336 Commits (ba68d2ad36100a62330d54aacbd03ad7f0b5c864)

Author SHA1 Message Date
Slavi Pantaleev e1690722f7 Replace cronjobs with systemd timers
4 years ago
Slavi Pantaleev 05ca9357a8 Add .service suffix to systemd units list
4 years ago
Slavi Pantaleev 57ea43d8b0 Remove unused variable
4 years ago
Slavi Pantaleev 7a90eb6d4f Relocate some validation tasks
4 years ago
Marcel Partap cd8100544b Merge remote-tracking branch 'origin/master' into synapse-workers
4 years ago
Slavi Pantaleev f7ae050eaf Remove useless quotes around ssl_ciphers value
4 years ago
Slavi Pantaleev 5822ba0c01 Use a more natural if statement
4 years ago
Slavi Pantaleev de6ecd8818
Update inaccurate comments
4 years ago
Agustin Ferrario 5156c63a76 Clean up code
4 years ago
Agustin Ferrario 25d423e6b6 Fix errors per spantaleev suggestions
4 years ago
Agustin Ferrario 3cb71e7e84 Merge branch 'master' of https://github.com/spantaleev/matrix-docker-ansible-deploy
4 years ago
Dan Arnfield 10e0fa17ad Update nginx (1.19.5 -> 1.19.6)
4 years ago
louis dcd4716636 add option to disable nginx access log
4 years ago
Agustin Ferrario 2082242499 Add `matrix_nginx_proxy_ssl_config`
4 years ago
Slavi Pantaleev d08b27784f Fix systemd services autostart problem with Docker 20.10
4 years ago
Slavi Pantaleev 8c02f7b79b Upgrade services
4 years ago
Marcel Partap 851c25c47f matrix-synapse nginx template: fix invalid jinja comment syntax
4 years ago
Marcel Partap b73ac965ac Merge remote-tracking branch 'origin/master' into synapse-workers
4 years ago
Slavi Pantaleev b354155d7c Make JVB websockets reverse-proxying work
4 years ago
Slavi Pantaleev d702e74079 Fix matrix-nginx-proxy static files mounting when SSL retrieval is none
4 years ago
Slavi Pantaleev 12867e9f18 Do not try to mount /matrix/ssl when matrix_ssl_retrieval_method is 'none'
4 years ago
Slavi Pantaleev 75f9fde7a4 Remove some more -v usage
4 years ago
Slavi Pantaleev 1fca917ad1 Replace some -v instances with --mount
4 years ago
Slavi Pantaleev ccabc82d4c Use more fully-qualified container images
4 years ago
Marcel Partap 4678c5d7bd Merge remote-tracking branch 'origin/master' into synapse-workers
4 years ago
Slavi Pantaleev 4d12a6f8e9
Merge pull request #681 from scottcrossen/slc/ddclient
4 years ago
Slavi Pantaleev 1427286cec Integrate matrix-dynamic-dns with matrix-nginx-proxy without causing a dependency
4 years ago
Marcel Partap b05d298ae4 synapse workers nginx rule: add client_max_body_size on media endpoints
4 years ago
Marcel Partap e5072c20d9 synapse workers/nginx: handle media_repository worker endpoints on federation port
4 years ago
Slavi Pantaleev 235299939d Upgrade nginx (1.19.3 -> 1.19.4)
4 years ago
Scott Crossen e894befd87 Updates to reviewer comments
4 years ago
Slavi Pantaleev 350c39d745 Update comment
4 years ago
Slavi Pantaleev ef68d3d296 Add support for reverse-proxying /_synapse/oidc
4 years ago
Slavi Pantaleev 9a46647010 Make https://matrix.DOMAIN/ redirect to https://element.DOMAIN/
4 years ago
Slavi Pantaleev 4700e80389 Raise standalone default Matrix Client API client_max_body_size
4 years ago
