Slavi Pantaleev 
							
						 
					 
					
						
						
							
						
						f825c7c263 
					 
					
						
						
							
							Upgrade Synapse (1.31 -> 1.32)  
						
						
						
						
					 
					
						2021-04-20 17:47:34 +03:00 
						 
				 
			
				
					
						
							
							
								Slavi Pantaleev 
							
						 
					 
					
						
						
							
						
						7eda6a3c12 
					 
					
						
						
							
							Merge pull request  #1009  from thedanbob/coturn-official  
						
						... 
						
						
						
						Switch to official coturn image 
						
						
					 
					
						2021-04-19 18:41:17 +03:00 
						 
				 
			
				
					
						
							
							
								Slavi Pantaleev 
							
						 
					 
					
						
						
							
						
						adcecaffaf 
					 
					
						
						
							
							Fix connectivity between prometheus and prometheus-node-exporter  
						
						... 
						
						
						
						Expected to have regressed after https://github.com/spantaleev/matrix-docker-ansible-deploy/pull/1008 
This patch comes with its own downsides (as described in the comments
for matrix_prometheus_node_exporter_container_http_host_bind_port),
but at least there's:
- no security issue
- metrics remain readable from matrix-prometheus (even if the network metrics are inaccurate)
A better patch is certainly welcome. 
						
						
					 
					
						2021-04-19 18:29:03 +03:00 
						 
				 
			
				
					
						
							
							
								Dan Arnfield 
							
						 
					 
					
						
						
							
						
						b2ca1f2829 
					 
					
						
						
							
							Add capability required by new image  
						
						
						
						
					 
					
						2021-04-19 10:16:26 -05:00 
						 
				 
			
				
					
						
							
							
								Slavi Pantaleev 
							
						 
					 
					
						
						
							
						
						398b9f5d66 
					 
					
						
						
							
							Merge pull request  #1008  from sakkiii/master  
						
						... 
						
						
						
						security** node-exporter data & port publicly exposed 
						
						
					 
					
						2021-04-19 17:31:00 +03:00 
						 
				 
			
				
					
						
							
							
								Dan Arnfield 
							
						 
					 
					
						
						
							
						
						29177d4922 
					 
					
						
						
							
							Switch to official coturn docker image  
						
						
						
						
					 
					
						2021-04-19 09:04:08 -05:00 
						 
				 
			
				
					
						
							
							
								sak 
							
						 
					 
					
						
						
							
						
						88a30fb5ed 
					 
					
						
						
							
							security** node-exporter data & port publicly exposed  
						
						
						
						
					 
					
						2021-04-19 15:35:23 +05:30 
						 
				 
			
				
					
						
							
							
								sak 
							
						 
					 
					
						
						
							
						
						0f9a455719 
					 
					
						
						
							
							Revert "security** node-exporter data & port publicly exposed"  
						
						... 
						
						
						
						This reverts commit d0cd709c08 
						
						
					 
					
						2021-04-19 15:24:36 +05:30 
						 
				 
			
				
					
						
							
							
								sak 
							
						 
					 
					
						
						
							
						
						d0cd709c08 
					 
					
						
						
							
							security** node-exporter data & port publicly exposed  
						
						
						
						
					 
					
						2021-04-19 15:15:59 +05:30 
						 
				 
			
				
					
						
							
							
								Slavi Pantaleev 
							
						 
					 
					
						
						
							
						
						4a1739f604 
					 
					
						
						
							
							Merge pull request  #1007  from teutat3s/fix/nginx-dont-send-version  
						
						... 
						
						
						
						Don't expose nginx version with each response 
						
						
					 
					
						2021-04-18 21:33:11 +03:00 
						 
				 
			
				
					
						
							
							
								teutat3s 
							
						 
					 
					
						
						
							
						
						2bf7c26cfa 
					 
					
						
						
							
							Don't expose nginx version with each response  
						
						
						
						
					 
					
						2021-04-18 16:24:13 +02:00 
						 
				 
			
				
					
						
							
							
								Slavi Pantaleev 
							
						 
					 
					
						
						
							
						
						c565e72f0d 
					 
					
						
						
							
							Merge pull request  #1003  from sakkiii/patch-2  
						
						... 
						
						
						
						updated matrix_grafana_docker_image to v7.5.4 
						
						
					 
					
						2021-04-18 09:56:12 +03:00 
						 
				 
			
				
					
						
							
							
								Slavi Pantaleev 
							
						 
					 
					
						
						
							
						
						51b46697c5 
					 
					
						
						
							
							Merge pull request  #1005  from sakkiii/master  
						
						... 
						
