Slavi Pantaleev
227d9d8209
Fix variable name typo
2 years ago
Slavi Pantaleev
8db2c0498a
Upgrade Synapse (v1.77.0 -> v1.78.0)
2 years ago
Slavi Pantaleev
d6371a0781
Upgrade ddclient (v3.10.0-ls110 -> v3.10.0-ls111)
2 years ago
Slavi Pantaleev
f7149103e4
Remove matrix_playbook_traefik_certs_dumper_role_enabled in favor of just devture_traefik_certs_dumper_enabled
...
We don't need these 2 roughly-the-same settings related to the
traefik-certs-dumper role.
For Traefik, it makes sense, because it's a component used by the
various related playbooks and they could step onto each other's toes
if the role is enabled, but Traefik is disabled (in that case, uninstall
tasks will run).
As for Traefik certs dumper, the other related playbooks don't have it,
so there's no conflict. Even if they used it, each one would use its own
instance (different `devture_traefik_certs_dumper_identifier`), so there
wouldn't be a conflict and uninstall tasks can run without any danger.
2 years ago
array-in-a-matrix
c3900aaf1b
remove devture services
2 years ago
Aine
0fe1d1f9ec
Update element 1.11.23 -> 1.11.24
2 years ago
Slavi Pantaleev
6fe739a2cb
Remove unnecessary variable
2 years ago
Slavi Pantaleev
7716c306f1
Split Traefik rules for Matrix Client and Matrix Federation APIs
...
This helps people who run federation on another domain (etc.).
They should now easily be able to add a custom rule for federation traffic.
2 years ago
Thom Wiggers
d544f746e8
Update irc appservice
2 years ago
Slavi Pantaleev
058a54fd05
Add native Traefik support to Dimension
2 years ago
Slavi Pantaleev
cdd23aafc6
Add matrix_conduit_container_network/matrix_conduit_container_additional_networks
2 years ago
Slavi Pantaleev
9e4ecf4ac9
Add matrix_dendrite_container_network/matrix_dendrite_container_additional_networks
2 years ago
Aine
7852d5eb26
update mautrix-telegram 0.12.2 -> 0.13.0
2 years ago
Slavi Pantaleev
71ae825f6a
Switch default reverse-proxy to Traefik, force reverse-proxy choice on existing users
2 years ago
Slavi Pantaleev
d20ff688db
Add native Traefik support to Sygnal
2 years ago
Slavi Pantaleev
8df7ad47cd
Fix rageshake project description in defaults/main.yml
2 years ago
Slavi Pantaleev
725b2beed7
Add native Traefik support to Buscarron
2 years ago
Slavi Pantaleev
bc5dda2b3a
Reorder some Buscarron default variables and fix some typos
...
Fixes a regression introduced in 0220c851e8
2 years ago
Slavi Pantaleev
0220c851e8
Add multiple container networks support to Buscarron
2 years ago
Slavi Pantaleev
6c2d397853
Fix inaccurate Buscarron project description comment
2 years ago
Slavi Pantaleev
c5dbeeae91
Merge pull request #2510 from gnunicorn/ben-adding-rageshake
...
Add rageshake server
2 years ago
Slavi Pantaleev
233e253264
Add native Traefik support to rageshake
2 years ago
Slavi Pantaleev
4c64e092d0
Fix rageshake self-building
...
BuildX is required for building this container image.
2 years ago
Slavi Pantaleev
39be2ef71a
Fix matrix_rageshake_container_src_files_path value
2 years ago
Slavi Pantaleev
9a8ebf3d8c
matrix_rageshake_docker_ -> matrix_rageshake_container_
2 years ago
Slavi Pantaleev
5934de84be
Reorder matrix-rageshake default variables a bit
2 years ago
Slavi Pantaleev
8339ebdf58
Redo the way matryx-rageshake configuration is done
...
This makes it consistent with the rest of the playbook:
- there's a default config which has various variables controlling
settings
- there's also an `_extension_yaml` variable, which lets you override it
2 years ago
Slavi Pantaleev
a51c9521a8
Rename some task files
2 years ago
Slavi Pantaleev
db0104978f
Extract api_prefix rageshake configuration into matrix_rageshake_config_api_prefix
2 years ago
Slavi Pantaleev
19e0b8374b
Enable matrix_rageshake_enabled in the role by default
...
