Mercurial > kallithea
view docs/usage/troubleshooting.rst @ 5875:abc1ada59076
notifications: untangle notification access check
This removes a broken permission check when viewing notifications (the
HasRepoPermissionAny object was created, but never actually called with
a repo_name argument as required). It would be non-trivial to actually
implement the check, as notifications don't track their repository
relationship explicitly, and even then, it's unclear why it would
make sense to allow a repository admin to see notifications to
other users.
It was never a vulnerability, due to a subsequent (and much stricter)
ownership check, which remains but has been untangled for readability.
In short, this changeset is a pure refactoring, except that specifying
a non-existent notification ID will now produce error 404, not 403.
author | Søren Løvborg <sorenl@unity3d.com> |
---|---|
date | Tue, 19 Apr 2016 18:03:30 +0200 |
parents | 84d2a9aaa1a4 |
children | 9c6f717823e1 |
line wrap: on
line source
.. _troubleshooting: =============== Troubleshooting =============== :Q: **Missing static files?** :A: Make sure either to set the ``static_files = true`` in the .ini file or double check the root path for your http setup. It should point to for example: ``/home/my-virtual-python/lib/python2.7/site-packages/kallithea/public`` | :Q: **Can't install celery/rabbitmq?** :A: Don't worry. Kallithea works without them, too. No extra setup is required. Try out the great Celery docs for further help. | :Q: **Long lasting push timeouts?** :A: Make sure you set a longer timeout in your proxy/fcgi settings. Timeouts are caused by the http server and not Kallithea. | :Q: **Large pushes timeouts?** :A: Make sure you set a proper ``max_body_size`` for the http server. Very often Apache, Nginx, or other http servers kill the connection due to to large body. | :Q: **Apache doesn't pass basicAuth on pull/push?** :A: Make sure you added ``WSGIPassAuthorization true``. | :Q: **Git fails on push/pull?** :A: Make sure you're using a WSGI http server that can handle chunked encoding such as ``waitress`` or ``gunicorn``. | :Q: **How can I use hooks in Kallithea?** :A: It's easy if they are Python hooks: just use advanced link in hooks section in Admin panel, that works only for Mercurial. If you want to use Git hooks, just install th proper one in the repository, e.g., create a file `/gitrepo/hooks/pre-receive`. You can also use Kallithea-extensions to connect to callback hooks, for both Git and Mercurial. | :Q: **Kallithea is slow for me, how can I make it faster?** :A: See the :ref:`performance` section. | :Q: **UnicodeDecodeError on Apache mod_wsgi** :A: Please read: https://docs.djangoproject.com/en/dev/howto/deployment/wsgi/modwsgi/#if-you-get-a-unicodeencodeerror. | :Q: **Requests hanging on Windows** :A: Please try out with disabled Antivirus software, there are some known problems with Eset Antivirus. Make sure you have installed the latest Windows patches (especially KB2789397). .. _virtualenv: http://pypi.python.org/pypi/virtualenv .. _python: http://www.python.org/ .. _mercurial: http://mercurial.selenic.com/ .. _celery: http://celeryproject.org/ .. _rabbitmq: http://www.rabbitmq.com/ .. _python-ldap: http://www.python-ldap.org/