Slavi Pantaleev ef07aa8e5d Prevent certain nginx location blocks from being ignored
4 years ago
Marcel Partap 2d1b9f2dbf synapse workers: reworkings + get endpoints from upstream docs via awk
4 years ago
Slavi Pantaleev 63a49bb2dc Do not expose /_synapse/admin publicly by default
4 years ago
Marcel Partap 87bd64ce9e Merge remote-tracking branch 'origin/master' into synapse-workers
4 years ago
Dan Arnfield b65bfc38ce Update nginx (1.19.2 -> 1.19.3)
4 years ago
Slavi Pantaleev d250727e8b Upgrade certbot (1.7.0 -> 1.9.0)
4 years ago
Max Klenk fc2edcbecf
fix media routing
4 years ago
Max Klenk 132daba1af
fix worker routes
4 years ago
Max Klenk 9a3d84b931
Merge branch 'master' into feature/add-worker-support
4 years ago
Slavi Pantaleev 2a1ec38e3a Stop using Ansible's cron module
4 years ago
Max Klenk 06bc430c7c
refactor to use new workers and routes they serve
4 years ago
Max Klenk 59d1fb76b6
only apply worker redirects if workers are enabled
4 years ago
Max Klenk 567d0318b0
Merge branch 'synapse-workers' into feature/add-worker-support
4 years ago
Slavi Pantaleev fc1655cd4b
Merge pull request #633 from thedanbob/certbot-1.7.0
4 years ago
Dan Arnfield c8754f422a Update certbot (1.6.0 -> 1.7.0)
4 years ago
Dan Arnfield 8d373409b8 Update nginx (1.19.1 -> 1.19.2)
4 years ago
Justin Croonenberghs 31e2a1f06b
Undo ill-advised change
4 years ago
Justin Croonenberghs c5d18733d2
Update CORS for ma1sd
4 years ago
Slavi Pantaleev 54195b22c7 Allow framing Jitsi
4 years ago
Slavi Pantaleev 3f8e5b4363 Allow framing Dimension
4 years ago
TwoTwenty b106a9592e
Update matrix-jitsi.conf.j2
4 years ago
TwoTwenty c97e7c5a3e
Update matrix-dimension.conf.j2
4 years ago
TwoTwenty 18ba885ca2
Update matrix-client-element.conf.j2
4 years ago
Slavi Pantaleev c6ab1c6a90 Riot is now Element
4 years ago
Dan Arnfield c47a55d170 Update nginx (1.19.0 -> 1.19.1) and certbot (1.5.0 -> 1.6.0)
4 years ago
shadow 6293f1bdb0 Run all API self checks in check_mode
4 years ago
Slavi Pantaleev 65e5020596 Proxy other /_synapse endpoints to the client API
5 years ago
Slavi Pantaleev 88a4a3ab55 Update components
5 years ago
Chris van Dijk 74df10633a Remove hardcoded command paths in playbook cron usage
5 years ago
Chris van Dijk 6e3b877dc2 Remove hardcoded command paths in playbook shell usage
5 years ago
Chris van Dijk 6334f6c1ea Remove hardcoded command paths in systemd unit files
5 years ago
Slavi Pantaleev 7a2dbdc2d7 Update components
5 years ago
Chris van Dijk 7585bcc4ac Allow the matrix user username and groupname to be configured separately
5 years ago
Slavi Pantaleev 554da8338a
Merge pull request #463 from hooger/architecture
5 years ago
Marcel Partap 46984a4f99 Nginx conf: more testing less b0rk
5 years ago
Christoph Johannes Kleine 765c046beb
add missing ; to matrix-synapse.conf.j2
5 years ago
Marcel Partap e4763c21bc nginx config: route traffic to workers on matrix-synapse
5 years ago
Marcel Partap a14b9c09ad Add to synapse nginx template conditional URL rewrites for workers
5 years ago
Dan Arnfield e2de6a1569 Update nginx (1.17.9 -> 1.17.10)
5 years ago
Horvath Gergely bd61598faf add experimental(?) architecture support for arm32 and arm64
