-
Notifications
You must be signed in to change notification settings - Fork 5
Expand file tree
/
Copy pathlocal.ini
More file actions
38 lines (31 loc) · 1.4 KB
/
local.ini
File metadata and controls
38 lines (31 loc) · 1.4 KB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
[httpd]
enable_cors = true
[cors]
origins = *
credentials = true
[csp]
attachments_enable = true
; https://docs.couchdb.org/en/stable/cve/2021-38295.html
; use nginx instead to allow only signed couchapps when on deployed server
; " quotes are in the csp and need to be removed
attachments_header_value = "child-src 'self' data: blob:; default-src 'self'; connect-src 'self' https://corpusdev.example.com https://localhost:3183 https://www.google-analytics.com; img-src 'self' data: https://secure.gravatar.com; font-src 'self' https://themes.googleusercontent.com; script-src 'self' https://localhost:6984 'unsafe-eval' https://www.google-analytics.com; style-src 'self' 'unsafe-inline';"
[couchdb]
single_node=true
[admins]
; by default for devs we use admin:none to simulate a non-admin party server:
admin = -pbkdf2-3f04b4318f9a5b3c20ff99fa9194744d0cffa603,e5fbfb69d2a5db31325d23462c43c7ea,10
[replicator]
auth_plugins = couch_replicator_auth_noop
[daemons]
; enable SSL support by uncommenting the following line and supply the PEM's below.
; the default ssl port CouchDB listens on is 6984
httpsd = {couch_httpd, start_link, [https]}
[ssl]
enable = true
; secure_renegotiate = undefined
cert_file = /opt/couchdb/etc/fielddb_debug.crt
key_file = /opt/couchdb/etc/fielddb_debug.key
; set to true to validate peer certificates
verify_ssl_certificates = false
; maximum peer certificate depth
ssl_certificate_max_depth = 1