Startsida Utforska Hjälp
Logga in
mirrors
/
ntfy
spegling av https://github.com/binwiederhier/ntfy
1
0
Fork 0
Filer Ärenden 0 Wiki
Träd: ed9d99fd57
Grenar Taggar
ntfy
/
server
/
server.yml

server.yml 8.4 KB
Historik

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193 
  1. # ntfy server config file
    2. 

  2. #
    3. 

  3. # Please refer to the documentation at https://ntfy.sh/docs/config/ for details.
    4. 

  4. # All options also support underscores (_) instead of dashes (-) to comply with the YAML spec.
    5. 

  5. 

  6. # Public facing base URL of the service (e.g. https://ntfy.sh or https://ntfy.example.com)
    7. 

  7. #
    8. 

  8. # This setting is required for any of the following features:
    9. 

  9. # - attachments (to return a download URL)
    10. 

  10. # - e-mail sending (for the topic URL in the email footer)
    11. 

  11. # - iOS push notifications for self-hosted servers (to calculate the Firebase poll_request topic)
    12. 

  12. # - Matrix Push Gateway (to validate that the pushkey is correct)
    13. 

  13. #
    14. 

  14. # base-url:
    15. 

  15. 

  16. # Listen address for the HTTP & HTTPS web server. If "listen-https" is set, you must also
    17. 

  17. # set "key-file" and "cert-file". Format: [<ip>]:<port>, e.g. "1.2.3.4:8080".
    18. 

  18. #
    19. 

  19. # To listen on all interfaces, you may omit the IP address, e.g. ":443".
    20. 

  20. # To disable HTTP, set "listen-http" to "-".
    21. 

  21. #
    22. 

  22. # listen-http: ":80"
    23. 

  23. # listen-https:
    24. 

  24. 

  25. # Listen on a Unix socket, e.g. /var/lib/ntfy/ntfy.sock
    26. 

  26. # This can be useful to avoid port issues on local systems, and to simplify permissions.
    27. 

  27. #
    28. 

  28. # listen-unix: <socket-path>
    29. 

  29. 

  30. # Path to the private key & cert file for the HTTPS web server. Not used if "listen-https" is not set.
    31. 

  31. #
    32. 

  32. # key-file: <filename>
    33. 

  33. # cert-file: <filename>
    34. 

  34. 

  35. # If set, also publish messages to a Firebase Cloud Messaging (FCM) topic for your app.
    36. 

  36. # This is optional and only required to save battery when using the Android app.
    37. 

  37. #
    38. 

  38. # firebase-key-file: <filename>
    39. 

  39. 

  40. # If set, messages are cached in a local SQLite database instead of only in-memory. This
    41. 

  41. # allows for service restarts without losing messages in support of the since= parameter.
    42. 

  42. #
    43. 

  43. # The "cache-duration" parameter defines the duration for which messages will be buffered
    44. 

  44. # before they are deleted. This is required to support the "since=..." and "poll=1" parameter.
    45. 

  45. # To disable the cache entirely (on-disk/in-memory), set "cache-duration" to 0.
    46. 

  46. # The cache file is created automatically, provided that the correct permissions are set.
    47. 

  47. #
    48. 

  48. # Debian/RPM package users:
    49. 

  49. #   Use /var/cache/ntfy/cache.db as cache file to avoid permission issues. The package
    50. 

  50. #   creates this folder for you.
    51. 

  51. #
    52. 

  52. # Check your permissions:
    53. 

  53. #   If you are running ntfy with systemd, make sure this cache file is owned by the
    54. 

  54. #   ntfy user and group by running: chown ntfy.ntfy <filename>.
    55. 

  55. #
    56. 

  56. # cache-file: <filename>
    57. 

  57. # cache-duration: "12h"
    58. 

  58. 

  59. # If set, access to the ntfy server and API can be controlled on a granular level using
    60. 

  60. # the 'ntfy user' and 'ntfy access' commands. See the --help pages for details, or check the docs.
    61. 

  61. #
    62. 

  62. # - auth-file is the SQLite user/access database; it is created automatically if it doesn't already exist
    63. 

