2018-01-15 09:43:07 +08:00
|
|
|
|
# frozen_string_literal: true
|
|
|
|
|
|
2023-04-04 17:04:59 +08:00
|
|
|
|
if Gem::Version.new(RUBY_VERSION) < Gem::Version.new("3.2.0")
|
|
|
|
|
STDERR.puts "Discourse requires Ruby 3.2 or above"
|
2018-05-22 07:21:47 +08:00
|
|
|
|
exit 1
|
|
|
|
|
end
|
|
|
|
|
|
2013-02-06 03:16:51 +08:00
|
|
|
|
require File.expand_path("../boot", __FILE__)
|
2019-02-06 14:45:48 +08:00
|
|
|
|
require "active_record/railtie"
|
|
|
|
|
require "action_controller/railtie"
|
|
|
|
|
require "action_view/railtie"
|
|
|
|
|
require "action_mailer/railtie"
|
|
|
|
|
require "sprockets/railtie"
|
2020-06-15 15:56:57 +08:00
|
|
|
|
|
2022-12-28 18:09:15 +08:00
|
|
|
|
if !Rails.env.production?
|
|
|
|
|
recommended = File.read(".ruby-version.sample").strip
|
|
|
|
|
if Gem::Version.new(RUBY_VERSION) < Gem::Version.new(recommended)
|
|
|
|
|
STDERR.puts "[Warning] Discourse recommends developing using Ruby v#{recommended} or above. You are using v#{RUBY_VERSION}."
|
|
|
|
|
end
|
|
|
|
|
end
|
|
|
|
|
|
2013-02-06 03:16:51 +08:00
|
|
|
|
# Plugin related stuff
|
2022-03-21 22:28:52 +08:00
|
|
|
|
require_relative "../lib/plugin"
|
2014-07-23 07:02:22 +08:00
|
|
|
|
require_relative "../lib/discourse_event"
|
2013-05-02 05:10:51 +08:00
|
|
|
|
require_relative "../lib/discourse_plugin_registry"
|
2013-02-06 03:16:51 +08:00
|
|
|
|
|
2017-01-10 06:10:14 +08:00
|
|
|
|
require_relative "../lib/plugin_gem"
|
|
|
|
|
|
2013-12-20 13:17:21 +08:00
|
|
|
|
# Global config
|
|
|
|
|
require_relative "../app/models/global_setting"
|
2017-01-10 06:10:14 +08:00
|
|
|
|
GlobalSetting.configure!
|
2022-01-11 20:30:22 +08:00
|
|
|
|
if GlobalSetting.load_plugins?
|
2022-03-21 22:28:52 +08:00
|
|
|
|
# Support for plugins to register custom setting providers. They can do this
|
|
|
|
|
# by having a file, `register_provider.rb` in their root that will be run
|
|
|
|
|
# at this point.
|
|
|
|
|
|
|
|
|
|
Dir.glob(File.join(File.dirname(__FILE__), "../plugins", "*", "register_provider.rb")) do |p|
|
|
|
|
|
require p
|
|
|
|
|
end
|
2017-01-10 06:10:14 +08:00
|
|
|
|
end
|
|
|
|
|
GlobalSetting.load_defaults
|
2020-03-06 04:37:49 +08:00
|
|
|
|
if GlobalSetting.try(:cdn_url).present? && GlobalSetting.cdn_url !~ %r{^https?://}
|
|
|
|
|
STDERR.puts "WARNING: Your CDN URL does not begin with a protocol like `https://` - this is probably not going to work"
|
|
|
|
|
end
|
2013-12-20 13:17:21 +08:00
|
|
|
|
|
2019-06-13 10:58:27 +08:00
|
|
|
|
if ENV["SKIP_DB_AND_REDIS"] == "1"
|
|
|
|
|
GlobalSetting.skip_db = true
|
|
|
|
|
GlobalSetting.skip_redis = true
|
|
|
|
|
end
|
|
|
|
|
|
2020-06-15 16:02:30 +08:00
|
|
|
|
require "rails_failover/active_record" if !GlobalSetting.skip_db?
|
|
|
|
|
|
2020-06-15 16:04:41 +08:00
|
|
|
|
require "rails_failover/redis" if !GlobalSetting.skip_redis?
