Slavi Pantaleev
948c411106
Remove sudo requirement for generating SSL certificates
...
Fixes https://github.com/spantaleev/matrix-docker-ansible-deploy/issues/1492
3 years ago
Slavi Pantaleev
afd7f03bb5
Minor comment changes
3 years ago
Slavi Pantaleev
fa704f104b
Add support for using custom ACME CA servers (other than Let's Encrypt')
...
Fixes https://github.com/spantaleev/matrix-docker-ansible-deploy/issues/1468
3 years ago
Slavi Pantaleev
3a9fe48deb
Make matrix-nginx-proxy's X-Forwarded-For header customizable
...
Fixes https://github.com/spantaleev/matrix-docker-ansible-deploy/issues/1393
3 years ago
Slavi Pantaleev
3b27ce2ff6
Merge pull request #1404 from aaronraimist/v3
...
Allow workers to serve new v3 APIs
3 years ago
Aaron Raimist
f8fe68b385
Allow workers to serve new v3 APIs
...
1f196f59cb
3 years ago
Slavi Pantaleev
b4fb819481
Merge pull request #1403 from borisrunakov/rename-matrix-ma1sd-default-port
...
remove default from variable name
3 years ago
boris runakov
394ecb0acc
remove default from variable name
3 years ago
boris runakov
d3a9ec98de
refactoring
3 years ago
boris runakov
1ec67f49b0
replaced 8008 where possible
3 years ago
Slavi Pantaleev
994c0e504c
Ensure some matrix-nginx-proxy variables are defined
...
Related to https://github.com/spantaleev/matrix-docker-ansible-deploy/pull/1397
3 years ago
b
07496069c8
rellocating variables for consistency
3 years ago
b
7756cc4c8e
replace port 8048 with matrix_synapse_container_default_federation_port
3 years ago
JokerGermany
c0656448f7
Port 80 for IPv6
3 years ago
sakkiii
cd26af2f6f
Certbot Update (v1.20.0 -> v1.21.0)
3 years ago
sakkiii
7a4f49c457
Nginx Minio Update (1.21.3 -> 1.21.4)
3 years ago
Slavi Pantaleev
735c966ab6
Disable systemd services when stopping to uninstall them
...
Until now, we were leaving services "enabled"
(symlinks in /etc/systemd/system/multi-user.target.wants/).
We clean these up now. Broken symlinks may still exist in older
installations that enabled/disabled services. We're not taking care
to fix these up. It's just a cosmetic defect anyway.
3 years ago
b
6eaa8ac65a
add server_name to matrix-synapsel.conf only if matrix_nginx_proxy_enabled
3 years ago
b
dcda17595a
change port 8090 to matrix_ma1sd_default_port
3 years ago
Slavi Pantaleev
06bcdcf9d2
Merge pull request #1311 from HarHarLinks/master
...
add auto proxy synapse worker metrics
3 years ago
Kim Brose
5f6bbafa17
fix space before tab in indent
3 years ago
HarHarLinks
7b33fc8e19
fixup! auto-generate prometheus.yml for workers metrics
3 years ago
HarHarLinks
ce41674e61
auto-generate prometheus.yml for workers metrics
3 years ago
HarHarLinks
4209c4208c
add own variable for worker metrics
...
https://github.com/spantaleev/matrix-docker-ansible-deploy/pull/1311#issuecomment-945718866
3 years ago
Slavi Pantaleev
2bf052369d
Upgrade certbot (v1.19.0 -> v1.20.0)
3 years ago
Kim Brose
1ba7760ea4
add how to generate htpasswd
...
for matrix_nginx_proxy_proxy_synapse_metrics_basic_auth_key
resolves #1308
3 years ago
HarHarLinks
d9fa2f7ed4
add auto proxy synapse worker metrics
...
when matrix_nginx_proxy_proxy_synapse_metrics is enabled
3 years ago
Slavi Pantaleev
31396f0615
Merge pull request #1295 from nogweii/feat-support-upstream-https-forwarded
...
