Add defaults to config cheatsheet, and minor language cleanup. (#3290)

* Add defaults to config cheatsheet, and clean up document.

* Updates and touchups, per review.

1 files changed, 134 insertions, 136 deletions

diff --git a/docs/content/doc/advanced/config-cheat-sheet.en-us.md b/docs/content/doc/advanced/config-cheat-sheet.en-us.md
index 63c4e7a3ed..8adf7b3c5b 100644
--- a/docs/content/doc/advanced/config-cheat-sheet.en-us.md
+++ b/docs/content/doc/advanced/config-cheat-sheet.en-us.md
@@ -15,215 +15,213 @@ menu:
 
 # Configuration Cheat Sheet
 
-This is a cheat sheet for the Gitea configuration file. It is helpful for more fully understanding how it powers Gitea.
+This is a cheat sheet for the Gitea configuration file. It contains all settings that can configured.
 
-Before getting started, make sure you know that any change to the configuration should be made in `custom/conf/app.ini` or any corresponding location.
+Any changes to the Gitea configuration file should be made in `custom/conf/app.ini` or any corresponding location. When installing from a distribution, this will typically be found at `/etc/gitea/conf/app.ini`.
 
-All default settings can be found in [app.ini.sample](https://github.com/go-gitea/gitea/blob/master/custom/conf/app.ini.sample) (replace master in URL with name of tag for released versions). If you see anything which looks like `%(X)s`, it is a feature powered by [ini](https://github.com/go-ini/ini/#recursive-values) for reading values recursively.
-
-Any configuration option that is marked by :exclamation: means that you should keep the default value unless you fully understand what you are doing.
+The defaults provided here are best-effort (not built automatically). They are accurately recorded in [app.ini.sample](https://github.com/go-gitea/gitea/blob/master/custom/conf/app.ini.sample) (s/master/<tag|release\>. Any string in the format `%(X)s` is a feature powered by [ini](https://github.com/go-ini/ini/#recursive-values), for reading values recursively.
 
 Values containing `#` or `;` must be quoted using `` ` `` or `"""`.
 
-**Note** that you have to restart Gitea for changes to take effect.
+**Note:** A full restart is required for Gitea configuration changes to take effect.
 
 ## Overall (`DEFAULT`)
 
-- `APP_NAME`: Application name, change to whatever you want.
-- `RUN_USER`: The user to run Gitea as, we recommend it be `git`; however, change this to whatever your username is if you run Gitea on your personal computer. Gitea may crash if this value is not set properly.
-- `RUN_MODE`: For performance and other purposes, change this to `prod` when deployed to a production environment. The installation process will set this to `prod` automatically.
+- `APP_NAME`: **Gitea: Git with a cup of tea**: Application name, used in the page title.
+- `RUN_USER`: **git**: The user Gitea will run as. This should be a dedicated service (non-user) account. Setting this incorrectly will cause Gitea to not start.
+- `RUN_MODE`: **dev**: For performance and other purposes, change this to `prod` when deployed to a production environment. The installation process will set this to `prod` automatically. \[prod, dev, test\]
 