|
2020-06-15 16:02:30 +08:00
|
|
|
|
|
2014-08-18 14:42:48 +08:00
|
|
|
|
require "pry-rails" if Rails.env.development?
|
2022-11-10 07:58:39 +08:00
|
|
|
|
require "pry-byebug" if Rails.env.development?
|
2014-05-26 17:46:57 +08:00
|
|
|
|
|
2020-08-31 18:14:09 +08:00
|
|
|
|
require "discourse_fonts"
|
|
|
|
|
|
DEV: Allow Ember CLI assets to be used by development Rails app (#16511)
Previously, accessing the Rails app directly in development mode would give you assets from our 'legacy' Ember asset pipeline. The only way to run with Ember CLI assets was to run ember-cli as a proxy. This was quite limiting when working on things which are bypassed when using the ember-cli proxy (e.g. changes to `application.html.erb`). Also, since `ember-auto-import` introduced chunking, visiting `/theme-qunit` under Ember CLI was failing to include all necessary chunks.
This commit teaches Sprockets about our Ember CLI assets so that they can be used in development mode, and are automatically collected up under `/public/assets` during `assets:precompile`. As a bonus, this allows us to remove all the custom manifest modification from `assets:precompile`.
The key changes are:
- Introduce a shared `EmberCli.enabled?` helper
- When ember-cli is enabled, add ember-cli `/dist/assets` as the top-priority Rails asset directory
- Have ember-cli output a `chunks.json` manifest, and teach `preload_script` to read it and append the correct chunks to their associated `afterFile`
- Remove most custom ember-cli logic from the `assets:precompile` step. Instead, rely on Rails to take care of pulling the 'precompiled' assets into the `public/assets` directory. Move the 'renaming' logic to runtime, so it can be used in development mode as well.
- Remove fingerprinting from `ember-cli-build`, and allow Rails to take care of things
Long-term, we may want to replace Sprockets with the lighter-weight Propshaft. The changes made in this commit have been made with that long-term goal in mind.
tldr: when you visit the rails app directly, you'll now be served the current ember-cli assets. To keep these up-to-date make sure either `ember serve`, or `ember build --watch` is running. If you really want to load the old non-ember-cli assets, then you should start the server with `EMBER_CLI_PROD_ASSETS=0`. (the legacy asset pipeline will be removed very soon)
2022-04-21 23:26:34 +08:00
|
|
|
|
require_relative "../lib/ember_cli"
|
|
|
|
|
|
2019-05-02 13:24:30 +08:00
|
|
|
|
if defined?(Bundler)
|
|
|
|
|
bundler_groups = [:default]
|
|
|
|
|
|
|
|
|
|
if !Rails.env.production?
|
|
|
|
|
bundler_groups = bundler_groups.concat(Rails.groups(assets: %w[development test profile]))
|
|
|
|
|
end
|
|
|
|
|
|
|
|
|
|
Bundler.require(*bundler_groups)
|
2014-01-14 13:59:55 +08:00
|
|
|
|
end
|
|
|
|
|
|
2022-03-29 13:38:42 +08:00
|
|
|
|
require_relative "../lib/require_dependency_backward_compatibility"
|
|
|
|
|
|
2013-02-06 03:16:51 +08:00
|
|
|
|
module Discourse
|
|
|
|
|
class Application < Rails::Application
|
2014-05-14 08:20:23 +08:00
|
|
|
|
def config.database_configuration
|
2014-08-18 14:42:48 +08:00
|
|
|
|
if Rails.env.production?
