jakicoll
7848d865a5
Also define the vars to be overwritten in group vars within the role vars.
2 years ago
Paul N
70bea81df7
Introduced flags to (1) enable/disable Auth (2) enable/disable openid_server_name pinning. Updated validate_config.yml and added new checks to verify.
2 years ago
Paul N
96dd86d33b
Set default values where sensible and remove unnecessary conditionals in .env.j2.
...
Check for empty string instead of Null to verify if an openid_server_name is pinned.
2 years ago
jakicoll
6b206b3763
Move checks into validate_config.yml.
2 years ago
jakicoll
6499b6536a
Decoupling: Do not use variables user-verification-service role inside the jitsi role.
2 years ago
Paul N
50c1e9d695
Set matrix_user_verification_service_uvs_homeserver_url in the role defaults and updated docs accordingly.
2 years ago
jakicoll
0e0ae2f3e6
Assign default log level in role instead of matrix_servers file.
2 years ago
jakicoll
bf5e633656
Remove the self-build stub, because self-build was not implemented
2 years ago
Paul N
b89f5b7ff5
Clarify task name and add user and group to templated env file
...
Co-authored-by: Slavi Pantaleev <slavi@devture.com>
2 years ago
Jakob S
6913d368c8
Consolidate conditionals into a block, keep image
...
Co-authored-by: Slavi Pantaleev <slavi@devture.com>
2 years ago
Slavi Pantaleev
8155f780e5
Add support for reverse-proxying Matric (Client & Federation) via Traefik
2 years ago
Slavi Pantaleev
f983604695
Initial work on Traefik support
...
This gets us started on adding a Traefik role and hooking Traefik:
- directly to services which support Traefik - we only have a few of
these right now, but the list will grow
- to matrix-nginx-proxy for most services that integrate with
matrix-nginx-proxy right now
Traefik usage should be disabled by default for now and nothing should
change for people just yet.
Enabling these experiments requires additional configuration like this:
```yaml
devture_traefik_ssl_email_address: '.....'
matrix_playbook_traefik_role_enabled: true
matrix_playbook_traefik_labels_enabled: true
matrix_ssl_retrieval_method: none
matrix_nginx_proxy_https_enabled: false
matrix_nginx_proxy_container_http_host_bind_port: ''
matrix_nginx_proxy_container_federation_host_bind_port: ''
matrix_nginx_proxy_trust_forwarded_proto: true
matrix_nginx_proxy_x_forwarded_for: '$proxy_add_x_forwarded_for'
matrix_coturn_enabled: false
```
What currently works is:
reverse-proxying for all nginx-proxy based services **except** for the Matrix homeserver
(both Client-Server an Federation traffic for the homeserver don't work yet)
2 years ago
Slavi Pantaleev
4d6a8d049d
Add matrix_nginx_proxy_container_network variable
2 years ago
Slavi Pantaleev
e018663ba4
Attach ma1sd/nginx-proxy/synapse-reverse-proxy-companion to additional networks in a better way
...
Switching from doing "post-start" loop hacks to running the container
in 3 steps: `create` + potentially connect to additional networks + `start`.
This way, the container would be connected to all its networks even at
the very beginning of its life.
2 years ago
Slavi Pantaleev
be78b74fbd
Switch from matrix-prometheus-postgres-exporter to an external prometheus_postgres_exporter role
2 years ago
Slavi Pantaleev
2d7d5d4bab
Use new security-opt syntax (: -> =)
...
Related to https://docs.docker.com/engine/deprecated/#separator--of---security-opt-flag-on-docker-run
2 years ago
Catalan Lover
4d49f1f56e
Update Prometheus to v2.42.0 from v2.41.0
...
Docker images are released now so this change can now be pushed.
2 years ago
Aine
c11f772e78
Fix python packages path in synapse container
2 years ago
Slavi Pantaleev
7cb140b987
Downgrade Prometheus (v2.42.0 -> v2.41.0) until a container image gets published
...