We disable it via `group_vars/matrix_servers`, as we do for all other
roles.
2 years ago
Slavi Pantaleev
d513c0f446
Document why the rageshake version is master
2 years ago
Benjamin Kampmann
40f037b36d
Add rageshake server
2 years ago
Slavi Pantaleev
c8022c1a18
Remove useless explicit daemon reload in matrix-user-creator
...
The next task asks for a daemon reload, so there's no need to do it
twice.
2 years ago
Slavi Pantaleev
0af6e6d9d9
Make wait time for matrix-user-creator configurable and increase default (7 -> 10 sec.)
2 years ago
Slavi Pantaleev
643acfcb5b
Make synapse-s3-storage-provider periodic migration schedule customizable
...
Larger deployments may wish to run migration more often.
2 years ago
Slavi Pantaleev
4caeab9117
Fix spacing around Jinja2 filters
2 years ago
Igor Goldenberg
620247673e
Allow configure default country code in element welcome page.
2 years ago
Slavi Pantaleev
1c10a7727c
Upgrade ddclient (v3.10.0-ls106 -> v3.10.0-ls110)
2 years ago
Catalan Lover
65e7aa2406
Update Draupnir from v1.80.0 to v1.80.1
2 years ago
Catalan Lover
601b67c02d
Update Draupnir Config
2 years ago
Slavi Pantaleev
6cdbde01d7
Fix various Traefik headers syntax
...
`always` is an nginx suffix, which shouldn't have been added to these.
2 years ago
Slavi Pantaleev
0da308e24d
Upgrade com.devture.ansible.role.traefik
2 years ago
Slavi Pantaleev
5df89a44b3
Add support for customizing Synapse templates
2 years ago
Slavi Pantaleev
9775218850
Add matrix_synapse_email_app_name variable
2 years ago
Slavi Pantaleev
632026513e
Add matrix_synapse_uid, matrix_synapse_gid and matrix_synapse_username
2 years ago
Slavi Pantaleev
990a6369e1
Switch to using an external Redis role
2 years ago
Slavi Pantaleev
519b32543c
Add matrix_synapse_container_network and matrix_synapse_container_additional_networks
2 years ago
Slavi Pantaleev
0ce2121d01
Fix variable typo in validation task
2 years ago
Slavi Pantaleev
b291459bf3
Fix syntax error
2 years ago
Slavi Pantaleev
964aa0e84d
Switch to using an external Ntfy role
...
The newly extracted role also has native Traefik support,
so we no longer need to rely on `matrix-nginx-proxy` for
reverse-proxying to Ntfy.
The new role uses port `80` inside the container (not `8080`, like
before), because that's the default assumption of the officially
published container image. Using a custom port (like `8080`), means the
default healthcheck command (which hardcodes port `80`) doesn't work.
Instead of fiddling to override the healthcheck command, we've decided
to stick to the default port instead. This only affects the
inside-the-container port, not any external ports.
The new role also supports adding the network ranges of the container's
multiple additional networks as "exempt hosts". Previously, only one
network's address range was added to "exempt hosts".
2 years ago
Slavi Pantaleev
38c4e464c1
Fix self-check for Hydrogen and Cinny when running under a subpath
2 years ago
Aine
954920dd4f
Update ntfy 1.31.0 -> 2.0.0
2 years ago
Slavi Pantaleev
8fd8f12a0d
Merge pull request #2493 from etkecc/patch-174
...
Update mautrix-whatsapp 0.8.1 -> 0.8.2
2 years ago
Aine
64ec1db077
Update mautrix-whatsapp 0.8.1 -> 0.8.2
2 years ago
Aine
649f6512ca
Update mautrix-discord 0.1.0 -> 0.1.1
2 years ago
Slavi Pantaleev
bb7895678c
Fix typo
2 years ago
Aine
4fe6015464
Update ntfy 1.30.1 -> 1.31.0
2 years ago
Slavi Pantaleev
7c5826f1c3
Break dependency between matrix-prometheus-nginxlog-exporter and the Grafana role
...