|
2014-05-14 08:20:23 +08:00
|
|
|
|
GlobalSetting.database_config
|
|
|
|
|
else
|
|
|
|
|
super
|
|
|
|
|
end
|
|
|
|
|
end
|
2013-02-06 03:16:51 +08:00
|
|
|
|
# Settings in config/environments/* take precedence over those specified here.
|
|
|
|
|
# Application configuration should go into files in config/initializers
|
|
|
|
|
# -- all .rb files in that directory are automatically loaded.
|
|
|
|
|
|
2022-03-21 22:28:52 +08:00
|
|
|
|
require "discourse"
|
|
|
|
|
require "js_locale_helper"
|
2013-02-06 03:16:51 +08:00
|
|
|
|
|
2018-11-08 13:12:18 +08:00
|
|
|
|
# tiny file needed by site settings
|
2022-03-21 22:28:52 +08:00
|
|
|
|
require "highlight_js"
|
2015-03-13 13:15:13 +08:00
|
|
|
|
|
2024-08-19 20:44:17 +08:00
|
|
|
|
config.load_defaults 7.2
|
|
|
|
|
config.yjit = GlobalSetting.yjit_enabled
|
2022-05-19 22:58:31 +08:00
|
|
|
|
config.active_record.cache_versioning = false # our custom cache class doesn’t support this
|
|
|
|
|
config.action_controller.forgery_protection_origin_check = false
|
|
|
|
|
config.active_record.belongs_to_required_by_default = false
|
2022-07-15 20:14:57 +08:00
|
|
|
|
config.active_record.yaml_column_permitted_classes = [
|
|
|
|
|
Hash,
|
|
|
|
|
HashWithIndifferentAccess,
|
|
|
|
|
Time,
|
|
|
|
|
Symbol,
|
|
|
|
|
]
|
2024-06-20 16:33:01 +08:00
|
|
|
|
config.active_support.key_generator_hash_digest_class = OpenSSL::Digest::SHA1
|
|
|
|
|
config.action_dispatch.cookies_serializer = :hybrid
|
|
|
|
|
config.action_controller.wrap_parameters_by_default = false
|
2024-07-11 23:32:33 +08:00
|
|
|
|
config.active_support.cache_format_version = 7.1
|
2022-05-19 22:58:31 +08:00
|
|
|
|
|
2020-05-08 08:44:51 +08:00
|
|
|
|
# we skip it cause we configure it in the initializer
|
2021-05-21 09:43:47 +08:00
|
|
|
|
# the railtie for message_bus would insert it in the
|
2020-05-08 08:44:51 +08:00
|
|
|
|
# wrong position
|
|
|
|
|
config.skip_message_bus_middleware = true
|
|
|
|
|
config.skip_multisite_middleware = true
|
2020-06-05 09:05:19 +08:00
|
|
|
|
config.skip_rails_failover_active_record_middleware = true
|
2020-05-08 08:44:51 +08:00
|
|
|
|
|
2021-10-07 02:24:50 +08:00
|
|
|
|
multisite_config_path =
|
|
|
|
|
ENV["DISCOURSE_MULTISITE_CONFIG_PATH"] || GlobalSetting.multisite_config_path
|
|
|
|
|
config.multisite_config_path = File.absolute_path(multisite_config_path, Rails.root)
|
2021-09-11 03:19:52 +08:00
|
|
|
|
|
2024-06-20 16:33:01 +08:00
|
|
|
|
config.autoload_lib(ignore: %w[common_passwords emoji generators javascripts tasks])
|
|
|
|
|
Rails.autoloaders.main.do_not_eager_load(config.root.join("lib"))
|
2013-02-06 03:16:51 +08:00
|
|
|
|
# Custom directories with classes and modules you want to be autoloadable.
|
2022-03-21 22:28:52 +08:00
|
|
|
|
config.autoload_paths << "#{root}/lib/guardian"
|
|
|
|
|
config.autoload_paths << "#{root}/lib/i18n"
|
|
|
|
|
config.autoload_paths << "#{root}/lib/validators"
|
2021-04-29 22:40:55 +08:00
|
|
|
|
|
2013-02-06 03:16:51 +08:00
|
|
|
|
# Only load the plugins named here, in the order given (default is alphabetical).
|
|
|
|
|
# :all can be used as a placeholder for all plugins not explicitly named.
|
|
|
|
|
# config.plugins = [ :exception_notification, :ssl_requirement, :all ]
|
|
|
|
|
|
2021-05-21 09:43:47 +08:00
|
|
|
|
# Allows us to skip minification on some files
|
2015-02-21 04:48:45 +08:00
|
|
|
|
config.assets.skip_minification = []
