woodpecker/docs/docs/30-administration/10-server-config.md

# Server configuration

## User registration

Registration is closed by default. While disabled an administrator needs to add new users manually (exp. `woodpecker-cli user add`).

If registration is open every user with an account at the configured [SCM](docs/administration/vcs/overview) can login to Woodpecker.
This example enables open registration for users that are members of approved organizations:

```diff
services:
  woodpecker-server:
    image: woodpeckerci/woodpecker-server:latest
    environment:
+     - WOODPECKER_OPEN=true
+     - WOODPECKER_ORGS=dolores,dogpatch
      - WOODPECKER_HOST=${WOODPECKER_HOST}
      - WOODPECKER_GITHUB=true
      - WOODPECKER_GITHUB_CLIENT=${WOODPECKER_GITHUB_CLIENT}
      - WOODPECKER_GITHUB_SECRET=${WOODPECKER_GITHUB_SECRET}
      - WOODPECKER_SECRET=${WOODPECKER_SECRET}
```

## Administrators

Administrators should also be enumerated in your configuration.

```diff
services:
  woodpecker-server:
    image: woodpeckerci/woodpecker-server:latest
    environment:
      - WOODPECKER_OPEN=true
      - WOODPECKER_ORGS=dolores,dogpatch
+     - WOODPECKER_ADMIN=johnsmith,janedoe
      - WOODPECKER_HOST=${WOODPECKER_HOST}
      - WOODPECKER_GITHUB=true
      - WOODPECKER_GITHUB_CLIENT=${WOODPECKER_GITHUB_CLIENT}
      - WOODPECKER_GITHUB_SECRET=${WOODPECKER_GITHUB_SECRET}
      - WOODPECKER_SECRET=${WOODPECKER_SECRET}
```

## Filtering repositories

Woodpecker operates with the user's OAuth permission. Due to the coarse permission handling of GitHub, you may end up syncing more repos into Woodpecker than preferred.

Use the `WOODPECKER_REPO_OWNERS` variable to filter which GitHub user's repos should be synced only. You typically want to put here your company's GitHub name.

```diff
services:
  woodpecker-server:
    image: woodpeckerci/woodpecker-server:latest
    environment:
      - WOODPECKER_OPEN=true
      - WOODPECKER_ORGS=dolores,dogpatch
+     - WOODPECKER_REPO_OWNERS=mycompany,mycompanyossgithubuser
      - WOODPECKER_HOST=${WOODPECKER_HOST}
      - WOODPECKER_GITHUB=true
      - WOODPECKER_GITHUB_CLIENT=${WOODPECKER_GITHUB_CLIENT}
      - WOODPECKER_GITHUB_SECRET=${WOODPECKER_GITHUB_SECRET}
      - WOODPECKER_SECRET=${WOODPECKER_SECRET}
```

## Global registry setting

If you want to make available a specific private registry to all pipelines, use the `WOODPECKER_DOCKER_CONFIG` server configuration.
Point it to your server's docker config.

```diff
# docker-compose.yml
version: '3'

services:
  woodpecker-server:
    image: woodpeckerci/woodpecker-server:latest
    ports:
      - 80:8000
      - 9000
    volumes:
      - woodpecker-server-data:/var/lib/drone/
    restart: always
    environment:
      - WOODPECKER_OPEN=true
      - WOODPECKER_HOST=${WOODPECKER_HOST}
      - WOODPECKER_GITHUB=true
      - WOODPECKER_GITHUB_CLIENT=${WOODPECKER_GITHUB_CLIENT}
      - WOODPECKER_GITHUB_SECRET=${WOODPECKER_GITHUB_SECRET}
      - WOODPECKER_SECRET=${WOODPECKER_SECRET}
+     - WOODPECKER_DOCKER_CONFIG=/home/user/.docker/config.json
```
[Docs] Migrate docs framework to Docusaurus (#282) - Replace mkdocs with docosaurus (improved menu structure, ...) - Structure docs into `Usage` and `Server Setup / Administration` - Update favicon - Create new pipeline-syntax page with all options and links to more detailed docs if available - Add ci to publish to `woodpecker-ci.github.io` - Deploy docs preview to surge for review - Update start-page Co-authored-by: 6543 <6543@obermui.de> 2021-09-11 15:10:32 +00:00			`# Server configuration`

