verdaccio/conf/default.yaml

#
# This is the default config file. It allows all users to do anything,
# so don't use it on production systems.
#
# Look here for more config file examples:
# https://github.com/verdaccio/verdaccio/tree/master/conf
#

# path to a directory with all packages
storage: ./storage
# path to a directory with plugins to include
plugins: ./plugins

web:
  title: Verdaccio
  # comment out to disable gravatar support
  # gravatar: false
  # by default packages are ordercer ascendant (asc|desc)
  # sort_packages: asc

auth:
  htpasswd:
    file: ./htpasswd
    # Maximum amount of users allowed to register, defaults to "+inf".
    # You can set this to -1 to disable registration.
    # max_users: 1000

# a list of other known repositories we can talk to
uplinks:
  npmjs:
    url: https://registry.npmjs.org/

packages:
  '@*/*':
    # scoped packages
    access: $all
    publish: $authenticated
    unpublish: $authenticated
    proxy: npmjs

  '**':
    # allow all users (including non-authenticated users) to read and
    # publish all packages
    #
    # you can specify usernames/groupnames (depending on your auth plugin)
    # and three keywords: "$all", "$anonymous", "$authenticated"
    access: $all

    # allow all known users to publish/publish packages
    # (anyone can register by default, remember?)
    publish: $authenticated
    unpublish: $authenticated

    # if package is not available locally, proxy requests to 'npmjs' registry
    proxy: npmjs

# You can specify HTTP/1.1 server keep alive timeout in seconds for incomming connections.
# A value of 0 makes the http server behave similarly to Node.js versions prior to 8.0.0, which did not have a keep-alive timeout.
# WORKAROUND: Through given configuration you can workaround following issue https://github.com/verdaccio/verdaccio/issues/301. Set to 0 in case 60 is not enought.
server:
  keepAliveTimeout: 60

middlewares:
  audit:
    enabled: true

# log settings
logs:
  - { type: stdout, format: pretty, level: http }
  #- {type: file, path: verdaccio.log, level: info}
#experiments:
#  # support for npm token command
#  token: false
move config file to separate folder Make default config smaller, allow all users by default there. 2014-11-12 10:49:37 -05:00			`#`
			`# This is the default config file. It allows all users to do anything,`
			`# so don't use it on production systems.`
			`#`
			`# Look here for more config file examples:`
Remove references to sinopia in Documentation and configuration 2016-08-20 11:46:54 -05:00			`# https://github.com/verdaccio/verdaccio/tree/master/conf`
move config file to separate folder Make default config smaller, allow all users by default there. 2014-11-12 10:49:37 -05:00			`#`

			`# path to a directory with all packages`
			`storage: ./storage`
feat: adds support for external plugin directory (#532) 2018-07-18 07:53:08 -05:00			`# path to a directory with plugins to include`
			`plugins: ./plugins`
move config file to separate folder Make default config smaller, allow all users by default there. 2014-11-12 10:49:37 -05:00
refactor: migration assert to expect 2018-06-28 11:33:37 -05:00			`web:`
			`title: Verdaccio`
doc: add improve unpublish docs 2019-02-25 01:31:35 -05:00			`# comment out to disable gravatar support`
			`# gravatar: false`
feat: allow order packages via on web #1163 add new param on web sort_packages. options asc or desc 2019-02-07 15:18:45 -05:00			`# by default packages are ordercer ascendant (asc\|desc)`
			`# sort_packages: asc`
refactor: migration assert to expect 2018-06-28 11:33:37 -05:00
move config file to separate folder Make default config smaller, allow all users by default there. 2014-11-12 10:49:37 -05:00			`auth:`
			`htpasswd:`
			`file: ./htpasswd`
			`# Maximum amount of users allowed to register, defaults to "+inf".`
			`# You can set this to -1 to disable registration.`
doc: add improve unpublish docs 2019-02-25 01:31:35 -05:00			`# max_users: 1000`
move config file to separate folder Make default config smaller, allow all users by default there. 2014-11-12 10:49:37 -05:00
			`# a list of other known repositories we can talk to`
			`uplinks:`
			`npmjs:`
			`url: https://registry.npmjs.org/`

			`packages:`
add scoped packages draft 2014-11-16 12:44:46 -05:00			`'@/':`
			`# scoped packages`
Refactor authorization plugins 2015-04-08 15:54:59 -05:00			`access: $all`
			`publish: $authenticated`
feat: ability to restrict unpublish action to certain users #492 This is a PoC, it needs refactor and unit testing 2019-02-07 16:04:53 -05:00			`unpublish: $authenticated`
Update the configs to fully support proxying scoped packages from the npm registry 2016-09-26 06:48:36 -05:00			`proxy: npmjs`
add scoped packages draft 2014-11-16 12:44:46 -05:00
Update the configs to fully support proxying scoped packages from the npm registry 2016-09-26 06:48:36 -05:00			`'**':`
move config file to separate folder Make default config smaller, allow all users by default there. 2014-11-12 10:49:37 -05:00			`# allow all users (including non-authenticated users) to read and`
			`# publish all packages`
			`#`
			`# you can specify usernames/groupnames (depending on your auth plugin)`
			`# and three keywords: "$all", "$anonymous", "$authenticated"`
Refactor authorization plugins 2015-04-08 15:54:59 -05:00			`access: $all`
move config file to separate folder Make default config smaller, allow all users by default there. 2014-11-12 10:49:37 -05:00
doc: add improve unpublish docs 2019-02-25 01:31:35 -05:00			`# allow all known users to publish/publish packages`
fix config file comment 2014-11-13 13:32:01 -05:00			`# (anyone can register by default, remember?)`
Refactor authorization plugins 2015-04-08 15:54:59 -05:00			`publish: $authenticated`
feat: ability to restrict unpublish action to certain users #492 This is a PoC, it needs refactor and unit testing 2019-02-07 16:04:53 -05:00			`unpublish: $authenticated`

move config file to separate folder Make default config smaller, allow all users by default there. 2014-11-12 10:49:37 -05:00			`# if package is not available locally, proxy requests to 'npmjs' registry`
			`proxy: npmjs`

feat: introduce server keepAliveTimeout into config files Set default timeout to 60 seconds (it's workaround for issue reported in issues/301). 2019-01-27 04:19:46 -05:00			`# You can specify HTTP/1.1 server keep alive timeout in seconds for incomming connections.`
			`# A value of 0 makes the http server behave similarly to Node.js versions prior to 8.0.0, which did not have a keep-alive timeout.`
			`# WORKAROUND: Through given configuration you can workaround following issue https://github.com/verdaccio/verdaccio/issues/301. Set to 0 in case 60 is not enought.`
			`server:`
			`keepAliveTimeout: 60`

fix: enable audit by default For docker and new installations 2018-05-31 03:41:00 -05:00			`middlewares:`
			`audit:`
			`enabled: true`
feat: support for npm audit fix #689 it is dissabled and commented out by default 2018-05-21 04:28:04 -05:00
move config file to separate folder Make default config smaller, allow all users by default there. 2014-11-12 10:49:37 -05:00			`# log settings`
			`logs:`
refactor: add prettier for yaml files (#931) 2018-08-20 09:31:39 -05:00			`- { type: stdout, format: pretty, level: http }`
Remove references to sinopia in Documentation and configuration 2016-08-20 11:46:54 -05:00			`#- {type: file, path: verdaccio.log, level: info}`
fix: comment out experiments from configuration files (#1505) 2019-10-02 13:56:50 -05:00			`#experiments:`
			`# # support for npm token command`
			`# token: false`