Container image not published yet.
Reverts #2438
2 years ago
Slavi Pantaleev
d42ef7d243
Merge pull request #2439 from etkecc/patch-160
...
Update synapse 1.75.0 -> 1.76.0; default room version 9 -> 10
2 years ago
Slavi Pantaleev
c8ce83c725
Merge pull request #2438 from etkecc/patch-159
...
Update prometheus 2.41.0 -> 2.42.0
2 years ago
Aine
0f208ed053
Update synapse 1.75.0 -> 1.76.0; default room version 9 -> 10
2 years ago
Aine
82d870fddf
Update prometheus 2.41.0 -> 2.42.0
2 years ago
Aine
5300740f70
Update element 1.11.21 -> 1.11.22
2 years ago
Slavi Pantaleev
c7767e9bc8
Upgrade Coturn (4.6.1-r0 -> 4.6.1-r1)
2 years ago
Slavi Pantaleev
66bb2943b4
Merge pull request #2436 from etkecc/patch-157
...
Update jitsi stable-8218 -> stable-8252
2 years ago
Aine
68ca23d709
Update jitsi stable-8218 -> stable-8252
2 years ago
Aine
d70076c805
Update element 1.11.20 -> 1.11.21
2 years ago
Aine
8c2b77bf0c
Update cinny 2.2.3 -> 2.2.4
2 years ago
Slavi Pantaleev
611a74bde2
Use |to_json in mautrix metrics configuration
...
Related to https://github.com/spantaleev/matrix-docker-ansible-deploy/pull/2427
2 years ago
Slavi Pantaleev
d82d0ad84b
Add _metrics_proxying_enabled variables to mautrix bridges
...
Related to https://github.com/spantaleev/matrix-docker-ansible-deploy/pull/2427
`metrics_enabled` should only expose the metrics locally, on the
container network, so that a local Prometheus can consume them.
Exposing them publicly should be done via a separate toggle (`metrics_proxying_enabled`).
This is how all other roles work, so this makes these mautrix roles consistent with the rest.
2 years ago
Slavi Pantaleev
cad83ddca6
Merge pull request #2427 from alemairebe/mautrix-metrics
...
Mautrix metrics
2 years ago
Slavi Pantaleev
f9a496c29c
Merge pull request #2432 from shalzz/patch/slack
...
mautrix-slack: add team name in channel name template
2 years ago
Shaleen Jain
df9931f719
mautrix-slack: add team name in channel name template
2 years ago
Slavi Pantaleev
389d6c978f
Merge pull request #2431 from etkecc/patch-154
...
Update borgmatic 1.7.5 -> 1.7.6
2 years ago
Slavi Pantaleev
5482a9d5d0
Merge pull request #2429 from etkecc/patch-152
...
Update mautrix-discord latest -> 0.1.0
2 years ago
Aine
4f69b22a6e
Update borgmatic 1.7.5 -> 1.7.6
2 years ago
Aine
a9a17d803e
Update maubot 0.3.1 -> 0.4.0
2 years ago
Aine
111303208a
Update mautrix-discord latest -> 0.1.0
2 years ago
Adrien le Maire
9eaf6944e3
add nginx proxy connfig for mautrix metrics
2 years ago
Adrien le Maire
691ef13cab
template metric toggle for mautrix bridges supporting it
2 years ago
Slavi Pantaleev
e588c42088
Improve synapse-admin reverse-proxying fix
...
Fixup for 6a31fba346
2 years ago
Slavi Pantaleev
6a31fba346
Fix synapse-admin reverse-proxying regression caused by 0.8.6
...
Related to f165aa5d48
Related to https://github.com/spantaleev/matrix-docker-ansible-deploy/pull/2424
2 years ago
Aine
f165aa5d48
Update synapse-admin 0.8.5 -> 0.8.6
2 years ago
bertybuttface
7b5ced3037
Fix linting issue.