|
|
|
|
|
|
2013-02-06 03:16:51 +08:00
|
|
|
|
# Set Time.zone default to the specified zone and make Active Record auto-convert to this zone.
|
|
|
|
|
# Run "rake -D time" for a list of tasks for finding time zone names. Default is UTC.
|
2014-10-27 23:31:09 +08:00
|
|
|
|
config.time_zone = "UTC"
|
2013-02-06 03:16:51 +08:00
|
|
|
|
|
2015-04-09 23:04:14 +08:00
|
|
|
|
# auto-load locales in plugins
|
|
|
|
|
# NOTE: we load both client & server locales since some might be used by PrettyText
|
|
|
|
|
config.i18n.load_path += Dir["#{Rails.root}/plugins/*/config/locales/*.yml"]
|
2013-02-06 03:16:51 +08:00
|
|
|
|
|
|
|
|
|
# Configure the default encoding used in templates for Ruby 1.9.
|
2013-02-18 14:34:43 +08:00
|
|
|
|
config.encoding = "utf-8"
|
2013-02-06 03:16:51 +08:00
|
|
|
|
|
2013-02-26 00:42:20 +08:00
|
|
|
|
# see: http://stackoverflow.com/questions/11894180/how-does-one-correctly-add-custom-sql-dml-in-migrations/11894420#11894420
|
2013-02-06 03:16:51 +08:00
|
|
|
|
config.active_record.schema_format = :sql
|
|
|
|
|
|
2021-04-30 17:54:49 +08:00
|
|
|
|
# We use this in development-mode only (see development.rb)
|
|
|
|
|
config.active_record.use_schema_cache_dump = false
|
|
|
|
|
|
2013-02-26 00:42:20 +08:00
|
|
|
|
# per https://www.owasp.org/index.php/Password_Storage_Cheat_Sheet
|
2023-04-11 18:56:20 +08:00
|
|
|
|
config.pbkdf2_iterations = 600_000
|
2013-07-23 09:36:01 +08:00
|
|
|
|
config.pbkdf2_algorithm = "sha256"
|
2013-02-06 03:16:51 +08:00
|
|
|
|
|
2013-10-10 11:16:09 +08:00
|
|
|
|
# rack lock is nothing but trouble, get rid of it
|
|
|
|
|
# for some reason still seeing it in Rails 4
|
|
|
|
|
config.middleware.delete Rack::Lock
|
|
|
|
|
|
2018-01-19 05:26:18 +08:00
|
|
|
|
# wrong place in middleware stack AND request tracker handles it
|
|
|
|
|
config.middleware.delete Rack::Runtime
|
|
|
|
|
|
2014-07-10 13:18:31 +08:00
|
|
|
|
# ETags are pointless, we are dynamically compressing
|
|
|
|
|
# so nginx strips etags, may revisit when mainline nginx
|
|
|
|
|
# supports etags (post 1.7)
|
|
|
|
|
config.middleware.delete Rack::ETag
|
|
|
|
|
|
2020-01-07 20:22:58 +08:00
|
|
|
|
if !(Rails.env.development? || ENV["SKIP_ENFORCE_HOSTNAME"] == "1")
|
2018-11-20 11:34:02 +08:00
|
|
|
|
require "middleware/enforce_hostname"
|
|
|
|
|
config.middleware.insert_after Rack::MethodOverride, Middleware::EnforceHostname
|
|
|
|
|
end
|
2018-11-15 12:22:02 +08:00
|
|
|
|
|
2018-11-30 22:51:45 +08:00
|
|
|
|
require "content_security_policy/middleware"
|
2018-10-23 01:22:23 +08:00
|
|
|
|
config.middleware.swap ActionDispatch::ContentSecurityPolicy::Middleware,
|
|
|
|
|
ContentSecurityPolicy::Middleware
|
|
|
|
|
|
2024-02-16 19:16:54 +08:00
|
|
|
|
require "middleware/csp_script_nonce_injector"
|
|
|
|
|
config.middleware.insert_after(ActionDispatch::Flash, Middleware::CspScriptNonceInjector)
|
2023-07-28 19:53:44 +08:00
|
|
|
|
|
2018-01-12 11:15:10 +08:00
|
|
|
|
require "middleware/discourse_public_exceptions"
|
|
|
|
|
config.exceptions_app = Middleware::DiscoursePublicExceptions.new(Rails.public_path)
|
2013-02-06 03:16:51 +08:00
|
|
|
|
|
2020-03-11 21:43:55 +08:00
|
|
|
|
require "discourse_js_processor"
|
2022-05-11 17:23:32 +08:00
|
|
|
|
require "discourse_sourcemapping_url_processor"
|
2020-03-11 21:43:55 +08:00
|
|
|
|
|
|
|
|
|
Sprockets.register_mime_type "application/javascript",
|
|
|
|
|
extensions: %w[.js .es6 .js.es6],
|
|
|
|
|
charset: :unicode
|
|
|
|
|
Sprockets.register_postprocessor "application/javascript", DiscourseJsProcessor
|
|
|
|
|
|
2023-09-26 23:25:07 +08:00
|
|
|
|
class SprocketsSassUnsupported
|
|
|
|
|
def self.call(*args)
|
|
|
|
|
raise "Discourse does not support compiling scss/sass files via Sprockets"
|
|
|
|
|
end
|
|
|
|
|
end
|
|
|
|
|
|
|
|
|
|
Sprockets.register_engine(".sass", SprocketsSassUnsupported, silence_deprecation: true)