						
						
						Improve security for grafana 
						
						
					 
					
						2021-04-18 09:50:59 +03:00 
						 
				 
			
				
					
						
							
							
								Dan Arnfield 
							
						 
					 
					
						
						
							
						
						f04614a993 
					 
					
						
						
							
							Fix prometheus network for ansible < 2.8  
						
						
						
						
					 
					
						2021-04-17 20:15:26 -05:00 
						 
				 
			
				
					
						
							
							
								Slavi Pantaleev 
							
						 
					 
					
						
						
							
						
						badd81e0ec 
					 
					
						
						
							
							Revert "Attempt to fix docker_network result discrepancy between Ansible versions"  
						
						... 
						
						
						
						This reverts commit 68ca81c8c2 
						
						
					 
					
						2021-04-17 19:31:20 +03:00 
						 
				 
			
				
					
						
							
							
								sakkiii 
							
						 
					 
					
						
						
							
						
						1958d0792d 
					 
					
						
						
							
							Update matrix-client-element.conf.j2  
						
						
						
						
					 
					
						2021-04-17 21:33:07 +05:30 
						 
				 
			
				
					
						
							
							
								sakkiii 
							
						 
					 
					
						
						
							
						
						b6d45c5fd8 
					 
					
						
						
							
							Merge branch 'master' of  https://github.com/sakkiii/matrix-docker-ansible-deploy  
						
						
						
						
					 
					
						2021-04-17 21:03:26 +05:30 
						 
				 
			
				
					
						
							
							
								sakkiii 
							
						 
					 
					
						
						
							
						
						05042f5ff1 
					 
					
						
						
							
							Improve security grafana  
						
						... 
						
						
						
						- duplicate X-Content-Type-Options
- X-Frame-Options header
- Referrer-Policy [Might consider adding variable]
- Secure flag with cookies
- matrix_grafana_content_security_policy variable for [Content Security Policy](https://grafana.com/docs/grafana/latest/administration/configuration/#content_security_policy ) 
						
						
					 
					
						2021-04-17 21:03:05 +05:30 
						 
				 
			
				
					
						
							
							
								sakkiii 
							
						 
					 
					
						
						
							
						
						27377e099d 
					 
					
						
						
							
							updated matrix_grafana_docker_image to v7.5.4  
						
						... 
						
						
						
						Latest stable grafana version is [7.5.4 (2021-04-14)](https://github.com/grafana/grafana/releases/tag/v7.5.4 ) 
						
						
					 
					
						2021-04-17 17:31:14 +05:30 
						 
				 
			
				
					
						
							
							
								Slavi Pantaleev 
							
						 
					 
					
						
						
							
						
						68ca81c8c2 
					 
					
						
						
							
							Attempt to fix docker_network result discrepancy between Ansible versions  
						
						... 
						
						
						
						Supposedly fixes https://github.com/spantaleev/matrix-docker-ansible-deploy/issues/907  
						
						
					 
					
						2021-04-17 11:42:06 +03:00 
						 
				 
			
				
					
						
							
							
								Slavi Pantaleev 
							
						 
					 
					
						
						
							
						
						9c1f41eadf 
					 
					
						
						
							
							Merge pull request  #1002  from thedanbob/node-exporter-1.1.2  
						
						... 
						
						
						
						Update prometheus node exporter (1.1.0->1.1.2) 
						
						
					 
					
						2021-04-17 11:15:13 +03:00 
						 
				 
			
				
					
						
							
							
								Dan Arnfield 
							
						 
					 
					
						
						
							
						
						8a550ce67c 
					 
					
						
						
							
							Update prometheus (2.24.1->2.26.0)  
						
						
						
						
					 
					
						2021-04-16 09:25:45 -05:00 
						 
				 
			
				
					
						
							
							
								Dan Arnfield 
							
						 
					 
					
						
						
							
						
						83cc5c9e6a 
					 
					
						
						
							
							Update prometheus node exporter (1.1.0 -> 1.1.2)  
						
						
						
						
					 
					
						2021-04-16 09:17:04 -05:00 
						 
				 
			
				
					
						
							
							
								sakkiii 
							
						 
					 
					
						
						
							
						
						5dc642ace1 
					 
					
						
						
							
							Nginx element web: XSS protection & nosniff header  
						
						... 
						
						
						
						X-XSS-Protection: 1; mode=block; header, for basic XSS protection in legacy browsers.
X-Content-Type-Options: nosniff header, to disable MIME sniffing 
						
						
					 
					
						2021-04-16 14:45:04 +05:30 
						 
				 
			
				
					
						
							
							
								Slavi Pantaleev 
							
						 
					 
					
						
						
							
						
						fcb9e9618a 
					 
					
						
						
							
							Make Coturn TLSv1/v1.1 configurable  
						
						... 
						
