.e., your urlbase is something like http://bugzilla.example.com/), and you never plan to disable the ssl_redirect parameter. [% END %] [% param_descs = { cookiedomain => "If your website is at 'www.foo.com', setting this to" _ " '.foo.com' will also allow 'bar.foo.com' to access" _ " $terms.Bugzilla cookies. This is useful if you have more than" _ " one hostname pointing at the same web server, and you" _ " want them to share the $terms.Bugzilla cookie.", inbound_proxies => "When inbound traffic to $terms.Bugzilla goes through a proxy," _ " $terms.Bugzilla thinks that the IP address of every single" _ " user is the IP address of the proxy. If you enter a comma-separated" _ " list of IPs in this parameter, then $terms.Bugzilla will trust any" _ " X-Forwarded-For header sent from those IPs," _ " and use the value of that header as the end user's IP address.", proxy_url => "$terms.Bugzilla may have to access the web to get notifications about" _ " new releases (see the upgrade_notification parameter)." _ " If your $terms.Bugzilla server is behind a proxy, it may be" _ " necessary to enter its URL if the web server cannot access the" _ " HTTP_PROXY environment variable. If you have to authenticate," _ " use the http://user:pass@proxy_url/ syntax.", strict_transport_security => sts_desc, disable_bug_updates => "When enabled, all updates to $terms.bugs will be blocked.", sentry_uri => "When set, important errors and warnings will be sent to the" _ " specified Sentry server. Enter the full API KEY URL." _ " eg https://01234567890123456780123456780123:01234567890123456780123456780123@errormill.mozilla.org/10.", metrics_enabled => "Collect metrics for reporting to ElasticSearch", metrics_user_ids => "Comma separated list of user_id's which trigger data collection and reporting." _ " eg 3881,5038,5898,13647,20209,251051,373476,409787.", metrics_elasticsearch_server => "Metrics ElasticSearch server and port. eg 127.0.0.1:9200", metrics_elasticsearch_index => "Metrics ElasticSearch index. eg bmo-metrics", metrics_elasticsearch_type => "Metrics ElasticSearch type. eg timings", metrics_elasticsearch_ttl => "The time to live for data in the ElasticSearch cluster, in milliseconds. eg 1210000000", } %]