 ## Repository (`repository`)
 
-- `ROOT`: Root path for storing all users' repository data. It must be an absolute path. The default is `~/<username>/gitea-repositories`.
-- `SCRIPT_TYPE`: The script type your server supports, usually this is `bash`, but some customers report that they only have `sh`.
-- `ANSI_CHARSET`: The default charset for an unrecognized charset.
-- `FORCE_PRIVATE`: Force every new repository to be private.
-- `DEFAULT_PRIVATE`: Default private when create a new repository, could be: `last`, `private` and `public`. Default is last which means last user repo visiblity.
-- `MAX_CREATION_LIMIT`: Global maximum creation limit of repositories per user, `-1` means no limit.
-- `PULL_REQUEST_QUEUE_LENGTH`:exclamation:: Length of pull request patch test queue, make it as large as possible.
-- `MIRROR_QUEUE_LENGTH`: Patch test queue length, increase if pull request patch testing starts hanging. Defaults to 1000.
-- `PREFERRED_LICENSES`: Preferred Licenses to place at the top of the List. Name must match file name in conf/license or custom/conf/license. Defaults to 'Apache License 2.0,MIT License'
-- `DISABLE_HTTP_GIT`: Disable ability to interact with repositories by HTTP protocol.  Defaults to false
-- `USE_COMPAT_SSH_URI`: Force ssh:// clone url instead of scp-style uri when default SSH port is used. Defaults to false.
+- `ROOT`: **~/gitea-repositories/**: Root path for storing all repository data. It must be an absolute path.
+- `SCRIPT_TYPE`: **bash**: The script type your server supports, usually this is `bash`, but some users report that only `sh` is available.
+- `ANSI_CHARSET`: **\<empty\>**: The default charset for an unrecognized charset.
+- `FORCE_PRIVATE`: **false**: Force every new repository to be private.
+- `DEFAULT_PRIVATE`: **last**: Default private when create a new repository. \[last, private, public\]
+- `MAX_CREATION_LIMIT`: **-1**: Global maximum creation limit of repositories per user, `-1` means no limit.
+- `PULL_REQUEST_QUEUE_LENGTH`: **1000**: Length of pull request patch test queue, make it as large as possible. Use caution when editing this value.
+- `MIRROR_QUEUE_LENGTH`: **1000**: Patch test queue length, increase if pull request patch testing starts hanging.
+- `PREFERRED_LICENSES`: **Apache License 2.0,MIT License**: Preferred Licenses to place at the top of the List. Name must match file name in conf/license or custom/conf/license.
+- `DISABLE_HTTP_GIT`: **false**: Disable the ability to interact with repositories over the HTTP protocol.
+- `USE_COMPAT_SSH_URI`: **false**: Force ssh:// clone url instead of scp-style uri when default SSH port is used.
 
 ## UI (`ui`)
 
-- `EXPLORE_PAGING_NUM`: Number of repositories that are shown in one explore page.
-- `ISSUE_PAGING_NUM`: Number of issues that are shown in one page (for all pages that list issues).
-- `FEED_MAX_COMMIT_NUM`: Number of maximum commits shown in one activity feed.
+- `EXPLORE_PAGING_NUM`: **20**: Number of repositories that are shown in one explore page.
+- `ISSUE_PAGING_NUM`: **10**: Number of issues that are shown in one page (for all pages that list issues).
+- `FEED_MAX_COMMIT_NUM`: **5**: Number of maximum commits shown in one activity feed.
 
 ### UI - Admin (`ui.admin`)
 
-- `USER_PAGING_NUM`: Number of users that are shown in one page.
-- `REPO_PAGING_NUM`: Number of repos that are shown in one page.
-- `NOTICE_PAGING_NUM`: Number of notices that are shown in one page.
-- `ORG_PAGING_NUM`: Number of organizations that are shown in one page.
+- `USER_PAGING_NUM`: **50**: Number of users that are shown in one page.
+- `REPO_PAGING_NUM`: **50**: Number of repos that are shown in one page.
+- `NOTICE_PAGING_NUM`: **25**: Number of notices that are shown in one page.
+- `ORG_PAGING_NUM`: **50**: Number of organizations that are shown in one page.
 
 ## Markdown (`markdown`)
 
-- `ENABLE_HARD_LINE_BREAK`: Whether or not to enable hard the line break extension.
+- `ENABLE_HARD_LINE_BREAK`: **false**: Whether or not to enable hard the line break extension.
 