2 years ago
bertybuttface
d66a2949f6
Update env.j2
...
Use matrix_bot_chatgpt_context for CHATGPT_CONTEXT
2 years ago
bertybuttface
7e1408ea65
Bump ChatGPT version and add new config settings
...
matrix_bot_chatgpt_context=thread
2 years ago
Slavi Pantaleev
430a55902c
Merge pull request #2420 from bertybuttface/patch-1
...
Upgrade matrix-chatgpt-bot to latest
2 years ago
Slavi Pantaleev
784043cc5d
Ensure OPENAI_PRO is true/false (not True/False)
2 years ago
Slavi Pantaleev
867737fe0b
Upgrade Grafana (9.3.4 -> 9.3.6)
2 years ago
Slavi Pantaleev
aafa8f019c
Allow matrix_coturn_docker_network to be set to 'host' to use host-networking
...
This helps large deployments which need to open up thousands of ports
(matrix_coturn_turn_udp_min_port, matrix_coturn_turn_udp_min_port)
On a test VM, opening 1k ports takes 17 seconds for Docker to "publish"
all of these ports (setting up forwarding rules with the firewall, etc),
so service startup and shutdown take a long amount of time.
If host-networking is used, there's no need to open any ports at all
and startup/shutdown can be quick.
2 years ago
Slavi Pantaleev
bb0faa6bc3
Block various private network ranges via denied_peer_ips for Coturn by default
...
Inspired by: https://www.rtcsec.com/article/cve-2020-26262-bypass-of-coturns-access-control-protection/
2 years ago
Slavi Pantaleev
773cb7d37e
Make no-tcp-relay Coturn configuration property configurable
2 years ago
Slavi Pantaleev
bf23d63f82
Add matrix_coturn_additional_configuration
2 years ago
Slavi Pantaleev
4c9f96722f
Add no-multicast-peers to Coturn config by default
...
Part of a security hardening provoked by:
https://www.rtcsec.com/article/cve-2020-26262-bypass-of-coturns-access-control-protection/
2 years ago
bertybuttface
18c3903def
Update env.j2
...
Set OPEN_AI to matrix_bot_chatgpt_openai_pro
2 years ago
bertybuttface
ad58858a96
Upgrade matrix-chatgpt (1.2.3 -> 1.3.2)
...
Add support for OPENAI_PRO for ChatGPT pro subscriptions.
2 years ago
rhys
d01de9f33d
Fix lint errors
2 years ago
rhys
547b01d618
Added option to allow user to set jigasi user and password for AUTH
2 years ago
Aine
6afd3c59eb
Update grafana 9.3.2 -> 9.3.4
2 years ago
Array in a Matrix
47165e8902
updated dendrite version
2 years ago
Slavi Pantaleev
54e5e4b6b9
Merge pull request #2416 from moan0s/fix_cactus_comments
...
Fix client js and css download (load compiled version)
2 years ago
Slavi Pantaleev
c4d1347466
Fix typos
2 years ago
Julian-Samuel Gebühr
18d8d41e14
Fix client js and css download (load compiled version)
2 years ago
Slavi Pantaleev
9ed2e04d80
Switch from matrix-prometheus-node-exporter to an external prometheus_node_exporter role
2 years ago
Slavi Pantaleev
5f7ed722f6
Merge pull request #2415 from etkecc/patch-148
...
Update hookshot 2.6.1 -> 2.7.0
2 years ago
Aine
32292b1f02
Update hookshot 2.6.1 -> 2.7.0
2 years ago
Aine
b71e267221
Update element 1.11.19 -> 1.11.20
2 years ago
Aine
8804a15821
Update element 1.11.18 -> 1.11.19
2 years ago
Vladimir Panteleev
6c332da7d3
Fix ChatGPT container
...
This container needs a writable $HOME, and will fail at startup if
there isn't one.
