*/
$wgGitInfoCacheDirectory = false;
-/**
- * Bump this number when changing the global style sheets and JavaScript.
- *
- * It should be appended in the query string of static CSS and JS includes,
- * to ensure that client-side caches do not keep obsolete copies of global
- * styles.
- *
- * @deprecated since 1.31
- */
-$wgStyleVersion = '303';
-
/**
* This will cache static pages for non-logged-in users to reduce
* database traffic on public sites. ResourceLoader requests to default
$wgUseMediaWikiUIEverywhere = false;
/**
- * Temporary variable that determines whether the EditPage class should use OOjs UI or not.
- * This will be removed later and OOjs UI will become the only option.
+ * Temporary variable that determines whether Special:Preferences should use OOUI or not.
+ * This will be removed later and OOUI will become the only option.
*
* @since 1.32
*/
'deviceWidthTablet' => '720px',
];
-/**
- * Default import paths for LESS modules. LESS files referenced in @import
- * statements will be looked up here first, and relative to the importing file
- * second. To avoid collisions, it's important for the LESS files in these
- * directories to have a common, predictable file name prefix.
- *
- * Extensions need not (and should not) register paths in
- * $wgResourceLoaderLESSImportPaths. The import path includes the path of the
- * currently compiling LESS file, which allows each extension to freely import
- * files from its own tree.
- *
- * @since 1.22
- */
-$wgResourceLoaderLESSImportPaths = [
- "$IP/resources/src/mediawiki.less/",
-];
-
/**
* Whether ResourceLoader should attempt to persist modules in localStorage on
* browsers that support the Web Storage API.
'edit' => [
'ip' => [ 8, 60 ],
'newbie' => [ 8, 60 ],
+ 'user' => [ 90, 60 ],
],
// Page moves
'move' => [
*/
$wgCookieSetOnAutoblock = false;
+/**
+ * Whether to set a cookie when a logged-out user is blocked. Doing so means that a blocked user,
+ * even after moving to a new IP address, will still be blocked. This cookie will contain an
+ * authentication code if $wgSecretKey is set, or otherwise will just be the block ID (in which
+ * case there is a possibility of an attacker discovering the names of revdeleted users, so it
+ * is best to use this in conjunction with $wgSecretKey being set).
+ */
+$wgCookieSetOnIpBlock = false;
+
/** @} */ # end of cookie settings }
/************************************************************************//**
'autocreate' => [ 'autocreate' ],
'byemail' => [ 'byemail' ],
],
- 'patrol' => [
- 'patrol' => [ 'patrol' ],
- 'autopatrol' => [ 'autopatrol' ],
- ],
'protect' => [
'protect' => [ 'protect' ],
'modify' => [ 'modify' ],
];
/**
- * Maintain a log of newusers at Log/newusers?
+ * Maintain a log of newusers at Special:Log/newusers?
*/
$wgNewUserLog = true;
+/**
+ * Maintain a log of page creations at Special:Log/create?
+ * @since 1.32
+ */
+$wgPageCreationLog = false;
+
/** @} */ # end logging }
/*************************************************************************//**
*/
$wgMaxJobDBWriteDuration = false;
+/**
+ * Controls Content-Security-Policy header [Experimental]
+ *
+ * @see https://www.w3.org/TR/CSP2/
+ * @since 1.32
+ * @var bool|array true to send default version, false to not send.
+ * If an array, can have parameters:
+ * 'default-src' If true or array (of additional urls) will set a default-src
+ * directive, which limits what places things can load from. If false or not
+ * set, will send a default-src directive allowing all sources.
+ * 'includeCORS' If true or not set, will include urls from
+ * $wgCrossSiteAJAXdomains as an allowed load sources.
+ * 'unsafeFallback' Add unsafe-inline as a script source, as a fallback for
+ * browsers that do not understand nonce-sources [default on].
+ * 'script-src' Array of additional places that are allowed to have JS be loaded from.
+ * 'report-uri' true to use MW api [default], false to disable, string for alternate uri
+ * @warning May cause slowness on windows due to slow random number generator.
+ */
+$wgCSPHeader = false;
+
+/**
+ * Controls Content-Security-Policy-Report-Only header
+ *
+ * @since 1.32
+ * @var bool|array Same as $wgCSPHeader
+ */
+$wgCSPReportOnlyHeader = false;
+
/**
* Mapping of event channels (or channel categories) to EventRelayer configuration.
*
dépôts / lhc / web / wiklou.git / blobdiff