|
|
|
|
|
Sprockets.register_engine(".scss", SprocketsSassUnsupported, silence_deprecation: true)
|
|
|
|
|
|
2022-06-20 22:33:05 +08:00
|
|
|
|
Discourse::Application.initializer :prepend_ember_assets do |app|
|
|
|
|
|
# Needs to be in its own initializer so it runs after the append_assets_path initializer defined by Sprockets
|
|
|
|
|
app
|
|
|
|
|
.config
|
|
|
|
|
.assets
|
|
|
|
|
.paths.unshift "#{app.config.root}/app/assets/javascripts/discourse/dist/assets"
|
|
|
|
|
Sprockets.unregister_postprocessor "application/javascript",
|
|
|
|
|
Sprockets::Rails::SourcemappingUrlProcessor
|
|
|
|
|
Sprockets.register_postprocessor "application/javascript", DiscourseSourcemappingUrlProcessor
|
DEV: Allow Ember CLI assets to be used by development Rails app (#16511)
Previously, accessing the Rails app directly in development mode would give you assets from our 'legacy' Ember asset pipeline. The only way to run with Ember CLI assets was to run ember-cli as a proxy. This was quite limiting when working on things which are bypassed when using the ember-cli proxy (e.g. changes to `application.html.erb`). Also, since `ember-auto-import` introduced chunking, visiting `/theme-qunit` under Ember CLI was failing to include all necessary chunks.
This commit teaches Sprockets about our Ember CLI assets so that they can be used in development mode, and are automatically collected up under `/public/assets` during `assets:precompile`. As a bonus, this allows us to remove all the custom manifest modification from `assets:precompile`.
The key changes are:
- Introduce a shared `EmberCli.enabled?` helper
- When ember-cli is enabled, add ember-cli `/dist/assets` as the top-priority Rails asset directory
- Have ember-cli output a `chunks.json` manifest, and teach `preload_script` to read it and append the correct chunks to their associated `afterFile`
- Remove most custom ember-cli logic from the `assets:precompile` step. Instead, rely on Rails to take care of pulling the 'precompiled' assets into the `public/assets` directory. Move the 'renaming' logic to runtime, so it can be used in development mode as well.
- Remove fingerprinting from `ember-cli-build`, and allow Rails to take care of things
Long-term, we may want to replace Sprockets with the lighter-weight Propshaft. The changes made in this commit have been made with that long-term goal in mind.
tldr: when you visit the rails app directly, you'll now be served the current ember-cli assets. To keep these up-to-date make sure either `ember serve`, or `ember build --watch` is running. If you really want to load the old non-ember-cli assets, then you should start the server with `EMBER_CLI_PROD_ASSETS=0`. (the legacy asset pipeline will be removed very soon)
2022-04-21 23:26:34 +08:00
|
|
|
|
end
|
|
|
|
|
|
2013-03-11 20:33:20 +08:00
|
|
|
|
require "discourse_redis"
|
2014-05-07 06:23:52 +08:00
|
|
|
|
require "logster/redis_store"
|
2013-02-06 03:16:51 +08:00
|
|
|
|
# Use redis for our cache
|
2013-03-11 20:33:20 +08:00
|
|
|
|
config.cache_store = DiscourseRedis.new_redis_store
|
2022-01-09 06:39:46 +08:00
|
|
|
|
Discourse.redis = DiscourseRedis.new
|
2014-05-08 04:52:47 +08:00
|
|
|
|
Logster.store = Logster::RedisStore.new(DiscourseRedis.new)
|
2013-02-06 03:16:51 +08:00
|
|
|
|
|
2022-01-09 06:39:46 +08:00
|
|
|
|
# Deprecated
|
|
|
|
|
$redis = Discourse.redis # rubocop:disable Style/GlobalVars
|
|
|
|
|
|
2013-04-11 14:24:08 +08:00
|
|
|
|
# we configure rack cache on demand in an initializer
|
|
|
|
|
# our setup does not use rack cache and instead defers to nginx
|
2013-02-06 03:16:51 +08:00
|
|
|
|
config.action_dispatch.rack_cache = nil
|
|
|
|
|
|
2013-08-26 10:52:36 +08:00
|
|
|
|
require "auth"
|
2013-08-01 13:59:57 +08:00
|
|
|
|
|
2018-01-16 04:42:31 +08:00
|
|
|
|
if GlobalSetting.relative_url_root.present?