 ## Server (`server`)
 
-- `PROTOCOL`: Either `http`, `https`, `fcgi`, or `unix`.
-- `DOMAIN`: Domain name of your server.
-- `ROOT_URL`: Full public URL of Gitea server.
-- `HTTP_ADDR`: HTTP listen address. If `PROTOCOL` is set to `fcgi`, Gitea will listen for FastCGI requests on TCP socket defined by `HTTP_ADDR` and `HTTP_PORT` configuration settings. If `PROTOCOL` is set to `unix`, this should be the name of the Unix socket file to use.
-- `HTTP_PORT`: HTTP listen port. If `PROTOCOL` is set to `fcgi`, Gitea will listen for FastCGI requests on TCP socket defined by `HTTP_ADDR` and `HTTP_PORT` configuration settings.
-- `UNIX_SOCKET_PERMISSION`: Permisson mode for Unix socket, default is 666.
-- `DISABLE_SSH`: Disables SSH feature when it's not available.
-- `START_SSH_SERVER`: Starts built-in SSH server when enabled.
-- `SSH_DOMAIN`: Domain name of your ssh server.
-- `SSH_PORT`: SSH port displayed in clone URL, in case yours is not `22`.
-- `SSH_LISTEN_PORT`: Port for the built-in SSH server. Defaults to `SSH_PORT`.
-- `OFFLINE_MODE`: Disables use of CDN for static files and Gravatar for profile pictures.
-- `DISABLE_ROUTER_LOG`: Mutes printing of the router log.
-- `CERT_FILE`: Cert file path used for HTTPS.
-- `KEY_FILE`: Key file path used for HTTPS.
-- `STATIC_ROOT_PATH`: Upper level of template and static files path, default is the path where Gitea is located.
-- `ENABLE_GZIP`: Enables application-level GZIP support.
-- `LANDING_PAGE`: Non-logged-in users' landing page, either `home` or `explore`.
-- `LFS_START_SERVER`: Enables git-lfs support. `true` or `false`, default is `false`.
-- `LFS_CONTENT_PATH`: Where your lfs files put on, default is `data/lfs`.
-- `LFS_JWT_SECRET`: LFS authentication secret, changed this to yourself.
-- `REDIRECT_OTHER_PORT`: If true and `PROTOCOL` is https, redirects http requests on another port to `ROOT_URL`, default is `false`.
-- `PORT_TO_REDIRECT`: Port used when `REDIRECT_OTHER_PORT` is true, default is `80`.
+- `PROTOCOL`: **http**: Either `http`, `https`, `fcgi`, or `unix`.
+- `DOMAIN`: **localhost**: Domain name of your server.
+- `ROOT_URL`: **%(PROTOCOL)s://%(DOMAIN)s:%(HTTP\_PORT)s/**: Full public URL of Gitea server.
+- `HTTP_ADDR`: **0.0.0.0**: HTTP listen address.
+   - If `PROTOCOL` is set to `fcgi`, Gitea will listen for FastCGI requests on TCP socket defined by `HTTP_ADDR` and `HTTP_PORT` configuration settings.
+   - If `PROTOCOL` is set to `unix`, this should be the name of the Unix socket file to use.
+- `HTTP_PORT`: **3000**: HTTP listen port.
+   - If `PROTOCOL` is set to `fcgi`, Gitea will listen for FastCGI requests on TCP socket defined by `HTTP_ADDR` and `HTTP_PORT` configuration settings.
+- `UNIX_SOCKET_PERMISSION`: **666**: Permisson mode for Unix socket.
+- `DISABLE_SSH`: **false**: Disables SSH feature when it's not available.
+- `START_SSH_SERVER`: **false**: When enabled, uses the built-in SSH server.
+- `SSH_DOMAIN`: **%(DOMAIN)s**: Domain name of your ssh server, used for displayed clone URL.
+- `SSH_PORT`: **22**: SSH port displayed in clone URL.
+- `SSH_LISTEN_PORT`: **%(SSH\_PORT)s**: Port for the built-in SSH server.
+- `OFFLINE_MODE`: **false**: Disables use of CDN for static files and Gravatar for profile pictures.
+- `DISABLE_ROUTER_LOG`: **false**: Mutes printing of the router log.
+- `CERT_FILE`: **custom/https/cert.pem**: Cert file path used for HTTPS.
+- `KEY_FILE`: **custom/https/key.pem**: Key file path used for HTTPS.
+- `STATIC_ROOT_PATH`: **./**: Upper level of template and static files path.
+- `ENABLE_GZIP`: **false**: Enables application-level GZIP support.
+- `LANDING_PAGE`: **home**: Landing page for unauthenticated users, either `home` or `explore`.
+- `LFS_START_SERVER`: **false**: Enables git-lfs support.
+- `LFS_CONTENT_PATH`: **./data/lfs**: Where to store lfs files.
+- `LFS_JWT_SECRET`: **\<empty\>**: LFS authentication secret, change this a unique string.
+- `REDIRECT_OTHER_PORT`: **false**: If true and `PROTOCOL` is https, redirects http requests on another (https) port.
+- `PORT_TO_REDIRECT`: **80**: Port used when `REDIRECT_OTHER_PORT` is true.
 