Wiring happens via `group_vars/matrix_servers` now.
2 years ago
Slavi Pantaleev
1006b8d899
Replace matrix-grafana with an external role
2 years ago
Slavi Pantaleev
94124263a7
Add matrix_prometheus_container_network/matrix_prometheus_container_additional_networks
2 years ago
Slavi Pantaleev
0b9dc56edf
Add type support to matrix_coturn_container_additional_volumes
...
.. and try to auto-switch between `bind` and `volume` depending on
whether there's a slash in the `src` path.
Fixes https://github.com/spantaleev/matrix-docker-ansible-deploy/issues/2482
2 years ago
Slavi Pantaleev
1f0da1103a
Merge pull request #2485 from etkecc/patch-171
...
update postmoogle 0.9.13 -> 0.9.14
2 years ago
Slavi Pantaleev
c85d48c45c
Remove Traefik labels for Hydrogen & Cinny from matrix-nginx-proxy
...
Related to 6a52be7987
and 28e7ef9c71f02
2 years ago
Aine
4045d72e7b
update postmoogle 0.9.13 -> 0.9.14
...
* make banlist consistent
* proper multi-error message
* ignore "." MX hosts
* try recipient domain directly, even when MX records found, but failed
2 years ago
Slavi Pantaleev
4d24e9bb7f
Merge pull request #2484 from etkecc/patch-170
...
Update synapse 1.76.0 -> 1.77.0
2 years ago
Aine
3570808633
Update synapse 1.76.0 -> 1.77.0
2 years ago
Aine
c98f40c836
Update hydrogen 0.3.7 -> 0.3.8
2 years ago
Slavi Pantaleev
51cfd7b777
Merge pull request #2481 from moan0s/update
...
Bump element version
2 years ago
Julian-Samuel Gebühr
6727aa55ec
Bump element version
...
Signed-off-by: Julian-Samuel Gebühr <julian-samuel@gebuehr.net>
2 years ago
Slavi Pantaleev
f28e7ef9c7
Add (native) Traefik support to matrix-client-cinny
...
Previously, it had to go through matrix-nginx-proxy.
It's exposed to Traefik directly via container labels now
2 years ago
Slavi Pantaleev
3bace0c7b9
Add matrix_synapse_admin_hostname and rename matrix_synapse_admin_public_endpoint (to matrix_synapse_admin_path_prefix)
2 years ago
Slavi Pantaleev
2e74187050
Add matrix_client_element_hostname and matrix_client_element_path_prefix variables
2 years ago
Slavi Pantaleev
eb7292f274
Add matrix_client_hydrogen_hostname and fix Hydrogen serving at non-root-path
2 years ago
Slavi Pantaleev
6a52be7987
Add (native) Traefik support to matrix-client-hydrogen
...
Previously, it had to go through matrix-nginx-proxy.
It's exposed to Traefik directly via container labels now
Serving at a path other than `/` doesn't work well yet.
2 years ago
Slavi Pantaleev
64e2b26ed5
Fix Hydrogen failing to start
...
We were mounting our own configuration to
`/usr/share/nginx/html/config.json`, which is a symlink to
`/tmp/config.json`. So we effectively mount our file to
`/tmp/config.json`.
When starting:
- if Hydrogen sees a `CONFIG_OVERRIDE` environment variable,
it will try to save it into our read-only config file and fail.
- if Hydrogen doesn't see a `CONFIG_OVERRIDE` environment variable (the
path we go through, because we don't pass such a variable),
it will try to copy its bundled configuration (`/config.json.bundled`)
to `/tmp/config.json`. Because our configuration is mounted as read-only, it will
fail.
In both cases, it will fail with:
> cp: can't create '/tmp/config.json': File exists
Source: 3720de36bb/docker/dynamic-config.sh
We work around this by mounting our configuration on top of the bundled
one (`/config.json.bundled`). We then let Hydrogen's startup script copy
it to `/tmp/config.json` (a tmpfs we've mounted into the container) and use it from there.