  63. # - auth-default-access defines the default/fallback access if no access control entry is found; it can be
    64. 

  64. #   set to "read-write" (default), "read-only", "write-only" or "deny-all".
    65. 

  65. #
    66. 

  66. # Debian/RPM package users:
    67. 

  67. #   Use /var/lib/ntfy/user.db as user database to avoid permission issues. The package
    68. 

  68. #   creates this folder for you.
    69. 

  69. #
    70. 

  70. # Check your permissions:
    71. 

  71. #   If you are running ntfy with systemd, make sure this user database file is owned by the
    72. 

  72. #   ntfy user and group by running: chown ntfy.ntfy <filename>.
    73. 

  73. #
    74. 

  74. # auth-file: <filename>
    75. 

  75. # auth-default-access: "read-write"
    76. 

  76. 

  77. # If set, the X-Forwarded-For header is used to determine the visitor IP address
    78. 

  78. # instead of the remote address of the connection.
    79. 

  79. #
    80. 

  80. # WARNING: If you are behind a proxy, you must set this, otherwise all visitors are rate limited
    81. 

  81. #          as if they are one.
    82. 

  82. #
    83. 

  83. # behind-proxy: false
    84. 

  84. 

  85. # If enabled, clients can attach files to notifications as attachments. Minimum settings to enable attachments
    86. 

  86. # are "attachment-cache-dir" and "base-url".
    87. 

  87. #
    88. 

  88. # - attachment-cache-dir is the cache directory for attached files
    89. 

  89. # - attachment-total-size-limit is the limit of the on-disk attachment cache directory (total size)
    90. 

  90. # - attachment-file-size-limit is the per-file attachment size limit (e.g. 300k, 2M, 100M)
    91. 

  91. # - attachment-expiry-duration is the duration after which uploaded attachments will be deleted (e.g. 3h, 20h)
    92. 

  92. #
    93. 

  93. # attachment-cache-dir:
    94. 

  94. # attachment-total-size-limit: "5G"
    95. 

  95. # attachment-file-size-limit: "15M"
    96. 

  96. # attachment-expiry-duration: "3h"
    97. 

  97. 

  98. # If enabled, allow outgoing e-mail notifications via the 'X-Email' header. If this header is set,
    99. 

  99. # messages will additionally be sent out as e-mail using an external SMTP server. As of today, only
    100. 

  100. # SMTP servers with plain text auth and STARTLS are supported. Please also refer to the rate limiting settings
    101. 

  101. # below (visitor-email-limit-burst & visitor-email-limit-burst).
    102. 

  102. #
    103. 

  103. # - smtp-sender-addr is the hostname:port of the SMTP server
    104. 

  104. # - smtp-sender-user/smtp-sender-pass are the username and password of the SMTP user
    105. 

  105. # - smtp-sender-from is the e-mail address of the sender
    106. 

  106. #
    107. 

  107. # smtp-sender-addr:
    108. 

  108. # smtp-sender-user:
    109. 

  109. # smtp-sender-pass:
    110. 

  110. # smtp-sender-from:
    111. 

  111. 

  112. # If enabled, ntfy will launch a lightweight SMTP server for incoming messages. Once configured, users can send
    113. 

  113. # emails to a topic e-mail address to publish messages to a topic.
    114. 

  114. #
    115. 

  115. # - smtp-server-listen defines the IP address and port the SMTP server will listen on, e.g. :25 or 1.2.3.4:25
    116. 

  116. # - smtp-server-domain is the e-mail domain, e.g. ntfy.sh
    117. 

  117. # - smtp-server-addr-prefix is an optional prefix for the e-mail addresses to prevent spam. If set to "ntfy-",
    118. 

  118. #   for instance, only e-mails to ntfy-$topic@ntfy.sh will be accepted. If this is not set, all emails to
    119. 

  119. #   $topic@ntfy.sh will be accepted (which may obviously be a spam problem).
    120. 

  120. #
    121. 

  121. # smtp-server-listen:
    122. 

  122. # smtp-server-domain:
    123. 

  123. # smtp-server-addr-prefix:
    124. 

  124. 

  125. # Interval in which keepalive messages are sent to the client. This is to prevent
    126. 

