This commit adds settings for the `storage_options` setting used to
configure AWS server side encryption. Note that only SSE-KMS
(https://docs.aws.amazon.com/kms/latest/developerguide/services-s3.html#sse)
is supported; SSE-C is not.

Related merge requests:

1. https://gitlab.com/gitlab-org/gitlab/-/merge_requests/38240
2. https://gitlab.com/gitlab-org/gitlab-workhorse/-/merge_requests/537

Ian Baum authored 4 years ago and Balasankar C committed 4 years ago

* Matching behavior in rails codebase
* This will be default behavior in 4.0

Cron job introduced in
https://gitlab.com/gitlab-org/gitlab/-/merge_requests/38086

This adds support for the gitlab.yml changes in
https://gitlab.com/gitlab-org/gitlab/-/merge_requests/34460. This allows
GitLab to use the Workhorse S3 client with a single credential, enabling
proper MD5 checksums and multipart uploads, and paves the way for
user-specified keys for encrypted buckets.

These changes require
https://gitlab.com/gitlab-org/gitlab/-/merge_requests/35480 to work.

Ian Baum authored 4 years ago and DJ Mountney committed 4 years ago

runit_service[sidekiq]

It looks like LWRP resources aren't added to the list at compile time,
so there isn't any runit_service[sidekiq] when notifications are being
setup

Ian Baum authored 4 years ago and DJ Mountney committed 4 years ago

* Curently on 14, which was set to end of life at on April 30, 2020.
* Adds chef-bin gem
* Automatically accept the chef license EULA
* Update chef libraries in Gemfile to newer versions
* Update trigger jobs to use ruby 2.6 image

Balasankar C authored 4 years ago and DJ Mountney committed 4 years ago

Signed-off-by: Balasankar "Balu" C <balasankarc@autistici.org>

Signed-off-by: Balasankar "Balu" C <balasankarc@autistici.org>

Balasankar C authored 4 years ago and DJ Mountney committed 4 years ago

Signed-off-by: Balasankar "Balu" C <balasankarc@autistici.org>

Jan Provaznik authored 4 years ago and Balasankar C committed 4 years ago

When enabled it allows to fetch incoming service desk emails
from a dedicated email address.

Diego Louzán authored 4 years ago and DJ Mountney committed 4 years ago

Related https://gitlab.com/gitlab-org/gitlab/-/merge_requests/29352

Defaults to the same default Redis instance but also allows specifying
a separate Redis instance

Gerard Hickey authored 4 years ago and Balasankar C committed 4 years ago

If gitlab_rails['db_statement_timeout'] is set by the user, then it
will pick up its value from postgresql['statement_timeout'].

Signed-off-by: Balasankar "Balu" C <balasankarc@autistici.org>

Signed-off-by: Balasankar "Balu" C <balasankarc@autistici.org>

This make sure that worker timeouts configured as a string don't break
the request duration calculation

The application reads `Settings.gitlab.max_request_duration_seconds`

This option lets the rails app know how much time it has to process a
request. And make decisions accordingly.

By default the time is 90% of the timeout configured for the
worker. This gives us some time during the request to clean up if we
need to.

Setting a duration higher than the worker timeout will raise an error.

Charlie Ablett authored 5 years ago and Balasankar C committed 5 years ago

- Add structured logging file name
- Attempt at test

Introduce `gitlab_rails['rack_attack_admin_area_protected_paths']` to
manage this GitLab Rails config setting:

`Gitlab.config.rack_attack.admin_area_protected_paths`

This moves the `exporter_blackout_seconds`
to `shutdown_blackout_seconds`.

This is aligned with:
https://gitlab.com/gitlab-org/gitlab/merge_requests/19441

that will be used by Pages to talk to the GitLab internal API.

Related to https://gitlab.com/gitlab-org/gitlab/issues/28781.

Jason Goodman authored 5 years ago and Balasankar C committed 5 years ago

Add spec for default value of unleash enabled variable

Kamil Trzciński authored 5 years ago and DJ Mountney committed 5 years ago

This makes Puma and Unicorn exclusive.
Allow to only use one, and properly
shutdown another service before reconfigure.