Aine
701591e87e
Added retries to the docker pulls
3 years ago
Alejo Diaz
4ec24ec344
Add support for obtain ECDSA keys ( #1667 )
...
* Add support for obtain ECDSA keys
* Replace matrix_ssl_lets_encrypt_use_ecdsa_keys for matrix_ssl_lets_encrypt_key_type
3 years ago
GoliathLabs
e53cc026d0
Updated: certbot to v1.23.0
3 years ago
Marko Weltzer
819574b8ba
Merge branch 'spantaleev:master' into master
3 years ago
Marko Weltzer
7e5b88c3b7
fix: all praise the allmighty yamllinter
3 years ago
Slavi Pantaleev
86c36523df
Replace ExecStopPost with ExecStop
...
Reverts b1b4ba501f
, 90c9801c56
, a3c84f78ca
, ..
I haven't really traced it (yet), but on some servers, I'm observing
`ansible-playbook ... --tags=start` completing very slowly, waiting
to stop services. I can't reproduce this on all Matrix servers I manage.
I suspect that either the systemd version is to blame or that some
specific service is not responding well to some `docker kill/rm` command.
`ExecStop` seems to work great in all cases and it's what we've been
using for a very long time, so I'm reverting to that.
3 years ago
GoliathLabs
33851f1dfa
Updated: nginx to 1.21.6-alpine
3 years ago
Wm Salt Hale
3aa8c1f62c
only enable openssl if necessary
3 years ago
GoliathLabs
b608c3d342
Updated: worker_processes to auto
3 years ago
GoliathLabs
8a66db850e
Updated: Certbot to v1.22.0
3 years ago
Slavi Pantaleev
29bc22a085
Add matrix_nginx_proxy_container_additional_networks
...
Fixes https://github.com/spantaleev/matrix-docker-ansible-deploy/issues/1498
3 years ago
Slavi Pantaleev
27a4871aea
Fix variable name typo
3 years ago
Slavi Pantaleev
3b9d5b13e9
Add support for not serving Dendrite federation APIs on the client port
...
Seems like Dendrite encourages serving both the Client and Federation
API at the same port.
Coming from Synapse and how things are done there, we have separate
ports. Using separate ports probably makes matrix-corporal (etc.)
integration easier, so separating the APIs by default probably makes
sense.
3 years ago
Slavi Pantaleev
ecc237bbad
Initial work on getting nginx reverse proxying working with Dendrite
3 years ago
rakshazi
5788a16a2e
added matrix-client-cinny
3 years ago
Slavi Pantaleev
b1b4ba501f
Replace ExecStop with ExecStopPost
...
ExecStopPost should allow us to clean up (docker kill + docker rm)
even if the ExecStart (docker run ..) command failed, and not just after
a graceful service stop was initiated.
Source: https://www.freedesktop.org/software/systemd/man/systemd.service.html#ExecStopPost=
3 years ago
Slavi Pantaleev
8515ac55e6
Upgrade nginx (1.21.4 -> 1.21.5)
3 years ago
Slavi Pantaleev
948c411106
Remove sudo requirement for generating SSL certificates
...
Fixes https://github.com/spantaleev/matrix-docker-ansible-deploy/issues/1492
3 years ago
Slavi Pantaleev
afd7f03bb5
Minor comment changes
3 years ago
Slavi Pantaleev
fa704f104b
Add support for using custom ACME CA servers (other than Let's Encrypt')
...
Fixes https://github.com/spantaleev/matrix-docker-ansible-deploy/issues/1468
3 years ago
Slavi Pantaleev
3a9fe48deb
Make matrix-nginx-proxy's X-Forwarded-For header customizable
...
Fixes https://github.com/spantaleev/matrix-docker-ansible-deploy/issues/1393
3 years ago
Slavi Pantaleev
3b27ce2ff6
Merge pull request #1404 from aaronraimist/v3
...
Allow workers to serve new v3 APIs
3 years ago
Aaron Raimist
f8fe68b385
Allow workers to serve new v3 APIs
...