			`## User registration`

Explain open registration setting (#361) 2021-09-26 14:33:55 +00:00			Registration is closed by default. While disabled an administrator needs to add new users manually (exp. `woodpecker-cli user add`).
[Docs] Migrate docs framework to Docusaurus (#282) - Replace mkdocs with docosaurus (improved menu structure, ...) - Structure docs into `Usage` and `Server Setup / Administration` - Update favicon - Create new pipeline-syntax page with all options and links to more detailed docs if available - Add ci to publish to `woodpecker-ci.github.io` - Deploy docs preview to surge for review - Update start-page Co-authored-by: 6543 <6543@obermui.de> 2021-09-11 15:10:32 +00:00
Explain open registration setting (#361) 2021-09-26 14:33:55 +00:00			`If registration is open every user with an account at the configured [SCM](docs/administration/vcs/overview) can login to Woodpecker.`
			`This example enables open registration for users that are members of approved organizations:`
[Docs] Migrate docs framework to Docusaurus (#282) - Replace mkdocs with docosaurus (improved menu structure, ...) - Structure docs into `Usage` and `Server Setup / Administration` - Update favicon - Create new pipeline-syntax page with all options and links to more detailed docs if available - Add ci to publish to `woodpecker-ci.github.io` - Deploy docs preview to surge for review - Update start-page Co-authored-by: 6543 <6543@obermui.de> 2021-09-11 15:10:32 +00:00
			```diff
			`services:`
			`woodpecker-server:`
			`image: woodpeckerci/woodpecker-server:latest`
			`environment:`
			`+ - WOODPECKER_OPEN=true`
			`+ - WOODPECKER_ORGS=dolores,dogpatch`
			`- WOODPECKER_HOST=${WOODPECKER_HOST}`
			`- WOODPECKER_GITHUB=true`
			`- WOODPECKER_GITHUB_CLIENT=${WOODPECKER_GITHUB_CLIENT}`
			`- WOODPECKER_GITHUB_SECRET=${WOODPECKER_GITHUB_SECRET}`
			`- WOODPECKER_SECRET=${WOODPECKER_SECRET}`
			```

			`## Administrators`

			`Administrators should also be enumerated in your configuration.`

			```diff
			`services:`
			`woodpecker-server:`
			`image: woodpeckerci/woodpecker-server:latest`
			`environment:`
			`- WOODPECKER_OPEN=true`
			`- WOODPECKER_ORGS=dolores,dogpatch`
			`+ - WOODPECKER_ADMIN=johnsmith,janedoe`
			`- WOODPECKER_HOST=${WOODPECKER_HOST}`
			`- WOODPECKER_GITHUB=true`
			`- WOODPECKER_GITHUB_CLIENT=${WOODPECKER_GITHUB_CLIENT}`
			`- WOODPECKER_GITHUB_SECRET=${WOODPECKER_GITHUB_SECRET}`
			`- WOODPECKER_SECRET=${WOODPECKER_SECRET}`
			```

			`## Filtering repositories`

			`Woodpecker operates with the user's OAuth permission. Due to the coarse permission handling of GitHub, you may end up syncing more repos into Woodpecker than preferred.`

			Use the `WOODPECKER_REPO_OWNERS` variable to filter which GitHub user's repos should be synced only. You typically want to put here your company's GitHub name.

			```diff
			`services:`
			`woodpecker-server:`
			`image: woodpeckerci/woodpecker-server:latest`
			`environment:`
			`- WOODPECKER_OPEN=true`
			`- WOODPECKER_ORGS=dolores,dogpatch`
			`+ - WOODPECKER_REPO_OWNERS=mycompany,mycompanyossgithubuser`
			`- WOODPECKER_HOST=${WOODPECKER_HOST}`
			`- WOODPECKER_GITHUB=true`
			`- WOODPECKER_GITHUB_CLIENT=${WOODPECKER_GITHUB_CLIENT}`
			`- WOODPECKER_GITHUB_SECRET=${WOODPECKER_GITHUB_SECRET}`
			`- WOODPECKER_SECRET=${WOODPECKER_SECRET}`
			```

			`## Global registry setting`

			If you want to make available a specific private registry to all pipelines, use the `WOODPECKER_DOCKER_CONFIG` server configuration.
			`Point it to your server's docker config.`

			```diff
			`# docker-compose.yml`
			`version: '3'`

			`services:`
			`woodpecker-server:`
			`image: woodpeckerci/woodpecker-server:latest`
			`ports:`
			`- 80:8000`
			`- 9000`
			`volumes:`
			`- woodpecker-server-data:/var/lib/drone/`
			`restart: always`
			`environment:`
			`- WOODPECKER_OPEN=true`
			`- WOODPECKER_HOST=${WOODPECKER_HOST}`
			`- WOODPECKER_GITHUB=true`
			`- WOODPECKER_GITHUB_CLIENT=${WOODPECKER_GITHUB_CLIENT}`
			`- WOODPECKER_GITHUB_SECRET=${WOODPECKER_GITHUB_SECRET}`
			`- WOODPECKER_SECRET=${WOODPECKER_SECRET}`
			`+ - WOODPECKER_DOCKER_CONFIG=/home/user/.docker/config.json`
			```