						
						
						Related to https://github.com/spantaleev/matrix-docker-ansible-deploy/pull/999  
						
						
					 
					
						2021-04-16 09:29:32 +03:00 
						 
				 
			
				
					
						
							
							
								sakkiii 
							
						 
					 
					
						
						
							
						
						540416e32d 
					 
					
						
						
							
							Disable support for TLS 1.0 and TLS 1.1  
						
						... 
						
						
						
						These old versions of TLS rely on MD5 and SHA-1, both now broken, and contain other flaws. TLS 1.0 is no longer PCI-DSS compliant and the TLS working group has adopted a document to deprecate TLS 1.0 and TLS 1.1. 
						
						
					 
					
						2021-04-15 19:25:23 +05:30 
						 
				 
			
				
					
						
							
							
								Michael-GMH 
							
						 
					 
					
						
						
							
						
						89cb5a3d7a 
					 
					
						
						
							
							GMH v0.4.2 update  
						
						
						
						
					 
					
						2021-04-15 17:07:03 +08:00 
						 
				 
			
				
					
						
							
							
								Michael 
							
						 
					 
					
						
						
							
						
						f41bfb69d2 
					 
					
						
						
							
							update survey template formatting  
						
						
						
						
					 
					
						2021-04-04 12:01:53 +08:00 
						 
				 
			
				
					
						
							
							
								Michael 
							
						 
					 
					
						
						
							
						
						814bdf5a88 
					 
					
						
						
							
							update spelling  
						
						
						
						
					 
					
						2021-04-04 11:52:26 +08:00 
						 
				 
			
				
					
						
							
							
								Michael 
							
						 
					 
					
						
						
							
						
						fbe22289bd 
					 
					
						
						
							
							merge with upstream and testing branch  
						
						
						
						
					 
					
						2021-04-04 11:41:06 +08:00 
						 
				 
			
				
					
						
							
							
								Slavi Pantaleev 
							
						 
					 
					
						
						
							
						
						995c483856 
					 
					
						
						
							
							Merge pull request  #962  from aaronraimist/mjolnir  
						
						... 
						
						
						
						Add mjolnir 
						
						
					 
					
						2021-04-03 10:45:29 +03:00 
						 
				 
			
				
					
						
							
							
								Slavi Pantaleev 
							
						 
					 
					
						
						
							
						
						f183add44d 
					 
					
						
						
							
							Merge pull request  #977  from aaronraimist/simple-antispam  
						
						... 
						
						
						
						Upgrade synapse-simple-antispam (0.0.1 -> 0.0.3) 
						
						
					 
					
						2021-04-03 08:45:14 +03:00 
						 
				 
			
				
					
						
							
							
								Aaron Raimist 
							
						 
					 
					
						
						
							
						
						81dddd2e25 
					 
					
						
						
							
							Upgrade Element (1.7.24 -> 1.7.24.1)  
						
						
						
						
					 
					
						2021-04-02 18:43:30 -05:00 
						 
				 
			
				
					
						
							
							
								Aaron Raimist 
							
						 
					 
					
						
						
							
						
						c43bd412dd 
					 
					
						
						
							
							Upgrade synapse-simple-antispam (0.0.1 -> 0.0.3)  
						
						
						
						
					 
					
						2021-04-02 18:08:08 -05:00 
						 
				 
			
				
					
						
							
							
								Aaron Raimist 
							
						 
					 
					
						
						
							
						
						1ecee625d5 
					 
					
						
						
							
							Depend on more services, add a delay  
						
						
						
						
					 
					
						2021-04-02 17:07:24 -05:00 
						 
				 
			
				
					
						
							
							
								Slavi Pantaleev 
							
						 
					 
					
						
						
							
						
						a88391edf5 
					 
					
						
						
							
							Merge pull request  #972  from JohannesKleine/nginx-config  
						
						... 
						
						
						
						matrix-nginx-proxy: add custom nginx options to nginx.conf.j2 
						
						
					 
					
						2021-03-31 10:30:57 +03:00 
						 
				 
			
				
					
						
							
							
								teutat3s 
							
						 
					 
					
						
						
							
						
						0b5e903693 
					 
					
						
						
							
							Updates to mautrix-signal config  
						
						... 
						
