338 Commits (c9e2086f194767940227d5e332cfe7426d933986)

Author SHA1 Message Date
Slavi Pantaleev 91a757c581 Add support for reloading Synapse
6 years ago
Slavi Pantaleev 40f3793af7 Upgrade Synapse to v0.99 and simplify dummy TLS cert logic
6 years ago
Slavi Pantaleev 5db692f877 Remove some useless homeserver.yaml configuration
6 years ago
Slavi Pantaleev 738c592c27 Bump Synapse version (0.34.1.1 -> 0.99.0rc4)
6 years ago
Slavi Pantaleev 119016e858 Cache /.well-known/matrix files for longer
6 years ago
Slavi Pantaleev 764a040a90 Make /.well-known/matrix/server optional
6 years ago
Slavi Pantaleev 74710427e5 Allow for the federation port (tcp/8448)'s certificate to be changed
6 years ago
Slavi Pantaleev f6ebd4ce62 Initial work on Synapse 0.99/1.0 preparation
6 years ago
Slavi Pantaleev e06e5dd208 Fix syntax breakage
6 years ago
Slavi Pantaleev 96afbbb5af Allow additional volumes to be mounted into matrix-nginx-proxy
6 years ago
Slavi Pantaleev 9a251e4e46 Remove some more references to localhost
6 years ago
Aaron Raimist 1f0cc92b33
Use IPv4 localhost everywhere (or almost everywhere)
6 years ago
Aaron Raimist 58ca2e7dfd
Turn off IPv6 when using your own Nginx server
6 years ago
Slavi Pantaleev 52d5e540c0 Fix ownership of generated self-signed certificates (root -> matrix)
6 years ago
dhose 87e3deebfd Enable exposure of Prometheus metrics.
6 years ago
Plailect 29b40b428a
Database files must be stored on permanent storage
6 years ago
Slavi Pantaleev 897cfbdcba Fix /.well-known/matrix/client installation
6 years ago
Slavi Pantaleev 8681a5dc69 Add 'none' SSL certificate retrieval method
6 years ago
Slavi Pantaleev cd332d9b4e Add TLS v1.3 support to matrix-nginx-proxy
6 years ago
Slavi Pantaleev a9fae8e3b1 Revert "Use native OpenSSL module to generate `passkey.pem`"
6 years ago
Slavi Pantaleev 08321ea4bb
Merge pull request #87 from Plailect/master
6 years ago
Plailect 0dac5ea508
Use native OpenSSL module to generate `passkey.pem`
6 years ago
Plailect 5e1d96c727
Add `matrix_appservice_irc_container_expose_client_server_api_port`
6 years ago
Plailect 0a2a8e118c
Update example configuration and documentation
6 years ago
Slavi Pantaleev c2b1cf7f93 Fix SSL renewal script
6 years ago
Plailect 3a4a671dd7
Add support for matrix-appservice-irc
6 years ago
Slavi Pantaleev 0be7b25c64 Make (most) containers run with a read-only filesystem
6 years ago
Slavi Pantaleev b77b967171 Merge branch 'master' into non-root-containers
6 years ago
Slavi Pantaleev cbc1cdbbf0 Do not try to load certificates
6 years ago
Slavi Pantaleev bf10331456 Make mautrix-whatsapp run as non-root and w/o capabilities
6 years ago
Slavi Pantaleev 8a3f942d93 Make mautrix-telegram run as non-root and w/o capabilities
6 years ago
Slavi Pantaleev 3e8a4159e6 Uncomment unintentionally-commented logic
6 years ago
Slavi Pantaleev 9830a0871d Fix self-check for mxisd not being enabled
6 years ago
Slavi Pantaleev 9438402f61 Drop capabilities in a few more places
6 years ago
Slavi Pantaleev 316d653d3e Drop capabilities in containers
6 years ago
Slavi Pantaleev 0ff6735546 Fall back to dig for SRV lookup, if no dnspython
6 years ago
Slavi Pantaleev 299a8c4c7c Make (most) containers start as non-root
6 years ago
Slavi Pantaleev 56d501679d Be explicit about the UID/GID we start Synapse with
6 years ago
Slavi Pantaleev 1a80058a2a Indent (non-YAML) using tabs
6 years ago
Slavi Pantaleev a88b24ed2c Update matrix-corporal (1.2.2 -> 1.3.0)
6 years ago
Slavi Pantaleev fcceb3143d Update riot-web (0.17.8 -> 0.17.9)
6 years ago
Slavi Pantaleev a4e7ad5566 Use async Ansible task for importing Postgres
6 years ago
Slavi Pantaleev 0392822aa7 Show Postgres import command and mention manual importing
6 years ago
Slavi Pantaleev 8d186e5194 Fix Postgres import when Postgres had never started
6 years ago
Slavi Pantaleev fef6c052c3 Pass Host/X-Forwarded-For everywhere
6 years ago
Slavi Pantaleev ba75ab496d Send Host/X-Forwarded-For to mxisd
6 years ago
Slavi Pantaleev cb11548eec Use mxisd for user directory searches
6 years ago
Slavi Pantaleev df0d465482 Fix typos in some variables (matrix_mxid -> matrix_mxisd)
6 years ago
Slavi Pantaleev f4f06ae068 Make matrix-nginx-proxy role independent of others
6 years ago
Slavi Pantaleev c10182e5a6 Make roles more independent of one another
6 years ago
Slavi Pantaleev 294a5c9083 Fix YAML serialization of empty matrix_synapse_federation_domain_whitelist