 ## Database (`database`)
 
-- `DB_TYPE`: The database type you choose, either `mysql`, `postgres`, `mssql` or `sqlite3`.
-- `HOST`: Database host address and port.
-- `NAME`: Database name.
-- `USER`: Database username.
-- `PASSWD`: Database user password.
-- `SSL_MODE`: For PostgreSQL only.
-- `PATH`: For SQLite3 only, the database file path.
+- `DB_TYPE`: **mysql**: The database type you choose, either `mysql`, `postgres`, `mssql` or `sqlite3`.
+- `HOST`: **127.0.0.1:3306**: Database host address and port.
+- `NAME`: **gitea**: Database name.
+- `USER`: **root**: Database username.
+- `PASSWD`: **\<empty\>**: Database user password.
+- `SSL_MODE`: **disable**: For PostgreSQL only.
+- `PATH`: **data/gitea.db**: For SQLite3 only, the database file path.
 
 ## Security (`security`)
 
-- `INSTALL_LOCK`: Indicates whether to allow the open install page (setting admin account is involved, so it's a very important value).
-- `SECRET_KEY`: Global secret key for your server security, **you'd better change it** (will generate a random string every time you install).
-- `LOGIN_REMEMBER_DAYS`: Cookie lifetime, in days.
-- `COOKIE_USERNAME`: Name of the cookie that saves username.
-- `COOKIE_REMEMBER_NAME`: Name of cookie that saves auto-login information.
-- `REVERSE_PROXY_AUTHENTICATION_USER`: Header name for reverse proxy authentication username.
-- `DISABLE_GIT_HOOKS`: Prevent all users (including admin) from creating custom git hooks (defaults to false)
+- `INSTALL_LOCK`: **false**: Disable to allow accessing the install page.
+- `SECRET_KEY`: **random at every install**: Global secret key. This should be changed.
+- `LOGIN_REMEMBER_DAYS`: **7**: Cookie lifetime, in days.
+- `COOKIE_USERNAME`: **gitea\_awesome**: Name of the cookie used to store the current username.
+- `COOKIE_REMEMBER_NAME`: **gitea\_incredible**: Name of cookie used to store authentication information.
+- `REVERSE_PROXY_AUTHENTICATION_USER`: **X-WEBAUTH-USER**: Header name for reverse proxy authentication.
+- `DISABLE_GIT_HOOKS`: **false**: Prevent all users (including admin) from creating custom git hooks.
 