5 years ago
Chris van Dijk d83236ea0e Fix inconsistent whitespace
5 years ago
Marcel Partap 874e2e1fc0 Rename variables (s/mxisd/ma1sd/) and adapt roles
5 years ago
Slavi Pantaleev 8bcc9712d0 Make follow_redirects configurable when checking /.well-known/matrix/client
5 years ago
Christian Wolf 8c9b5ea6dd Removed a few syntax bugs in Archlinux configuration
5 years ago
Christian Wolf d84b2868b7 Added basic changes to make it compatible with Archlinux
5 years ago
mooomooo eebc6e13f8 Made directory variables for /etc/systemd/system , /etc/cron.d , /usr/local/bin
5 years ago
Slavi Pantaleev 0f39cb9987 Fix incorrect server_name for Jitsi
5 years ago
Slavi Pantaleev cdd9ee1962 Add Jitsi support
5 years ago
Dan Arnfield c7440b723a Update certbot (1.2.0 -> 1.3.0)
5 years ago
Dan Arnfield 4065d74a5f Update nginx (1.17.8 -> 1.17.9)
5 years ago
Slavi Pantaleev da98a06553
Merge pull request #377 from thedanbob/certbot-1.2.0
5 years ago
Dan Arnfield bb08022623 Update certbot (1.0.0 -> 1.2.0)
5 years ago
Dan Arnfield 74235df820 Update nginx (1.17.7 -> 1.17.8)
5 years ago
Daniel Hoffend b280b05c25 matrix-nginx-proxy: adding additional configuration blocks
5 years ago
Slavi Pantaleev f18037ae42 Disable TLSv1.1 by default
5 years ago
Dan Arnfield 86eff45e8b uri.follow_redirects is now a string field
5 years ago
Slavi Pantaleev a84a24d9f5 Upgrade nginx (1.17.6 -> 1.17.7)
5 years ago
Slavi Pantaleev 89dbe5cfc5 Add the ability to control the certbot HTTP bind port
5 years ago
Slavi Pantaleev a78002f12b Upgrade certbot (0.40.1 -> 1.0.0)
5 years ago
Yuri Moens 0866f98957 Render vhost directives in https server block
5 years ago
Slavi Pantaleev ca3b158d94 Add support to matrix-nginx-proxy to work in HTTP-only mode
5 years ago
Dan Arnfield 24646dc506 Update nginx (1.17.5 -> 1.17.6)
5 years ago
Dan Arnfield 140002ed49 Update certbot (0.38.0 -> 0.40.1)
5 years ago
Dan Arnfield 9b187eca8f Update nginx (1.17.4 -> 1.17.5)
5 years ago
Paul Tötterman aabb16d78b Fix spelling ngnix -> nginx
5 years ago
Slavi Pantaleev 810d0fb0e4 Make it possible to serve static websites from the base domain
5 years ago
Slavi Pantaleev 1dd1f9602f
Merge pull request #271 from thedanbob/certbot-0.38
5 years ago
Dan Arnfield c12ca8fff0 Update certbot (0.37.1 -> 0.38.0)
5 years ago
Dan Arnfield 2dd9dc4882 Update nginx (1.17.3 -> 1.17.4)
5 years ago
Slavi Pantaleev db57618abd Update nginx and certbot
5 years ago
Slavi Pantaleev 3e57a1463a Serve nginx status page over HTTPS as well
5 years ago
p5t2vspoqqw c32a3e3204 correct defaults
5 years ago
p5t2vspoqqw 4b8190dc3f serve status page for matrix.DOMAIN only
5 years ago
p5t2vspoqqw 51d5741bb3 Merge branch 'master' of https://github.com/spantaleev/matrix-docker-ansible-deploy
5 years ago
Slavi Pantaleev 6fc779dc83 Ensure matrix_ssl_retrieval_method value is valid
5 years ago
Dan Arnfield 9296dfd094 Update nginx (1.17.1 -> 1.17.2)
5 years ago
p5t2vspoqqw 5054fff88b Merge branch 'master' of https://github.com/spantaleev/matrix-docker-ansible-deploy
5 years ago
Slavi Pantaleev 1316d36f8b Fix deprecation warning (using cron module without name)
5 years ago
