Default value of `Setting.rails_force_ssl` was `false` before
9e3c51299a, and `true` after. As the default value changed to true, it
lead a packaged installation to a forced ssl even if "No SSL" was
chosen.
Instead of unsetting `OPENPROJECT_RAILS__FORCE__SSL` and assume a
default value of `false`, explicitly set it to either `true` or `false`
to fix the problem.
Updates the copyright to 2021 for all files that have a copyright. Files in our source code without the copyright header still do not receive one automatically. Additionally, backlisted files are also excluded.
Previously the copyright of chiliproject which references redmine stated a copyright of redmine up to and including 2017 which is not true for the code we have in here. Because of that I changed that to 2013
This PR introduces two env variables for packaged installations:
- RECOMPILE_RAILS_ASSETS will be set when a server prefix set and
backend assets need to be recompiled or when a custom gemfile is present
- RECOMPILE_ANGULAR_ASSETS will be undefined by default and will result
in skipping angular recompilation if `RECOMPILE_RAILS_ASSETS=true`. Can
be manually set by the user if frontend recompilation is needed (due to
a custom frontend plugin).
https://community.openproject.com/wp/30197
When users enable https in their instance, the session cookie should be `secure` by default.
It currently is only when the configuration `rails_force_ssl` is set.
https://community.openproject.com/wp/268331
When an instance is SSL termination, server/ssl will be false and Setting.protocol will be set to http.
However, the instance's protocol SHOULD be set to https since that is used for link generation
This PR allows to override the ENV coming from packager when the instance is behind ssl termination using `SERVER_PROTOCOL_FORCE_HTTPS`
[ci skip]
In a packaged installation, installing custom plugins is unfeasible by
default to them breaking on each upgrade of the package (since the
Gemfile(.lock) is being overridden.
This commit allows users to specify a separated Gemfile, that will be
checked by the package installer.
The addon-openproject started to bloat due to a number
of rake tasks with environment becoming a necessity.
As any of these rake tasks load the environment, which may take up to 10
seconds, we should strive to include the relevant logic into OpenProject
where possible.
Ivan Kuchin