2 years ago
Slavi Pantaleev
799cbb44fb
Add the ability to control (Traefik) routing priority for Element and synapse-admin
...
This may proof useful to someone in the future.
2 years ago
Slavi Pantaleev
5c7cd70684
Make use of the existing matrix_synapse_admin_public_endpoint variable
2 years ago
Slavi Pantaleev
c33ed94352
Add security headers to synapse-admin (on Traefik)
...
We've had it on `matrix-nginx-proxy` before, but
our initial support for Traefik did not include any of these security
headers.
2 years ago
Slavi Pantaleev
71597132e0
Move around some matrix-client-element variables
2 years ago
Slavi Pantaleev
5ab5f28d14
Add support for running synapse-admin (on Traefik) at the root path
...
Previously, we had to run it at a subpath, like `/synapse-admin`.
We can now dedicate a whole domain and the `/` path to it, should we
wish to do so.
2 years ago
Slavi Pantaleev
ff1338e003
Add support for hosting Element (on Traefik) at a subpath
2 years ago
Slavi Pantaleev
e34174b1b4
Add various security headers to matrix-client-element when behind Traefik
2 years ago
Slavi Pantaleev
e51e4eec09
Add (native) Traefik support to matrix-client-element
...
Previously, it had to go through matrix-nginx-proxy.
It's exposed to Traefik directly via container labels now
2 years ago
Slavi Pantaleev
f2ed5e4b04
Delete /matrix/nginx-proxy/conf.d/matrix-client-element.conf if matrix_nginx_proxy_proxy_element_enabled not enabled
2 years ago
Aine
9f820a506a
Update postmoogle 0.9.12 -> 0.9.13
...
* live SSL certificates reload on file changes (e.g., on automatic certs renewal)
* print all errors when trying connection to an SMTP server
2 years ago
Slavi Pantaleev
31aa87fdb6
Merge pull request #2475 from etkecc/patch-167
...
Update coturn 4.6.1-r1 -> 4.6.1-r2
2 years ago
Slavi Pantaleev
3d9aa8387e
Add (native) Traefik support to synapse-admin
...
Previously, it had to go through matrix-nginx-proxy.
It's exposed to Traefik directly via container labels now.
2 years ago
Aine
f6f7bbd2a1
Update coturn 4.6.1-r1 -> 4.6.1-r2
2 years ago
Slavi Pantaleev
38904c08b0
Wire backup_borg_username
...
It's probably unnecessary, as this user is only used in the borg container
internally, but.. It doesn't hurt to set it to `matrix`.
2 years ago
Slavi Pantaleev
78c35136b2
Replace matrix-backup-borg with an external role
2 years ago
td
af10d350bc
fix: missing endif in client well-known
2 years ago
Jayesh Nirve
6939a3d6d3
fix: only add element related entries to client well-known if element is enabled ( #2453 )
...
* fix: only add element related entries to client well-known if element is enabled
* Fix matrix-base/defaults/main.yml syntax
---------
Co-authored-by: Slavi Pantaleev <slavi@devture.com>
2 years ago
Array in a Matrix
79413e7717
updated dendrite
2 years ago
Slavi Pantaleev
f1a1ce8a91
Merge pull request #2464 from spantaleev/traefik
...
Reverse-proxy configuration changes and initial Traefik support
2 years ago
Catalan Lover
cba63bd4b9
Upgrade Drapunir from 1.8.0 Beta to 1.8.0 release.
2 years ago
Slavi Pantaleev
6b0650641b
Update matrix_playbook_reverse_proxy_type documentation
2 years ago
Slavi Pantaleev
8309a21303
Rename reverse proxy types and fix Hookshot http/https urlPrefix issue
2 years ago
Slavi Pantaleev
3f2cb840b9
Merge branch 'master' into traefik
2 years ago
Slavi Pantaleev
ad22bdb884
Do not run matrix-user-verification-service validation tasks unless the service is enabled
2 years ago
Slavi Pantaleev
7142ff422d
Ensure matrix_user_verification_service_uvs_access_token is always defined
...
The playbook tries to avoid such variables which are sometimes defined
and sometimes not. We'd rather not check for `is defined`.
2 years ago