6 years ago
Sylvia van Os cec2aa61c1 Fix scalar widgets
6 years ago
Stuart Mumford f8ebd94d08
Make the mode of the base path configurable
6 years ago
Slavi Pantaleev e8c78c1572 Merge branch 'master' into split-into-multiple-roles
6 years ago
Slavi Pantaleev 857603d9d7 Make nginx-proxy files owned by matrix:matrix, not root:root
6 years ago
Slavi Pantaleev b80d44afaa Stop Postgres before finding files to move over
6 years ago
Slavi Pantaleev 51312b8250 Split playbook into multiple roles
6 years ago
Slavi Pantaleev 6d253ff571 Switch to a better riot-web image (avhost/docker-matrix-riot -> bubuntux/riot-web)
6 years ago
Slavi Pantaleev 14a237885a Fix missing SMTP configuration for mxisd
6 years ago
Slavi Pantaleev 9a9b7383e9 Completely redo how mxisd configuration gets generated
6 years ago
Slavi Pantaleev fca2f2e036 Catch misconfigured REST Auth password provider during installation
6 years ago
Slavi Pantaleev 46c5d11d56 Update components
6 years ago
Slavi Pantaleev 2ae7c5e177
Merge pull request #68 from spantaleev/manage-cronjobs-with-cron-module
6 years ago
Slavi Pantaleev 00ae435044 Use |to_json filter for serializing booleans to JSON
6 years ago
Slavi Pantaleev b222d26c86 Switch to managing cronjobs with the Ansible cron module
6 years ago
Slavi Pantaleev ef2dc3745a Check DNS SRV record for _matrix-identity._tcp when mxisd enabled
6 years ago
Slavi Pantaleev f92c4d5a27 Use Ansible dig lookup instead of calling the dig program
6 years ago
Jan Christian Grünhage 29d10804f0 Use yaml syntax instead of key=value syntax consistently
6 years ago
Slavi Pantaleev 5135c0cc0a Add Ansible guide and Ansible version checks
6 years ago
Slavi Pantaleev 99af4543ac Replace include usage with include_tasks and import_tasks
6 years ago
Slavi Pantaleev 76506f34e0 Make media-store restore work with server files, not local
6 years ago
Slavi Pantaleev e604a7bd43 Fix error message inaccuracy
6 years ago
Slavi Pantaleev 4c2e1a0588 Make SQLite database import work with server files, not local
6 years ago
Slavi Pantaleev f153c70a60 Reorganize some files
6 years ago
Slavi Pantaleev 6d89319822 Add support for importing an existing Postgres database
6 years ago
Slavi Pantaleev f472c1b9e5 Ensure psql returns a failure exit code when it fails
6 years ago
Slavi Pantaleev a7f791f8f9 Make Postgres version detection logic reusable to ease maintenance
6 years ago
Slavi Pantaleev c59a53551a Make well-known self-check not depend on Content-Type: application/json
6 years ago
Hardy Erlinger 2fc0f5f3cf Set MAILNAME env variable to FQDN hostname for matrix-mailer.
6 years ago
Slavi Pantaleev 87b5f0a4d4 Server non-scary page at matrix domain (take 2)
6 years ago
Slavi Pantaleev f7aa362961 Make "obtain certificates" tasks have unique names
6 years ago
Slavi Pantaleev 4757c13a2e Do not install openssl if not necessary
6 years ago
Slavi Pantaleev 12b65d8ccc Serve a non-scary page at the matrix domain
6 years ago
Slavi Pantaleev b9b5674b8a Lowercase host_specific_hostname_identity to prevent troubles
6 years ago
Slavi Pantaleev fe9b9773c0 Move setup sanity checks to a central place
6 years ago
Slavi Pantaleev 91567fc41d Remove debug
6 years ago
Slavi Pantaleev e033eb443b Do not set up nginx-proxy auto-restart if not using Let's Encrypt
6 years ago
Slavi Pantaleev 268e9b5b66 Escape homeserver variables to prevent rare breakage
6 years ago
Slavi Pantaleev 727dcda7d7 Organize Synapse setup files better
6 years ago
Slavi Pantaleev d28bdb3258 Add support for 2 more SSL certificate retrieval methods
6 years ago
Slavi Pantaleev bfcba5256e Upgrade mxisd (1.2.1 -> 1.2.2)
6 years ago
Slavi Pantaleev 57ee350420 Raise default timeout value for matrix-corporal
6 years ago
Slavi Pantaleev cc9d3aef59 Upgrade matrix-corporal (1.2.1 -> 1.2.2)
6 years ago
Slavi Pantaleev 6124effbe1 Register shared-secret-auth password provider first
6 years ago
Slavi Pantaleev 40626ff8df Upgrade Synapse (0.33.9/Python 2 -> 0.33.4/Python 3)
6 years ago
Slavi Pantaleev 9f163b2bf5 Do not disable SELinux on RedHat systems
6 years ago
Slavi Pantaleev b9e5ad6c66 Upgrade Docker images for various components
6 years ago
Slavi Pantaleev 97280c7cc1 Change Goofys Docker image (clodproto/goofys -> ewoutp/goofys)
6 years ago
Slavi Pantaleev bfcceb1e82 Make it safer to override matrix_synapse_media_store_path
6 years ago
Slavi Pantaleev e693b12d28 Relocate fail check to a better place
6 years ago