1f196f59cb
3 years ago
Slavi Pantaleev
b4fb819481
Merge pull request #1403 from borisrunakov/rename-matrix-ma1sd-default-port
...
remove default from variable name
3 years ago
boris runakov
394ecb0acc
remove default from variable name
3 years ago
boris runakov
d3a9ec98de
refactoring
3 years ago
boris runakov
1ec67f49b0
replaced 8008 where possible
3 years ago
Slavi Pantaleev
994c0e504c
Ensure some matrix-nginx-proxy variables are defined
...
Related to https://github.com/spantaleev/matrix-docker-ansible-deploy/pull/1397
3 years ago
b
07496069c8
rellocating variables for consistency
3 years ago
b
7756cc4c8e
replace port 8048 with matrix_synapse_container_default_federation_port
3 years ago
JokerGermany
c0656448f7
Port 80 for IPv6
3 years ago
sakkiii
cd26af2f6f
Certbot Update (v1.20.0 -> v1.21.0)
3 years ago
sakkiii
7a4f49c457
Nginx Minio Update (1.21.3 -> 1.21.4)
3 years ago
Slavi Pantaleev
735c966ab6
Disable systemd services when stopping to uninstall them
...
Until now, we were leaving services "enabled"
(symlinks in /etc/systemd/system/multi-user.target.wants/).
We clean these up now. Broken symlinks may still exist in older
installations that enabled/disabled services. We're not taking care
to fix these up. It's just a cosmetic defect anyway.
3 years ago
b
6eaa8ac65a
add server_name to matrix-synapsel.conf only if matrix_nginx_proxy_enabled
3 years ago
b
dcda17595a
change port 8090 to matrix_ma1sd_default_port
3 years ago
Slavi Pantaleev
06bcdcf9d2
Merge pull request #1311 from HarHarLinks/master
...
add auto proxy synapse worker metrics
3 years ago
Kim Brose
5f6bbafa17
fix space before tab in indent
3 years ago
HarHarLinks
7b33fc8e19
fixup! auto-generate prometheus.yml for workers metrics
3 years ago
HarHarLinks
ce41674e61
auto-generate prometheus.yml for workers metrics
3 years ago
HarHarLinks
4209c4208c
add own variable for worker metrics
...
https://github.com/spantaleev/matrix-docker-ansible-deploy/pull/1311#issuecomment-945718866
3 years ago
Slavi Pantaleev
2bf052369d
Upgrade certbot (v1.19.0 -> v1.20.0)
3 years ago
Kim Brose
1ba7760ea4
add how to generate htpasswd
...
for matrix_nginx_proxy_proxy_synapse_metrics_basic_auth_key
resolves #1308
3 years ago
HarHarLinks
d9fa2f7ed4
add auto proxy synapse worker metrics
...
when matrix_nginx_proxy_proxy_synapse_metrics is enabled
3 years ago
Slavi Pantaleev
31396f0615
Merge pull request #1295 from nogweii/feat-support-upstream-https-forwarded
...
Support trusting the upstream server when it says the protocol is HTTPS
3 years ago
Aaron Raimist
a676b5358c
Fix hydrogen OCSP typo
...
From 6f80292745
3 years ago
Colin Shea
2578ca4cee
rename matrix_nginx_proxy_x_forwarded_header_value -> matrix_nginx_proxy_x_forwarded_proto_value
3 years ago
Colin Shea
d0cd67044e
replace $scheme with X-Forwarded-Proto when enabled
3 years ago
sakkiii
3055b3996e
Updates Certbot -> v1.19.0, nginx ->1.21.3-alpine
3 years ago
sakkiii
ae6caf158a
Added variable matrix_nginx_proxy_request_timeout ( #1265 )
...
* add timeout param for nginx proxy
default value matrix_nginx_proxy_request_timeout is 60s
* default matrix_nginx_proxy_request_timeout - 60s
* few more variables for request timeout
* Update nginx.conf.j2
* Update nginx.conf.j2
3 years ago