gotosocial/docs/configuration/advanced.md

# Advanced

Advanced settings options are provided for the sake of allowing admins to tune their instance to their liking.

These are set to sensible defaults, so most server admins won't need to touch them or think about them.

**Changing these settings if you don't know what you're doing may break your instance**.

## Settings

```yaml
#############################
##### ADVANCED SETTINGS #####
#############################

# Advanced settings pertaining to http timeouts, security, cookies, and more.
#
# ONLY ADJUST THESE SETTINGS IF YOU KNOW WHAT YOU ARE DOING!
#
# Most users will not need to (and should not) touch these settings, since
# they are set to sensible defaults, and may break if they are changed.
#
# Nevertheless, they are provided for the sake of allowing server admins to
# tweak their instance for performance or security reasons.

# String. Value of the SameSite attribute of cookies set by GoToSocial.
# Defaults to 'lax' to ensure that the OIDC flow does not break, which is
# fine in most cases. If you want to harden your instance against CSRF attacks
# and don't mind if some login-related things might break, you can set this
# to 'strict' instead.
#
# For an overview of what this does, see:
# https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Set-Cookie/SameSite
#
# Options: ["lax", "strict"]
# Default: "lax"
advanced-cookies-samesite: "lax"

# Int. Amount of requests to permit per router grouping from a single IP address within
# a span of 5 minutes. If this amount is exceeded, a 429 HTTP error code will be returned.
#
# If you find yourself adjusting this limit because it's regularly being exceeded,
# you should first verify that your settings for `trusted-proxies` (above) are correct.
# In many cases, when the rate limit is exceeded it is because your instance sees all
# incoming requests as coming from the *same IP address* (you can verify this by looking
# at the client IPs in your instance logs). If this is the case, try adding that IP
# address to your `trusted-proxies` *BEFORE* you go adjusting this rate limit setting!
#
# If you set this to 0 or less, rate limiting will be disabled entirely.
#
# Examples: [1000, 500, 0]
# Default: 300
advanced-rate-limit-requests: 300

# Array of string. CIDRs to except from rate limit restrictions.
# Any IPs inside the CIDR range(s) will not have rate limiting
# applied on their requests, and rate limit headers will not be
# set for those requests.
#
# This can be useful in the following example cases (and probably
# a bunch of others as well):
#
# 1. You've set up an automated service that uses the API, and
#    it keeps getting rate limited, even though you trust it's
#    not abusing the instance.
#
# 2. You live with multiple people who use the same instance,
#    and you're all using the same router/NAT, so you all have
#    the same IP address, and you keep rate limiting each other.
#
# 3. You mostly use your own home internet to access your instance,
#    and you want to exempt your home internet from rate limiting.
#
# You should be careful when adjusting this setting, since you
# might inadvertently make rate limiting useless if you set too
# wide a range. If in doubt, be too restrictive rather than too
# lenient, and adjust as you go.
#
# Example: ["192.168.0.0/16"]
# Default: []
advanced-rate-limit-exceptions: []

# Int. Amount of open requests to permit per CPU, per router grouping, before applying http
# request throttling. Any requests beyond the calculated limit are held in a backlog queue for
# up to 30 seconds before either being processed or timing out. Requests that don't fit in the backlog
# queue will have status 503 returned to them, and the header 'Retry-After' will be set to 30 seconds.
#
# Open request limit is available CPUs * multiplier; backlog queue limit is limit * multiplier.
#
# Example values for multiplier 8:
#
# 1 cpu = 08 open, 064 backlog
# 2 cpu = 16 open, 128 backlog
# 4 cpu = 32 open, 256 backlog
#
# Example values for multiplier 4:
#
# 1 cpu = 04 open, 016 backlog
# 2 cpu = 08 open, 032 backlog
# 4 cpu = 16 open, 064 backlog
#
# A multiplier of 8 is a sensible default, but you may wish to increase this for instances
# running on very performant hardware, or decrease it for instances using v. slow CPUs.
#
# If you set this to 0 or less, http request throttling will be disabled entirely.
#
# Examples: [8, 4, 9, 0]
# Default: 8
advanced-throttling-multiplier: 8

# Duration. Time period to use as the "retry-after" header value in response to throttled requests.
# Minimum resolution is 1 second.
#
# Examples: [30s, 10s, 5s, 1m]
# Default: "30s"
advanced-throttling-retry-after: "30s"

# Int. CPU multiplier for the amount of goroutines to spawn in order to send messages via ActivityPub.
# Messages will be batched so that at most multiplier * CPU count messages will be sent out at once.
# This can be tuned to limit concurrent POSTing to remote inboxes, preventing your instance CPU
# usage from skyrocketing when an account with many followers posts a new status.
#
# Messages are split among available senders, and each sender processes its assigned messages in serial.
# For example, say a user with 1000 followers is on an instance with 2 CPUs. With the default multiplier
# of 2, this means 4 senders would be in process at once on this instance. When the user creates a new post,
# each sender would end up iterating through about 250 Create messages + delivering them to remote instances.
#
# If you set this to 0 or less, only 1 sender will be used regardless of CPU count. This may be
# useful in cases where you are working with very tight network or CPU constraints.
#
# Example values for multiplier 2 (default):
#
# 1 cpu = 2 concurrent senders
# 2 cpu = 4 concurrent senders
# 4 cpu = 8 concurrent senders
#
# Example values for multiplier 4:
#
# 1 cpu = 4 concurrent senders
# 2 cpu = 8 concurrent senders
# 4 cpu = 16 concurrent senders
#
# Example values for multiplier <1:
#
# 1 cpu = 1 concurrent sender
# 2 cpu = 1 concurrent sender
# 4 cpu = 1 concurrent sender
advanced-sender-multiplier: 2

# Array of string. Extra URIs to add to 'img-src' and 'media-src'
# when building the Content-Security-Policy header for your instance.
#
# This can be used to allow the browser to load resources from additional
# sources like S3 buckets and so on when viewing your instance's pages
# and profiles in the browser.
#
# Since non-proxying S3 storage will be probed on instance launch to
# generate a correct Content-Security-Policy, you probably won't need
# to ever touch this setting, but it's included in the 'spirit of more
# configurable (usually) means more good'.
# 
# See: https://developer.mozilla.org/en-US/docs/Web/HTTP/CSP
#
# Example: ["s3.example.org", "some-bucket-name.s3.example.org"]
# Default: []
advanced-csp-extra-uris: []
```
[feature] Start adding advanced configuration options, starting with `samesite` (#628) * fix incorrect port being used for db * start adding advanced config flags * use samesite lax by default 2022-06-03 15:40:38 +02:00			`# Advanced`

