New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Fix Uploads world readable #4387
Changes from all commits
File filter
Filter by extension
Conversations
Jump to
Diff view
Diff view
There are no files selected for viewing
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -1,2 +1,2 @@ | ||
ZULIP_VERSION = "1.5.1+git" | ||
PROVISION_VERSION = '5.0' | ||
PROVISION_VERSION = '5.01' |
Original file line number | Diff line number | Diff line change |
---|---|---|
|
@@ -171,21 +171,20 @@ | |
# directly on the Zulip server. If file storage in Amazon S3 is | ||
# desired, you can configure that as follows: | ||
# | ||
# (1) Set s3_key and s3_secret_key in /etc/zulip/zulip-secrets.conf to | ||
# Set s3_key and s3_secret_key in /etc/zulip/zulip-secrets.conf to | ||
# be the S3 access and secret keys that you want to use, and setting | ||
# the S3_AUTH_UPLOADS_BUCKET and S3_AVATAR_BUCKET to be the S3 buckets | ||
# you've created to store file uploads and user avatars, respectively. | ||
# Then restart Zulip (scripts/restart-zulip). | ||
There was a problem hiding this comment. Choose a reason for hiding this commentThe reason will be displayed to describe this comment to others. Learn more. We should document here, in the instructions, that they need to set There was a problem hiding this comment. Choose a reason for hiding this commentThe reason will be displayed to describe this comment to others. Learn more. I guess line 178 should be fine for that? |
||
# | ||
# (2) Edit /etc/nginx/sites-available/zulip-enterprise to comment out | ||
# the nginx configuration for /user_uploads and /user_avatars (see | ||
# https://github.com/zulip/zulip/issues/291 for discussion of a better | ||
# solution that won't be automatically reverted by the Zulip upgrade | ||
# script), and then restart nginx. | ||
LOCAL_UPLOADS_DIR = "/home/zulip/uploads" | ||
#S3_AUTH_UPLOADS_BUCKET = "" | ||
#S3_AVATAR_BUCKET = "" | ||
|
||
# Setup the version of NGINX which is being used for this installation. | ||
# By default a NGINX version is automatically detected from system but it could also be | ||
# specified here optionally. | ||
# NGINX_VERSION = '1.4.6' | ||
|
||
# Maximum allowed size of uploaded files, in megabytes. DO NOT SET | ||
# ABOVE 80MB. The file upload implementation doesn't support chunked | ||
# uploads, so browsers will crash if you try uploading larger files. | ||
|
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Shouldn't we be passing something based on NGINX_VERSION here? Or is NGINX_VERSION just checked in the
sendfile
code? I guess that makes sense.There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
NGINX_VERSION is checked in
sendfile
.sendfile
automatically picks it from django settings.