						
						
						See these last commits:
tulir/mautrix-signal@4fc34330c1 
tulir/mautrix-signal@64bc5c36a5 
tulir/mautrix-signal@ddda1666d4  
						
						
					 
					
						2021-03-31 02:51:23 +02:00 
						 
				 
			
				
					
						
							
							
								Christoph Johannes Kleine 
							
						 
					 
					
						
						
							
						
						fcd66b2889 
					 
					
						
						
							
							rename variables  
						
						
						
						
					 
					
						2021-03-30 16:41:32 +02:00 
						 
				 
			
				
					
						
							
							
								Christoph Johannes Kleine 
							
						 
					 
					
						
						
							
						
						8ba1105010 
					 
					
						
						
							
							rename variable  
						
						
						
						
					 
					
						2021-03-30 15:59:10 +02:00 
						 
				 
			
				
					
						
							
							
								Christoph Johannes Kleine 
							
						 
					 
					
						
						
							
						
						3a772f2f65 
					 
					
						
						
							
							matrix-nginx-proxy: add custom nginx options to nginx.conf.j2  
						
						
						
						
					 
					
						2021-03-30 14:11:20 +02:00 
						 
				 
			
				
					
						
							
							
								Slavi Pantaleev 
							
						 
					 
					
						
						
							
						
						93960b70be 
					 
					
						
						
							
							Do not fail if _matrix-identity DNS SRV record missing  
						
						... 
						
						
						
						Related to https://github.com/spantaleev/matrix-docker-ansible-deploy/pull/963 
This also simplifies Prerequisites, which is great.
It'd be nice if we were doing these checks in some optional manner
and reporting them as helpful messages (using
`matrix_playbook_runtime_results`), but that's more complicated.
I'd rather drop these checks completely. 
						
						
					 
					
						2021-03-30 11:24:04 +03:00 
						 
				 
			
				
					
						
							
							
								Slavi Pantaleev 
							
						 
					 
					
						
						
							
						
						5e1cf7f8b9 
					 
					
						
						
							
							Upgrade Element (1.7.23 -> 1.7.24)  
						
						
						
						
					 
					
						2021-03-29 17:58:02 +03:00 
						 
				 
			
				
					
						
							
							
								Slavi Pantaleev 
							
						 
					 
					
						
						
							
						
						9409588513 
					 
					
						
						
							
							Fix variable name typo (take 2)  
						
						... 
						
						
						
						Related to https://github.com/spantaleev/matrix-docker-ansible-deploy/issues/970  
						
						
					 
					
						2021-03-29 10:59:57 +03:00 
						 
				 
			
				
					
						
							
							
								Slavi Pantaleev 
							
						 
					 
					
						
						
							
						
						179b416ed5 
					 
					
						
						
							
							Fix variable name typo  
						
						... 
						
						
						
						Fixes https://github.com/spantaleev/matrix-docker-ansible-deploy/issues/970  
						
						
					 
					
						2021-03-29 09:24:35 +03:00 
						 
				 
			
				
					
						
							
							
								Slavi Pantaleev 
							
						 
					 
					
						
						
							
						
						77d598b315 
					 
					
						
						
							
							Fix Go-NEB variable definitions using the wrong type  
						
						... 
						
						
						
						Fixes https://github.com/spantaleev/matrix-docker-ansible-deploy/pull/969  
						
						
					 
					
						2021-03-28 12:10:22 +03:00 
						 
				 
			
				
					
						
							
							
								Slavi Pantaleev 
							
						 
					 
					
						
						
							
						
						49868db3de 
					 
					
						
						
							
							Upgrade Synapse for ARM64 (1.30.0 -> 1.30.1)  
						
						
						
						
					 
					
						2021-03-26 16:48:15 +02:00 
						 
				 
			
				
					
						
							
							
								Slavi Pantaleev 
							
						 
					 
					
						
						
							
						
						94487dc6a7 
					 
					
						
						
							
							Upgrade Synapse for amd64 (1.30.0 -> 1.30.1)  
						
						
						
						
					 
					
						2021-03-26 15:37:11 +02:00 
						 
				 
			
				
					
						
							
							
								transcaffeine 
							
						 
					 
					
						
						
							
						
						dbae18fd6a 
					 
					
						
						
							
							feat: push ephemeral events to appservices  
						
						... 
						
						
						
						This adds https://github.com/matrix-org/matrix-doc/pull/2409  to the
appservice registrations, enabling synapse to push EDUs to appservices. 
						
						
					 
					
						2021-03-25 18:49:54 +01:00 
						 
				 
			
				
					
						
							
							
								Dan Arnfield 
							
						 
					 
					
						
						
							
						
						97d8527e00 
					 
					
						
						
							
							Update nginx (1.19.6 -> 1.19.8)  
						
						
						
						
					 
					
						2021-03-24 09:42:08 -05:00 
						 
				 
			
				
					
						
							
							
								Slavi Pantaleev 
							
						 
					 
					
						
						
							
						
						5a4ea5f866 
					 
					
						
						
							
							Make AWX enabling/disabling consistent with other playbook roles  
						
						... 
						
						
						
						That is:
- enabled in the role by default
- disabled in the compilation (playbook), if considered an optional
component 
						
						
					 
					
						2021-03-24 14:02:53 +02:00