  126. # intermediaries closing the connection for inactivity.
    127. 

  127. #
    128. 

  128. # Note that the Android app has a hardcoded timeout at 77s, so it should be less than that.
    129. 

  129. #
    130. 

  130. # keepalive-interval: "45s"
    131. 

  131. 

  132. # Interval in which the manager prunes old messages, deletes topics
    133. 

  133. # and prints the stats.
    134. 

  134. #
    135. 

  135. # manager-interval: "1m"
    136. 

  136. 

  137. # Defines if the root route (/) is pointing to the landing page (as on ntfy.sh) or the
    138. 

  138. # web app. If you self-host, you don't want to change this.
    139. 

  139. # Can be "app" (default), "home" or "disable" to disable the web app entirely.
    140. 

  140. #
    141. 

  141. # web-root: app
    142. 

  142. 

  143. # Server URL of a Firebase/APNS-connected ntfy server (likely "https://ntfy.sh").
    144. 

  144. #
    145. 

  145. # iOS users:
    146. 

  146. #   If you use the iOS ntfy app, you MUST configure this to receive timely notifications. You'll like want this:
    147. 

  147. #   upstream-base-url: "https://ntfy.sh"
    148. 

  148. #
    149. 

  149. # If set, all incoming messages will publish a "poll_request" message to the configured upstream server, containing
    150. 

  150. # the message ID of the original message, instructing the iOS app to poll this server for the actual message contents.
    151. 

  151. # This is to prevent the upstream server and Firebase/APNS from being able to read the message.
    152. 

  152. #
    153. 

  153. # upstream-base-url:
    154. 

  154. 

  155. # Rate limiting: Total number of topics before the server rejects new topics.
    156. 

  156. #
    157. 

  157. # global-topic-limit: 15000
    158. 

  158. 

  159. # Rate limiting: Number of subscriptions per visitor (IP address)
    160. 

  160. #
    161. 

  161. # visitor-subscription-limit: 30
    162. 

  162. 

  163. # Rate limiting: Allowed GET/PUT/POST requests per second, per visitor:
    164. 

  164. # - visitor-request-limit-burst is the initial bucket of requests each visitor has
    165. 

  165. # - visitor-request-limit-replenish is the rate at which the bucket is refilled
    166. 

  166. # - visitor-request-limit-exempt-hosts is a comma-separated list of hostnames and IPs to be
    167. 

  167. #   exempt from request rate limiting; hostnames are resolved at the time the server is started
    168. 

  168. #
    169. 

  169. # visitor-request-limit-burst: 60
    170. 

  170. # visitor-request-limit-replenish: "5s"
    171. 

  171. # visitor-request-limit-exempt-hosts: ""
    172. 

  172. 

  173. # Rate limiting: Allowed emails per visitor:
    174. 

  174. # - visitor-email-limit-burst is the initial bucket of emails each visitor has
    175. 

  175. # - visitor-email-limit-replenish is the rate at which the bucket is refilled
    176. 

  176. #
    177. 

  177. # visitor-email-limit-burst: 16
    178. 

  178. # visitor-email-limit-replenish: "1h"
    179. 

  179. 

  180. # Rate limiting: Attachment size and bandwidth limits per visitor:
    181. 

  181. # - visitor-attachment-total-size-limit is the total storage limit used for attachments per visitor
    182. 

  182. # - visitor-attachment-daily-bandwidth-limit is the total daily attachment download/upload traffic limit per visitor
    183. 

  183. #
    184. 

  184. # visitor-attachment-total-size-limit: "100M"
    185. 

  185. # visitor-attachment-daily-bandwidth-limit: "500M"
    186. 

  186. 

  187. # Log level, can be TRACE, DEBUG, INFO, WARN or ERROR
    188. 

  188. # This option can be hot-reloaded by calling "kill -HUP $pid" or "systemctl reload ntfy".
    189. 

  189. #
    190. 

  190. # Be aware that DEBUG (and particularly TRACE) can be VERY CHATTY. Only turn them on for
    191. 

  191. # debugging purposes, or your disk will fill up quickly.
    192. 

  192. #
    193. 

  193. # log-level: INFO
    194.