Make follow_redirects configurable when checking /.well-known/matrix/client

Discussed in #101 (Github Issue).
development
Slavi Pantaleev 5 years ago
parent bb2b2b4f1c
commit 8bcc9712d0

@ -184,6 +184,12 @@ matrix_nginx_proxy_ssl_protocols: "TLSv1.2 TLSv1.3"
# Controls whether the self-check feature should validate SSL certificates. # Controls whether the self-check feature should validate SSL certificates.
matrix_nginx_proxy_self_check_validate_certificates: true matrix_nginx_proxy_self_check_validate_certificates: true
# Controls whether redirects will be followed when checking the `/.well-known/matrix/client` resource.
#
# As per the spec (https://matrix.org/docs/spec/client_server/r0.6.0#well-known-uri), it shouldn't be,
# so we default to not following redirects as well.
matrix_nginx_proxy_self_check_well_known_matrix_client_follow_redirects: none
# By default, this playbook automatically retrieves and auto-renews # By default, this playbook automatically retrieves and auto-renews
# free SSL certificates from Let's Encrypt. # free SSL certificates from Let's Encrypt.
# #

@ -6,7 +6,7 @@
- path: /.well-known/matrix/client - path: /.well-known/matrix/client
purpose: Client Discovery purpose: Client Discovery
cors: true cors: true
follow_redirects: none follow_redirects: "{{ matrix_nginx_proxy_self_check_well_known_matrix_client_follow_redirects }}"
validate_certs: "{{ matrix_nginx_proxy_self_check_validate_certificates }}" validate_certs: "{{ matrix_nginx_proxy_self_check_validate_certificates }}"
- block: - block:

Loading…
Cancel
Save