 ## OpenID (`openid`)
 
-- `ENABLE_OPENID_SIGNIN`: Whether to allow signin in via OpenID (defaults to false).
-- `ENABLE_OPENID_SIGNUP`: Whether to allow registering via OpenID (defaults to `!DISABLE_REGISTRATION`).
-- `WHITELISTED_URIS`: Space separated list of POSIX regexp patterns. If non empty OpenID URIs should match any of these to be granted access.
-- `BLACKLISTED_URIS`: Space separated list of POSIX regexp pattenrs. OpenID URI matching any of these is refused access.
+- `ENABLE_OPENID_SIGNIN`: **false**: Allow authentication in via OpenID.
+- `ENABLE_OPENID_SIGNUP`: **! DISABLE\_REGISTRATION**: Allow registering via OpenID.
+- `WHITELISTED_URIS`: **\<empty\>**: If non-empty, list of POSIX regex patterns matching OpenID URI's to permit.
+- `BLACKLISTED_URIS`: **\<empty\>**: If non-empty, list of POSIX regex patterns matching OpenID URI's to block.
 
 ## Service (`service`)
 
-- `ACTIVE_CODE_LIVE_MINUTES`: The minutes of active code life time.
-- `RESET_PASSWD_CODE_LIVE_MINUTES`: The minutes of reset password code life time.
-- `REGISTER_EMAIL_CONFIRM`: Enable this to ask for mail confirmation of registration, requires `Mailer` to be enabled.
-- `DISABLE_REGISTRATION`: Disable registration, after which only admin can create accounts for users.
-- `SHOW_REGISTRATION_BUTTON`: Indicate whether to show registration button or not.
-- `REQUIRE_SIGNIN_VIEW`: Enable this to force users to log in to view any page.
-- `ENABLE_CACHE_AVATAR`: Enable this to cache avatar from Gravatar.
-- `ENABLE_NOTIFY_MAIL`: Enable this to send e-mail to watchers of repository when something happens like creating issues, requires `Mailer` to be enabled.
-- `ENABLE_REVERSE_PROXY_AUTHENTICATION`: Enable this to allow reverse proxy authentication, more detail: https://github.com/gogits/gogs/issues/165
-- `ENABLE_REVERSE_PROXY_AUTO_REGISTRATION`: Enable this to allow auto-registration for reverse authentication.
-- `DISABLE_MINIMUM_KEY_SIZE_CHECK`: Do not check minimum key size with corresponding type.
-- `ENABLE_CAPTCHA`: Enable this to use captcha validation for registration.
+- `ACTIVE_CODE_LIVE_MINUTES`: **180**: Time limit (min) to confirm account/email registration.
+- `RESET_PASSWD_CODE_LIVE_MINUTES`: **180**: Time limit (min) to confirm forgot password reset process.
+- `REGISTER_EMAIL_CONFIRM`: **false**: Enable this to ask for mail confirmation of registration. Requires `Mailer` to be enabled.
+- `DISABLE_REGISTRATION`: **false**: Disable registration, after which only admin can create accounts for users.
+- `REQUIRE_SIGNIN_VIEW`: **false**: Enable this to force users to log in to view any page.
+- `ENABLE_NOTIFY_MAIL`: **false**: Enable this to send e-mail to watchers of a repository when something happens, like creating issues. Requires `Mailer` to be enabled.
+- `ENABLE_REVERSE_PROXY_AUTHENTICATION`: **false**: Enable this to allow reverse proxy authentication.
+- `ENABLE_REVERSE_PROXY_AUTO_REGISTRATION`: **false**: Enable this to allow auto-registration for reverse authentication.
+- `ENABLE_CAPTCHA`: **true**: Enable this to use captcha validation for registration.
 
 ## Webhook (`webhook`)
 
-- `QUEUE_LENGTH`:exclamation:: Hook task queue length.
-- `DELIVER_TIMEOUT`: Delivery timeout in seconds for shooting webhooks.
-- `SKIP_TLS_VERIFY`: Indicate whether to allow insecure certification or not.
-- `PAGING_NUM`: Number of webhook history that are shown in one page.
+- `QUEUE_LENGTH`: **1000**: Hook task queue length. Use caution when editing this value.
+- `DELIVER_TIMEOUT`: **5**: Delivery timeout (sec) for shooting webhooks.
+- `SKIP_TLS_VERIFY`: **false**: Allow insecure certification.
+- `PAGING_NUM`: **10**: Number of webhook history events that are shown in one page.
 