|
|
|
|
|
config.relative_url_root = GlobalSetting.relative_url_root
|
|
|
|
|
end
|
|
|
|
|
|
2022-01-11 20:30:22 +08:00
|
|
|
|
if Rails.env.test? && GlobalSetting.load_plugins?
|
|
|
|
|
Discourse.activate_plugins!
|
|
|
|
|
elsif GlobalSetting.load_plugins?
|
2022-03-21 22:28:52 +08:00
|
|
|
|
Plugin.initialization_guard { Discourse.activate_plugins! }
|
2015-03-09 08:45:36 +08:00
|
|
|
|
end
|
|
|
|
|
|
2020-08-31 18:14:09 +08:00
|
|
|
|
# Use discourse-fonts gem to symlink fonts and generate .scss file
|
|
|
|
|
fonts_path = File.join(config.root, "public/fonts")
|
|
|
|
|
Discourse::Utils.atomic_ln_s(DiscourseFonts.path_for_fonts, fonts_path)
|
|
|
|
|
|
2022-03-21 22:28:52 +08:00
|
|
|
|
require "stylesheet/manager"
|
|
|
|
|
require "svg_sprite"
|
2017-04-12 22:52:52 +08:00
|
|
|
|
|
2013-02-26 00:42:20 +08:00
|
|
|
|
config.after_initialize do
|
2017-08-12 10:22:22 +08:00
|
|
|
|
# Load plugins
|
2019-10-07 02:47:33 +08:00
|
|
|
|
Plugin.initialization_guard { Discourse.plugins.each(&:notify_after_initialize) }
|
2017-07-28 00:08:10 +08:00
|
|
|
|
|
2017-10-30 11:24:15 +08:00
|
|
|
|
# we got to clear the pool in case plugins connect
|
|
|
|
|
ActiveRecord::Base.connection_handler.clear_active_connections!
|
2024-06-20 16:33:01 +08:00
|
|
|
|
|
|
|
|
|
# Mailers and controllers may have been patched by plugins and when the
|
|
|
|
|
# application is eager loaded, the list of public methods is cached.
|
|
|
|
|
# We need to invalidate the existing caches, otherwise the new actions
|
|
|
|
|
# won’t be seen by Rails.
|
|
|
|
|
if Rails.configuration.eager_load
|
|
|
|
|
AbstractController::Base.descendants.each do |controller|
|
|
|
|
|
controller.clear_action_methods!
|
|
|
|
|
controller.action_methods
|
|
|
|
|
end
|
|
|
|
|
end
|
2013-02-06 03:16:51 +08:00
|
|
|
|
end
|
2013-09-16 10:58:26 +08:00
|
|
|
|
|
2013-11-20 07:10:12 +08:00
|
|
|
|
require "rbtrace" if ENV["RBTRACE"] == "1"
|
|
|
|
|
|
2022-07-08 08:57:09 +08:00
|
|
|
|
config.active_record.query_log_tags_enabled = true if ENV["RAILS_QUERY_LOG_TAGS"] == "1"
|
|
|
|
|
|
2016-12-08 11:49:39 +08:00
|
|
|
|
config.generators { |g| g.test_framework :rspec, fixture: false }
|
2013-02-06 03:16:51 +08:00
|
|
|
|
end
|
|
|
|
|
end
|