			`Advanced settings options are provided for the sake of allowing admins to tune their instance to their liking.`

			`These are set to sensible defaults, so most server admins won't need to touch them or think about them.`

			`Changing these settings if you don't know what you're doing may break your instance.`

			`## Settings`

			```yaml
			`#############################`
			`##### ADVANCED SETTINGS #####`
			`#############################`

			`# Advanced settings pertaining to http timeouts, security, cookies, and more.`
			`#`
			`# ONLY ADJUST THESE SETTINGS IF YOU KNOW WHAT YOU ARE DOING!`
			`#`
			`# Most users will not need to (and should not) touch these settings, since`
			`# they are set to sensible defaults, and may break if they are changed.`
			`#`
			`# Nevertheless, they are provided for the sake of allowing server admins to`
			`# tweak their instance for performance or security reasons.`

			`# String. Value of the SameSite attribute of cookies set by GoToSocial.`
			`# Defaults to 'lax' to ensure that the OIDC flow does not break, which is`
			`# fine in most cases. If you want to harden your instance against CSRF attacks`
			`# and don't mind if some login-related things might break, you can set this`
			`# to 'strict' instead.`
			`#`
			`# For an overview of what this does, see:`
			`# https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Set-Cookie/SameSite`
			`#`
			`# Options: ["lax", "strict"]`
			`# Default: "lax"`
			`advanced-cookies-samesite: "lax"`
[feature] Make rate limit requests amount configurable (#966) * update rate limit documentation * regenerate landingpage config helpers * make rate limit rate configurable 2022-11-06 10:47:48 +01:00
[feature] HTTP request throttling middleware (#1297) * [feature] Add throttling middleware to AP endpoints * refactor a lil bit * use config setting, start updating docs * doc updates * use relative links in faq doc * small docs fixes * return code 503 instead of 429 when throttled * throttle other endpoints too * simplify token channel prefills 2023-01-04 11:57:59 +01:00			`# Int. Amount of requests to permit per router grouping from a single IP address within`
			`# a span of 5 minutes. If this amount is exceeded, a 429 HTTP error code will be returned.`
[feature] Make rate limit requests amount configurable (#966) * update rate limit documentation * regenerate landingpage config helpers * make rate limit rate configurable 2022-11-06 10:47:48 +01:00			`#`
			`# If you find yourself adjusting this limit because it's regularly being exceeded,`
			# you should first verify that your settings for `trusted-proxies` (above) are correct.
			`# In many cases, when the rate limit is exceeded it is because your instance sees all`
			`# incoming requests as coming from the same IP address (you can verify this by looking`
			`# at the client IPs in your instance logs). If this is the case, try adding that IP`
			# address to your `trusted-proxies` BEFORE you go adjusting this rate limit setting!
			`#`
			`# If you set this to 0 or less, rate limiting will be disabled entirely.`
			`#`
			`# Examples: [1000, 500, 0]`
[feature] HTTP request throttling middleware (#1297) * [feature] Add throttling middleware to AP endpoints * refactor a lil bit * use config setting, start updating docs * doc updates * use relative links in faq doc * small docs fixes * return code 503 instead of 429 when throttled * throttle other endpoints too * simplify token channel prefills 2023-01-04 11:57:59 +01:00			`# Default: 300`
			`advanced-rate-limit-requests: 300`

[feature] Add rate limit exceptions option, use ISO8601 for rate limit reset (#2151) * start updating rate limiting, add exceptions * tests, comments, tidying up * add rate limiting exceptions to example config * envparsing * nolint * apply kimbediff * add examples 2023-08-23 14:32:27 +02:00			`# Array of string. CIDRs to except from rate limit restrictions.`
			`# Any IPs inside the CIDR range(s) will not have rate limiting`
			`# applied on their requests, and rate limit headers will not be`
			`# set for those requests.`
			`#`
			`# This can be useful in the following example cases (and probably`
			`# a bunch of others as well):`
			`#`
			`# 1. You've set up an automated service that uses the API, and`