p5t2vspoqqw d88e261150 Merge branch 'master' of https://github.com/spantaleev/matrix-docker-ansible-deploy
5 years ago
Dan Arnfield f83bbf8525 Bump nginx version
5 years ago
p5t2vspoqqw 9874c3df90 Merge branch 'master' of https://github.com/spantaleev/matrix-docker-ansible-deploy
5 years ago
Dan Arnfield ae3a1bb148 Update nginx to 1.17.0
6 years ago
p5t2vspoqqw 8fcdac3738 Merge branch 'master' of https://github.com/spantaleev/matrix-docker-ansible-deploy
6 years ago
Slavi Pantaleev 7d3adc4512 Automatically force-pull :latest images
6 years ago
p5t2vspoqqw 4b657b3822 Merge branch 'master' of https://github.com/spantaleev/matrix-docker-ansible-deploy
6 years ago
Slavi Pantaleev 7d8dde8a53 Add support for proxying /_synapse/admin APIs
6 years ago
Slavi Pantaleev ab59cc50bd Add support for more flexible container port exposing
6 years ago
p5t2vspoqqw 0cfa73f153 Merge branch 'master' of https://github.com/spantaleev/matrix-docker-ansible-deploy
6 years ago
Dan Arnfield 9c23d877fe Fix docker_image option for ansible < 2.8
6 years ago
Dan Arnfield fa38c84be2 Fix casting int to string warning
6 years ago
Dan Arnfield db15791819 Add source option to docker_image to fix deprecation warning
6 years ago
Dan Arnfield 3982f114af Fix CONDITIONAL_BARE_VARS deprecation warning in ansible 2.8
6 years ago
Slavi Pantaleev 5c821b581a Check fullchain.pem, not cert.pem
6 years ago
Slavi Pantaleev ae7c8d1524 Use SyslogIdentifier to improve logging
6 years ago
p5t2vspoqqw 4315b472af Merge branch 'master' of https://github.com/spantaleev/matrix-docker-ansible-deploy
6 years ago
Dan Arnfield 171c6db41e Add option to proxy 3pid registration endpoints
6 years ago
Hugues De Keyzer c451025134 Fix indentation in templates
6 years ago
Slavi Pantaleev e0b7b4dc61
Merge pull request #159 from TheLastProject/feature/docker_add_hosts
6 years ago
p5t2vspoqqw 79ad60cf0a Merge branch 'master' of https://github.com/spantaleev/matrix-docker-ansible-deploy
6 years ago
Slavi Pantaleev 0e391b5870 Add explicit |int casting for more variables
6 years ago
Sylvia van Os 75b1528d13 Add the possibility to pass extra flags to the docker container
6 years ago
Slavi Pantaleev db977ea584
Merge pull request #151 from huguesdk/bugfix/nginx_proxy_tmpfs_size
6 years ago
Slavi Pantaleev 7c246b4a99 Make error about unset matrix_ssl_lets_encrypt_support_email more descriptive
6 years ago
Hugues De Keyzer 6aa6633ee7 Fix value of nginx-proxy tmpfs size
6 years ago
p5t2vspoqqw af8beb3627 Merge branch 'master' of https://github.com/spantaleev/matrix-docker-ansible-deploy
6 years ago
Slavi Pantaleev ec0f936227 Try SSL renewal more frequently and reload later
6 years ago
p5t2vspoqqw c2eabf2b9d Merge branch 'master' of https://github.com/spantaleev/matrix-docker-ansible-deploy
6 years ago
p5t2vspoqqw 7ee6927ca9 add suggested change; correct indent
6 years ago
Slavi Pantaleev 18a562c000 Upgrade services
6 years ago
p5t2vspoqqw deeefac84c add ngnix-status to config
6 years ago
Slavi Pantaleev bec59c06bb Update images
6 years ago
Slavi Pantaleev af1c9ae59d Do not force firewalld on people
6 years ago
Slavi Pantaleev 95e4234dca Update nginx (1.15.9 -> 1.15.10)
