Ronni Baslund
9bc89bcd5d
ci / changes (push) Successful in 4s
ci / tc_portal (push) Has been skipped
ci / tc_booking (push) Has been skipped
ci / tc_operator (push) Has been skipped
ci / tc_platform_api (push) Has been skipped
ci / test_platform_api (push) Has been skipped
ci / build_portal (push) Has been skipped
ci / build_booking (push) Has been skipped
ci / build_operator (push) Has been skipped
ci / build_platform_api (push) Has been skipped
ci / tc_website (push) Has been skipped
ci / build_zpush (push) Successful in 17s
ci / deploy (push) Successful in 25s
include/z_caldav.php needs XMLDocument.php from AWL (Andrew's Web Libraries); the Debian z-push packages pull php-awl in automatically but bookworm dropped the package, so vendor it from upstream at r0.65 into /usr/share/awl/inc (already on Z-Push's include_path). Only surfaces on *authenticated* requests: combined login hits IMAP first, so fake-credential smoke tests never reach the CalDAV class. Hardening from the same incident: a build-time class-load smoke test fails the image if any backend dependency is missing, and zend.exception_ignore_args stops uncaught fatals from logging the raw passwords Z-Push passes through Logon().
15 lines
551 B
INI
15 lines
551 B
INI
; Z-Push runtime tuning. EAS Ping requests are long-poll (Z-Push's own
|
|
; SCRIPT_TIMEOUT handles per-command limits) and Sync payloads can carry
|
|
; attachments, hence the raised execution time and body sizes.
|
|
memory_limit = 256M
|
|
max_execution_time = 900
|
|
post_max_size = 32M
|
|
upload_max_filesize = 32M
|
|
log_errors = On
|
|
error_log = /dev/stderr
|
|
display_errors = Off
|
|
expose_php = Off
|
|
; Never capture function arguments in exception traces — Z-Push passes raw
|
|
; passwords through Logon(), and an uncaught fatal would log them.
|
|
zend.exception_ignore_args = 1
|