 ## Mailer (`mailer`)
 
-- `ENABLED`: Enable this to use a mail service.
-- `DISABLE_HELO`: Disable HELO operation.
-- `HELO_HOSTNAME`: Custom hostname for HELO operation.
-- `HOST`: SMTP mail host address and port (example: smtp.gitea.io:587).
-- `FROM`: Mail from address, RFC 5322. This can be just an email address, or the "Name" \<email@example.com\> format.
-- `USER`: Username of mailer (usually just your e-mail address).
-- `PASSWD`: Password of mailer.
-- `SKIP_VERIFY`: Do not verify the self-signed certificates.
-- `USE_SENDMAIL`: Use the operating system's `sendmail` command instead of SMTP.  This is common on linux systems.  Valid values are `true` to use sendmail and `false` to use SMTP (default).  Note that enabling sendmail will ignore all other `mailer` settings except `ENABLED`, `FROM` and `SENDMAIL_PATH`.
-- `SENDMAIL_PATH`: The location of sendmail on the operating system. This can be an absolute path (eg: `/usr/sbin/sendmail`) or just the name of the command (eg: `sendmail` - default) if it can be found in the `PATH` environment variable.
-
-Note: Actually, Gitea supports only SMTP with STARTTLS.
+- `ENABLED`: **false**: Enable to use a mail service.
+- `DISABLE_HELO`: **\<empty\>**: Disable HELO operation.
+- `HELO_HOSTNAME`: **\<empty\>**: Custom hostname for HELO operation.
+- `HOST`: **\<empty\>**: SMTP mail host address and port (example: smtp.gitea.io:587).
+- `FROM`: **\<empty\>**: Mail from address, RFC 5322. This can be just an email address, or the "Name" \<email@example.com\> format.
+- `USER`: **\<empty\>**: Username of mailing user (usually the sender's e-mail address).
+- `PASSWD`: **\<empty\>**: Password of mailing user.
+- `SKIP_VERIFY`: **\<empty\>**: Do not verify the self-signed certificates.
+   - **Note:** Gitea only supports SMTP with STARTTLS.
+- `USE_SENDMAIL`: **false** Use the operating system's `sendmail` command instead of SMTP. This is common on linux systems.
+   - Note that enabling sendmail will ignore all other `mailer` settings except `ENABLED`, `FROM` and `SENDMAIL_PATH`.
+- `SENDMAIL_PATH`: **sendmail**: The location of sendmail on the operating system. (can be command or full path)
 
 ## Cache (`cache`)
 
-- `ADAPTER`: Cache engine adapter, either `memory`, `redis`, or `memcache`. If you want to use `redis` or `memcache`, be sure to rebuild everything with build tags `redis` or `memcache`: `go build -tags='redis'`.
-- `INTERVAL`: for memory cache only, GC interval in seconds.
-- `HOST`: For redis and memcache, the host address and port number.
+- `ADAPTER`: **memory**: Cache engine adapter, either `memory`, `redis`, or `memcache`. If you want to use `redis` or `memcache`, be sure to rebuild everything with build tags `redis` or `memcache`: `go build -tags='redis'`.
+- `INTERVAL`: **60**: Garbage Collection interval (sec), for memory cache only.
+- `HOST`: **\<empty\>**: Connection string for `redis` and `memcache`.
     - Redis: `network=tcp,addr=127.0.0.1:6379,password=macaron,db=0,pool_size=100,idle_timeout=180`
     - Memache: `127.0.0.1:9090;127.0.0.1:9091`
 