			`# it keeps getting rate limited, even though you trust it's`
			`# not abusing the instance.`
			`#`
			`# 2. You live with multiple people who use the same instance,`
			`# and you're all using the same router/NAT, so you all have`
			`# the same IP address, and you keep rate limiting each other.`
			`#`
			`# 3. You mostly use your own home internet to access your instance,`
			`# and you want to exempt your home internet from rate limiting.`
			`#`
			`# You should be careful when adjusting this setting, since you`
			`# might inadvertently make rate limiting useless if you set too`
			`# wide a range. If in doubt, be too restrictive rather than too`
			`# lenient, and adjust as you go.`
			`#`
			`# Example: ["192.168.0.0/16"]`
			`# Default: []`
			`advanced-rate-limit-exceptions: []`

[feature] HTTP request throttling middleware (#1297) * [feature] Add throttling middleware to AP endpoints * refactor a lil bit * use config setting, start updating docs * doc updates * use relative links in faq doc * small docs fixes * return code 503 instead of 429 when throttled * throttle other endpoints too * simplify token channel prefills 2023-01-04 11:57:59 +01:00			`# Int. Amount of open requests to permit per CPU, per router grouping, before applying http`
[bugfix] Align default values in the configuration file with the code (#1971) * Set default value of SMTPFrom to empty string This parameter should contain proper e-mail address (to be provided by user during configuration). * Update default values in example/config.yaml Default values and related comments in example/config.yaml are aligned with values defined in internal/config/defaults.go. Small improvements to foramting of config.yaml file. * Add default value for AdvancedThrottlingRetryAfter to internal/config/defaults.go AdvancedThrottlingRetryAfter was introduced in 70739d3 (superseriousbusiness/gotosocial#1466). * Update config.yaml snippets in documentation 2023-07-12 10:28:41 +02:00			`# request throttling. Any requests beyond the calculated limit are held in a backlog queue for`
[feature] HTTP request throttling middleware (#1297) * [feature] Add throttling middleware to AP endpoints * refactor a lil bit * use config setting, start updating docs * doc updates * use relative links in faq doc * small docs fixes * return code 503 instead of 429 when throttled * throttle other endpoints too * simplify token channel prefills 2023-01-04 11:57:59 +01:00			`# up to 30 seconds before either being processed or timing out. Requests that don't fit in the backlog`
			`# queue will have status 503 returned to them, and the header 'Retry-After' will be set to 30 seconds.`
			`#`
			`# Open request limit is available CPUs * multiplier; backlog queue limit is limit * multiplier.`
			`#`
			`# Example values for multiplier 8:`
			`#`
			`# 1 cpu = 08 open, 064 backlog`
			`# 2 cpu = 16 open, 128 backlog`
			`# 4 cpu = 32 open, 256 backlog`
			`#`
			`# Example values for multiplier 4:`
			`#`
			`# 1 cpu = 04 open, 016 backlog`
			`# 2 cpu = 08 open, 032 backlog`
			`# 4 cpu = 16 open, 064 backlog`
			`#`
[bugfix] Align default values in the configuration file with the code (#1971) * Set default value of SMTPFrom to empty string This parameter should contain proper e-mail address (to be provided by user during configuration). * Update default values in example/config.yaml Default values and related comments in example/config.yaml are aligned with values defined in internal/config/defaults.go. Small improvements to foramting of config.yaml file. * Add default value for AdvancedThrottlingRetryAfter to internal/config/defaults.go AdvancedThrottlingRetryAfter was introduced in 70739d3 (superseriousbusiness/gotosocial#1466). * Update config.yaml snippets in documentation 2023-07-12 10:28:41 +02:00			`# A multiplier of 8 is a sensible default, but you may wish to increase this for instances`
[feature] HTTP request throttling middleware (#1297) * [feature] Add throttling middleware to AP endpoints * refactor a lil bit * use config setting, start updating docs * doc updates * use relative links in faq doc * small docs fixes * return code 503 instead of 429 when throttled * throttle other endpoints too * simplify token channel prefills 2023-01-04 11:57:59 +01:00			`# running on very performant hardware, or decrease it for instances using v. slow CPUs.`