Support trusting the upstream server when it says the protocol is HTTPS
3 years ago
Aaron Raimist
a676b5358c
Fix hydrogen OCSP typo
...
From 6f80292745
3 years ago
Colin Shea
2578ca4cee
rename matrix_nginx_proxy_x_forwarded_header_value -> matrix_nginx_proxy_x_forwarded_proto_value
3 years ago
Colin Shea
d0cd67044e
replace $scheme with X-Forwarded-Proto when enabled
3 years ago
sakkiii
3055b3996e
Updates Certbot -> v1.19.0, nginx ->1.21.3-alpine
3 years ago
sakkiii
ae6caf158a
Added variable matrix_nginx_proxy_request_timeout ( #1265 )
...
* add timeout param for nginx proxy
default value matrix_nginx_proxy_request_timeout is 60s
* default matrix_nginx_proxy_request_timeout - 60s
* few more variables for request timeout
* Update nginx.conf.j2
* Update nginx.conf.j2
3 years ago
Slavi Pantaleev
a911207854
Revert "nginx update v1.21.2"
...
This reverts commit 732051b8fc
.
There's no such container image published yet.
3 years ago
sakkiii
732051b8fc
nginx update v1.21.2
...
http://nginx.org/en/CHANGES
3 years ago
sakkiii
f5a7e6d78b
Certbot update v1.18.0
3 years ago
Michael Collins
4d57a41b3f
remove matrix_awx_enabled from these
3 years ago
Michael Collins
2e30802b87
use group variables instead
3 years ago
Michael Collins
8238d65e5f
simplify template conditional
3 years ago
Michael Collins
bfb61e776e
GMH v0.5.7... maybe!
3 years ago
Slavi Pantaleev
4105ba854b
Merge pull request #1147 from datenkollektiv-net/allow-custom-federation-fqn
...
Make federation domain customizable
3 years ago
JokerGermany
9345d840be
root path for the base domain is wrong ( #1189 )
...
* root path for the base domain
* Fix path when running in a container
Co-authored-by: Slavi Pantaleev <slavi@devture.com>
3 years ago
sakkiii
7a51268dfc
Upgrade certbot & nginx
...
Upgrade certbot (v1.16.0 -> v1.17.0) nginx (1.21.0 -> 1.21.1)
3 years ago
Slavi Pantaleev
6294e58304
Fix Content-Security-Policy for Element
...
Fixes https://github.com/spantaleev/matrix-docker-ansible-deploy/issues/1154
According to
https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Content-Security-Policy ,
having both a header and the `<meta>`-tag provided by Element itself is
not a problem. The 2 CSP policies get combined.
3 years ago
oxmie
5df4d68829
Make federation domain customizable
3 years ago
sakkiii
0217644b48
Content-Security-Policy For Element Web
...
https://github.com/vector-im/element-web#configuration-best-practices
3 years ago
Slavi Pantaleev
963f38ee7b
Upgrade certbot (v1.14.0 -> v1.16.0)
4 years ago
pushytoxin
bee14550ab
Fix local/bin scripts autocompletion by adding rx perms to everyone
...
It's mildly annoying when trying to execute these scripts while logged
in as a regular user, as the missing execute permissions will hinder
autocompletion even when trying to use with sudo.
These shell scripts don't contain secrets, but may fail when ran by a
regular user. The failure is due to the lack of access to the /matrix
directory, and does not result in any damage.
4 years ago
Slavi Pantaleev
4880dcceb0
Fix OCSP-stapling-related errors due to missing resolver
...
Related to https://github.com/spantaleev/matrix-docker-ansible-deploy/pull/1057
4 years ago
rakshazi
4ddd8bbb84
Updated nginx-proxy (1.20.0 -> 1.21.0)
4 years ago