 ## Session (`session`)
 
-- `PROVIDER`: Session engine provider, either `memory`, `file`, `redis`, or `mysql`.
-- `PROVIDER_CONFIG`: For file, it's the root path; for others, it's the host address and port number.
-- `COOKIE_SECURE`: Enable this to force using HTTPS for all session access.
-- `COOKIE_NAME`: The name of the cookie used for the session ID, defaults to `i_like_gitea`.
-- `GC_INTERVAL_TIME`: GC interval in seconds.
+- `PROVIDER`: **memory**: Session engine provider, either `memory`, `file`, `redis`, or `mysql`.
+- `PROVIDER_CONFIG`: **data/sessions**: For file, the root path; for others, the connection string.
+- `COOKIE_SECURE`: **false**: Enable this to force using HTTPS for all session access.
+- `COOKIE_NAME`: **i\_like\_gitea**: The name of the cookie used for the session ID, defaults to `i_like_gitea`.
+- `GC_INTERVAL_TIME`: **86400**: GC interval in seconds.
 
 ## Picture (`picture`)
 
-- `GRAVATAR_SOURCE`: Can be `gravatar`, `duoshuo` or anything like `http://cn.gravatar.com/avatar/`.
-- `DISABLE_GRAVATAR`: Enable this to use local avatars only.
-- `ENABLE_FEDERATED_AVATAR`: Enable support for federated avatars (see http://www.libravatar.org)
-- `AVATAR_UPLOAD_PATH`: Path to store local and cached files.
+- `GRAVATAR_SOURCE`: **gravatar**: Can be `gravatar`, `duoshuo` or anything like `http://cn.gravatar.com/avatar/`.
+- `DISABLE_GRAVATAR`: **false**: Enable this to use local avatars only.
+- `ENABLE_FEDERATED_AVATAR`: **false**: Enable support for federated avatars (see http://www.libravatar.org)
+- `AVATAR_UPLOAD_PATH`: **data/avatars**: Path to store local and cached files.
 
 ## Attachment (`attachment`)
 
-- `ENABLED`: Enable this to allow users upload attachments.
-- `PATH`: Path to store attachments.
-- `ALLOWED_TYPES`: Allowed MIME types, e.g. `image/jpeg|image/png`, use `*/*` for all types.
-- `MAX_SIZE`: Maximum size in MB, e.g. `4`
-- `MAX_FILES`: Maximum number of attachments can be uploaded at once, e.g. `5`.
+- `ENABLED`: **true**: Enable this to allow uploading attachments.
+- `PATH`: **data/attachments**: Path to store attachments.
+- `ALLOWED_TYPES`: **see app.ini.sample**: Allowed MIME types, e.g. `image/jpeg|image/png`, use `*/*` for all types.
+- `MAX_SIZE`: **4**: Maximum size (MB).
+- `MAX_FILES`: **5**: Maximum number of attachments that can be uploaded at once.
 
 ## Log (`log`)
 
-- `ROOT_PATH`: Root path for log files.
-- `MODE`: Logging mode, default is `console`. For multiple modes, use comma to separate it.
-- `LEVEL`: General log level, default is `Trace`.
+- `ROOT_PATH`: **\<empty\>**: Root path for log files.
+- `MODE`: **console**: Logging mode. For multiple modes, use a comma to separate values.
+- `LEVEL`: **Trace**: General log level. \[Trace, Debug, Info, Warn, Error, Critical\]
 
 ## Cron (`cron`)
 
-- `ENABLED`: Enable this to run cron tasks periodically.
-- `RUN_AT_START`: Enable this to run cron tasks at start time.
+- `ENABLED`: **true**: Run cron tasks periodically.
+- `RUN_AT_START`: **false**: Run cron tasks at application start-up.
 