			`#`
			`# If you set this to 0 or less, http request throttling will be disabled entirely.`
			`#`
			`# Examples: [8, 4, 9, 0]`
			`# Default: 8`
			`advanced-throttling-multiplier: 8`
[chore/performance] Make sender multiplier configurable (#1750) 2023-05-08 19:03:38 +02:00
[bugfix] Align default values in the configuration file with the code (#1971) * Set default value of SMTPFrom to empty string This parameter should contain proper e-mail address (to be provided by user during configuration). * Update default values in example/config.yaml Default values and related comments in example/config.yaml are aligned with values defined in internal/config/defaults.go. Small improvements to foramting of config.yaml file. * Add default value for AdvancedThrottlingRetryAfter to internal/config/defaults.go AdvancedThrottlingRetryAfter was introduced in 70739d3 (superseriousbusiness/gotosocial#1466). * Update config.yaml snippets in documentation 2023-07-12 10:28:41 +02:00			`# Duration. Time period to use as the "retry-after" header value in response to throttled requests.`
			`# Minimum resolution is 1 second.`
			`#`
			`# Examples: [30s, 10s, 5s, 1m]`
			`# Default: "30s"`
			`advanced-throttling-retry-after: "30s"`

[chore/performance] Make sender multiplier configurable (#1750) 2023-05-08 19:03:38 +02:00			`# Int. CPU multiplier for the amount of goroutines to spawn in order to send messages via ActivityPub.`
			`# Messages will be batched so that at most multiplier * CPU count messages will be sent out at once.`
			`# This can be tuned to limit concurrent POSTing to remote inboxes, preventing your instance CPU`
			`# usage from skyrocketing when an account with many followers posts a new status.`
			`#`
			`# Messages are split among available senders, and each sender processes its assigned messages in serial.`
			`# For example, say a user with 1000 followers is on an instance with 2 CPUs. With the default multiplier`
			`# of 2, this means 4 senders would be in process at once on this instance. When the user creates a new post,`
			`# each sender would end up iterating through about 250 Create messages + delivering them to remote instances.`
			`#`
			`# If you set this to 0 or less, only 1 sender will be used regardless of CPU count. This may be`
			`# useful in cases where you are working with very tight network or CPU constraints.`
			`#`
			`# Example values for multiplier 2 (default):`
			`#`
			`# 1 cpu = 2 concurrent senders`
			`# 2 cpu = 4 concurrent senders`
			`# 4 cpu = 8 concurrent senders`
			`#`
			`# Example values for multiplier 4:`
			`#`
			`# 1 cpu = 4 concurrent senders`
			`# 2 cpu = 8 concurrent senders`
			`# 4 cpu = 16 concurrent senders`
			`#`
			`# Example values for multiplier <1:`
			`#`
			`# 1 cpu = 1 concurrent sender`
			`# 2 cpu = 1 concurrent sender`
			`# 4 cpu = 1 concurrent sender`
			`advanced-sender-multiplier: 2`
[feature/bugfix] Probe S3 storage for CSP uri, add config flag for extra URIs (#2134) * [feature/bugfix] Probe S3 storage for CSP uri, add config flag for extra URIs * env parsing tests, my coy mistress 2023-08-20 13:35:55 +02:00
			`# Array of string. Extra URIs to add to 'img-src' and 'media-src'`
			`# when building the Content-Security-Policy header for your instance.`
			`#`
			`# This can be used to allow the browser to load resources from additional`
			`# sources like S3 buckets and so on when viewing your instance's pages`
			`# and profiles in the browser.`
			`#`
			`# Since non-proxying S3 storage will be probed on instance launch to`
			`# generate a correct Content-Security-Policy, you probably won't need`
			`# to ever touch this setting, but it's included in the 'spirit of more`
			`# configurable (usually) means more good'.`
			`#`
			`# See: https://developer.mozilla.org/en-US/docs/Web/HTTP/CSP`
			`#`
			`# Example: ["s3.example.org", "some-bucket-name.s3.example.org"]`
			`# Default: []`
			`advanced-csp-extra-uris: []`
[feature] Start adding advanced configuration options, starting with `samesite` (#628) * fix incorrect port being used for db * start adding advanced config flags * use samesite lax by default 2022-06-03 15:40:38 +02:00			```