Provide one by pointing HOME to a path under the mounted /data
directory.
2 years ago
Aine
63a3764f51
Update element 1.11.17 -> 1.11.18
2 years ago
Slavi Pantaleev
70a35f17fe
Merge pull request #2402 from etkecc/patch-144
...
Update buscarron v1.3.0 -> v1.3.1
2 years ago
Aine
2fc02abfdc
Update buscarron v1.3.0 -> v1.3.1
2 years ago
Aine
903db54959
Update postmoogle 0.9.10 -> 0.9.11
2 years ago
Slavi Pantaleev
424f79df3a
Replace synapse.app.pusher and synapse.app.federation_sender with synapse.app.generic_worker
...
Related to https://github.com/matrix-org/synapse/commit/3479599387164aca2613e88d169719
2 years ago
Slavi Pantaleev
34745b5206
Upgrade Synapse (v1.74.0 -> v1.75.0)
2 years ago
Slavi Pantaleev
3ff6e755a9
Upgrade Hookshot (2.6.0 -> 2.6.1)
2 years ago
Aine
e053b2b0fc
update mautrix-whatsapp 0.8.0 -> 0.8.1
2 years ago
Aine
5c8bad6091
update borg image tag
2 years ago
Slavi Pantaleev
34c448c3bb
Upgrade Cinny (2.2.2 -> 2.2.3)
2 years ago
Aine
d1b4a6ebe1
unify docker images urls
2 years ago
Slavi Pantaleev
5d10001712
Merge pull request #2394 from etkecc/patch-141
...
Update hookshot 2.5.0 -> 2.6.0
2 years ago
Aine
627d8557ae
Update hookshot 2.5.0 -> 2.6.0
2 years ago
Aine
e8c6267e9a
Update jitsi stable-8138-1 -> stable-8218
2 years ago
Slavi Pantaleev
ae1ad3baf6
Improve block tasks indentation to make yamllint happy
...
Related to https://github.com/spantaleev/matrix-docker-ansible-deploy/pull/2392
2 years ago
Slavi Pantaleev
673ee508dc
Upgrade matrix-chatgpt (1.2.2 -> 1.2.3)
2 years ago
Slavi Pantaleev
ab8cb21a45
Upgrade matrix-chatgpt (1.2.1 -> 1.2.2)
2 years ago
Slavi Pantaleev
17438bd0dd
Upgrade mjolnir (v1.6.3 -> v1.6.4)
2 years ago
Slavi Pantaleev
0c472c172e
Upgrade mjolnir (v1.6.1 -> v1.6.3)
2 years ago
Slavi Pantaleev
4e40ac5ad8
Merge pull request #2227 from xangelix/add-matrix-mautrix-slack-role
...
Add matrix-bridge-mautrix-slack role
2 years ago
Slavi Pantaleev
226d81318a
Merge branch 'bertybuttface-master'
2 years ago
Slavi Pantaleev
a96a22c925
chatgpt docs updates
2 years ago
bertybuttface
0b88293393
Bump ChatGPT version.
2 years ago
bertybuttface
0ec1868b95
Add matrix-bot-chatgpt.
...
Co-Authored-By: Slavi Pantaleev <slavi@devture.com>
2 years ago
Slavi Pantaleev
d2416365d2
Merge pull request #2220 from xangelix/synapse-s3-sse-c
...
Add S3 SSE-C config support for synapse-s3-storage-provider
2 years ago
Slavi Pantaleev
f0d1e23c9d
Move around whitelines
2 years ago
Cody Wyatt Neiman
fc9eaa6ec5
Remove git version for s3 storage provider
2 years ago
Aine
6bd909bbb7
add mode var for synapse ext ldap auth
2 years ago
Slavi Pantaleev
1d1fd7053c
ewoutp/goofys:latest -> docker.io/ewoutp/goofys:latest
2 years ago
Aine
b487bb6749
unify image prefixes
2 years ago