 ### Cron - Cleanup old repository archives (`cron.archive_cleanup`)
 
-- `ENABLED`: Enable service. Defaults to true.
-- `RUN_AT_START`: Run tasks at start up time (if ENABLED). Defaults to true.
-- `SCHEDULE`: Cron syntax for scheduling repository archive cleanup, e.g. `@every 1h`. Defaults to `@every 24h`.
-- `OLDER_THAN`: Archives created more than `OLDER_THAN` ago are subject to deletion, e.g. `12h`. Defaults to `24h`.
+- `ENABLED`: **true**: Enable service.
+- `RUN_AT_START`: **true**: Run tasks at start up time (if ENABLED).
+- `SCHEDULE`: **@every 24h**: Cron syntax for scheduling repository archive cleanup, e.g. `@every 1h`.
+- `OLDER_THAN`: **24h**: Archives created more than `OLDER_THAN` ago are subject to deletion, e.g. `12h`.
 
 ### Cron - Update Mirrors (`cron.update_mirrors`)
 
-- `SCHEDULE`: Cron syntax for scheduling update mirrors, e.g. `@every 1h`.
+- `SCHEDULE`: **@every 10m**: Cron syntax for scheduling update mirrors, e.g. `@every 3h`.
 
 ### Cron - Repository Health Check (`cron.repo_health_check`)
 
-- `SCHEDULE`: Cron syntax for scheduling repository health check, e.g. `@every 24h`.
-- `TIMEOUT`: Time duration syntax for health check execution timeout, e.g. `60s`.
-- `ARGS`: Arguments for command `git fsck`, e.g. `--unreachable --tags`.
+- `SCHEDULE`: **every 24h**: Cron syntax for scheduling repository health check.
+- `TIMEOUT`: **60s**: Time duration syntax for health check execution timeout.
+- `ARGS`: **\<empty\>**: Arguments for command `git fsck`, e.g. `--unreachable --tags`.
 
 ### Cron - Repository Statistics Check (`cron.check_repo_stats`)
 
-- `RUN_AT_START`: Enable this to run repository statistics check at start time.
-- `SCHEDULE`: Cron syntax for scheduling repository statistics check, e.g. `@every 24h`.
+- `RUN_AT_START`: **true**: Run repository statistics check at start time.
+- `SCHEDULE`: **@every 24h**: Cron syntax for scheduling repository statistics check.
 
 ## Git (`git`)
 
-- `MAX_GIT_DIFF_LINES`: Max number of lines allowed of a single file in diff view.
-- `MAX_GIT_DIFF_LINE_CHARACTERS`: Max number of characters of a line allowed in diff view.
-- `MAX_GIT_DIFF_FILES`: Max number of files shown in diff view.
-- `GC_ARGS`: Arguments for command `git gc`, e.g. `--aggressive --auto`.
+- `MAX_GIT_DIFF_LINES`: **100**: Max number of lines allowed of a single file in diff view.
+- `MAX_GIT_DIFF_LINE_CHARACTERS`: **5000**: Max character count per line highlighted in diff view.
+- `MAX_GIT_DIFF_FILES`: **100**: Max number of files shown in diff view.
+- `GC_ARGS`: **\<empty\>**: Arguments for command `git gc`, e.g. `--aggressive --auto`.
 
 ## markup (`markup`)
 
@@ -245,6 +243,6 @@ IS_INPUT_FILE = false
 
 ## Other (`other`)
 
-- `SHOW_FOOTER_BRANDING`: Enable this to show Gitea branding in the footer.
-- `SHOW_FOOTER_VERSION`: Enable this to show Gitea version information in the footer.
-- `SHOW_FOOTER_TEMPLATE_LOAD_TIME`: Enable this to show time of template execution in the footer.
+- `SHOW_FOOTER_BRANDING`: **false**: Show Gitea branding in the footer.
+- `SHOW_FOOTER_VERSION`: **true**: Show Gitea version information in the footer.
+- `SHOW_FOOTER_TEMPLATE_LOAD_TIME`: **true**: Show time of template execution in the footer.