6 years ago
Slavi Pantaleev 73af8f7bbb Make self-check not validate self-signed certificates
6 years ago
Lee Verberne d90bc20690 Use common path for systemctl in lets encrypt cron
6 years ago
Slavi Pantaleev 2d56ff0afa Skip some uninstall tasks if not necessary to run
6 years ago
Slavi Pantaleev c545d3eb85 Add support for serving base domain via matrix-nginx-proxy
6 years ago
Slavi Pantaleev e645b0e372 Rename matrix_nginx_proxy_data_path to matrix_nginx_proxy_base_path
6 years ago
Slavi Pantaleev 6c5cc173b0 Fix permission mode for some files
6 years ago
Edgars Voroboks 9735a2f600 Implement self-hosted Dimension server
6 years ago
Slavi Pantaleev 6f6dff3e2b Update some Docker images
6 years ago
Slavi Pantaleev 45618679f5 Reload systemd services when they get updated
6 years ago
Slavi Pantaleev a43bcd81fe Rename some variables
6 years ago
Slavi Pantaleev 25bdc10617 Follow redirects for some well-known files
6 years ago
Slavi Pantaleev 550d398e6c Remove some unnecessary slashes
6 years ago
Slavi Pantaleev 119016e858 Cache /.well-known/matrix files for longer
6 years ago
Slavi Pantaleev 764a040a90 Make /.well-known/matrix/server optional
6 years ago
Slavi Pantaleev 74710427e5 Allow for the federation port (tcp/8448)'s certificate to be changed
6 years ago
Slavi Pantaleev f6ebd4ce62 Initial work on Synapse 0.99/1.0 preparation
6 years ago
Slavi Pantaleev e06e5dd208 Fix syntax breakage
6 years ago
Slavi Pantaleev 96afbbb5af Allow additional volumes to be mounted into matrix-nginx-proxy
6 years ago
Slavi Pantaleev 9a251e4e46 Remove some more references to localhost
6 years ago
Aaron Raimist 1f0cc92b33
Use IPv4 localhost everywhere (or almost everywhere)
6 years ago
Aaron Raimist 58ca2e7dfd
Turn off IPv6 when using your own Nginx server
6 years ago
Slavi Pantaleev 52d5e540c0 Fix ownership of generated self-signed certificates (root -> matrix)
6 years ago
dhose 87e3deebfd Enable exposure of Prometheus metrics.
6 years ago
Slavi Pantaleev 8681a5dc69 Add 'none' SSL certificate retrieval method
6 years ago
Slavi Pantaleev cd332d9b4e Add TLS v1.3 support to matrix-nginx-proxy
6 years ago
Slavi Pantaleev c2b1cf7f93 Fix SSL renewal script
6 years ago
Slavi Pantaleev 0be7b25c64 Make (most) containers run with a read-only filesystem
6 years ago
Slavi Pantaleev 9438402f61 Drop capabilities in a few more places
6 years ago
Slavi Pantaleev 316d653d3e Drop capabilities in containers
6 years ago
Slavi Pantaleev 299a8c4c7c Make (most) containers start as non-root
6 years ago
Slavi Pantaleev 1a80058a2a Indent (non-YAML) using tabs
6 years ago
Slavi Pantaleev fef6c052c3 Pass Host/X-Forwarded-For everywhere
6 years ago
Slavi Pantaleev ba75ab496d Send Host/X-Forwarded-For to mxisd
6 years ago
Slavi Pantaleev cb11548eec Use mxisd for user directory searches
6 years ago
Slavi Pantaleev f4f06ae068 Make matrix-nginx-proxy role independent of others
6 years ago
Slavi Pantaleev c10182e5a6 Make roles more independent of one another
6 years ago
Slavi Pantaleev e8c78c1572 Merge branch 'master' into split-into-multiple-roles
6 years ago
Slavi Pantaleev 51312b8250 Split playbook into multiple roles
6 years ago