Slavi Pantaleev
7d625011a1
Move matrix-bridge-appservice-discord to its own container network
2024-01-07 10:23:01 +02:00
Slavi Pantaleev
c5006c3ac2
Move matrix-bot-maubot to its own container network and add native Traefik support
2024-01-07 10:16:42 +02:00
Slavi Pantaleev
a794db4c38
Reorder matrix-bot-matrix-reminder-bot group vars for consistency
2024-01-07 09:35:18 +02:00
Slavi Pantaleev
87c8c29c47
Move matrix-bot-matrix-registration-bot to its own container network
2024-01-07 09:33:37 +02:00
Slavi Pantaleev
628496d022
Move matrix-bot-honoroit to its own container network
2024-01-07 09:30:08 +02:00
Slavi Pantaleev
835f623bb8
Move matrix-bot-go-neb to its own container network
2024-01-07 09:23:24 +02:00
Slavi Pantaleev
867af6385a
Move matrix-bot-mjolnir to its own container network
2024-01-07 09:20:24 +02:00
Slavi Pantaleev
88ad58fccb
Move matrix-bot-draupnir to its own container network
2024-01-07 09:04:38 +02:00
Slavi Pantaleev
d8b867b6fb
Move matrix-bot-buscarron to its own container network
2024-01-07 09:04:35 +02:00
Slavi Pantaleev
14d57bb7a6
Reorganize mautrix-facebook group vars for consistency
2024-01-07 08:58:06 +02:00
Slavi Pantaleev
b122c7092a
Merge branch 'master' into bye-bye-nginx-proxy
2024-01-05 18:12:44 +02:00
Slavi Pantaleev
d116d863e6
Move exim-relay service to its own network and connect Synapse & ma1sd to it automatically
2024-01-05 18:10:24 +02:00
Slavi Pantaleev
0bb40d1337
Fix integration between ma1sd and exim-relay
...
Regression since ba0a4e864a
2024-01-05 17:59:27 +02:00
Slavi Pantaleev
377fce5855
Merge branch 'master' into bye-bye-nginx-proxy
2024-01-05 17:55:49 +02:00
Slavi Pantaleev
ba0a4e864a
Replace matrix-mailer with an external role
2024-01-05 17:54:50 +02:00
Slavi Pantaleev
9488e3857a
Put all homeservers in the matrix-homeserver container network
2024-01-05 16:49:48 +02:00
Slavi Pantaleev
1be90cf87d
Move Postgres to its own network for better isolation
...
A lot of services are yet to be updated to start connecting to
`devture_postgres_container_network` as an additional network.
Many are already done, but I'll go through all the others later.
2024-01-05 16:38:32 +02:00
Slavi Pantaleev
b37a02720f
Move all Matrix client apps into the matrix-addons container network
...
Putting each client into its own network was good for isolation,
but it's quite wasteful in terms of the container network pool.
2024-01-05 07:17:11 +02:00
Slavi Pantaleev
d262ca0fe6
Only enable matrix-synapse-reverse-proxy-companion when Synapse workers are enabled
...
This allows us to eliminate the companion and decrease overhead for
simple servers which do not use workers.
2024-01-05 07:00:50 +02:00
Slavi Pantaleev
499e4887f7
Connect sliding-sync directly to the homeserver
...
This saves up 1 container network and avoids going through extra proxies
unnecessarily.
2024-01-05 06:28:42 +02:00
Slavi Pantaleev
7a6a6270d1
Fix API endpoints for Synapse when companion is disabled (removing leading http://)
2024-01-05 06:26:56 +02:00
Slavi Pantaleev
3fb016cd6b
Put bots and bridges in the same network and remove a few variables
...
Downsides: decreasing security slightly due to less networking isolation
Benefits:
- decreased complexity
- having a generically-named `matrix-addons` network we may use for other things now (client apps, etc.)
- not exhausting the container networks pool with 2 (or more) networks and using just 1
2024-01-05 06:13:12 +02:00
Slavi Pantaleev
170f321a01
Minor sliding-sync improvements
2024-01-05 06:04:44 +02:00
Slavi Pantaleev
015acb6d08
Add native Traefik support to matrix-synapse
2024-01-04 19:00:23 +02:00
Slavi Pantaleev
abde681b56
Clean up some matrix_nginx_proxy_proxy_matrix_metrics_* references
2024-01-04 12:49:00 +02:00
Slavi Pantaleev
54fb153acf
Expose /_synapse/* APIs via matrix-synapse-reverse-proxy-companion
...
This also updates validation tasks and documentation, pointing to
variables in the matrix-synapse role which don't currently exist yet
(e.g. `matrix_synapse_container_labels_client_synapse_admin_api_enabled`).
These variables will be added soon, as Traefik labels are added to the
`matrix-synapse` role. At that point, the `matrix-synapse-reverse-proxy-companion` role
will be updated to also use them.
2024-01-04 11:37:17 +02:00
Slavi Pantaleev
0ea3fa0e85
Add matrix_synapse_reverse_proxy_companion_container_labels_traefik_hostname to simplify wiring
2024-01-04 10:53:43 +02:00
Slavi Pantaleev
4752e7f9a0
Get rid of matrix_nginx_proxy_proxy_matrix_client_redirect_root_uri_to_domain
2024-01-04 10:27:32 +02:00
Slavi Pantaleev
e678adfeda
Add root path (/) handling to matrix-synapse-reverse-proxy-companion (redirect or /_matrix/static/ serving)
2024-01-04 10:24:33 +02:00
Slavi Pantaleev
bbd9493b8f
Handle /_matrix Client-Server and Federation APIs directly at matrix-synapse-reverse-proxy-companion
2024-01-03 17:05:59 +02:00
Slavi Pantaleev
e81a395a98
Drop some matrix_nginx_proxy_proxy_riot_compat_* variables
...
matrix-nginx-proxy is going away and this is one of the features it
offered.
This feature will have no equivalent in our new Traefik-only
setup, although it's possible to implement it manually by using
`matrix_client_element_container_labels_additional_labels`
2024-01-03 14:43:45 +02:00
Slavi Pantaleev
cc75be9c65
Add support for serving the base domain via matrix-static-files
2024-01-03 14:39:17 +02:00
Slavi Pantaleev
da48a605bb
More progress on matrix-static-files role and cleaning up of matrix-base and matrix-nginx-proxy
2024-01-03 13:46:25 +02:00
Slavi Pantaleev
065b70203d
[WIP] Initial work on matrix-static-files role
2024-01-03 13:05:59 +02:00
Slavi Pantaleev
128a7b82d5
Switch mautrix-instagram from matrix-nginx-proxy to matrix-homeserver-proxy
...
This is completely untested.
2024-01-03 09:25:05 +02:00
Slavi Pantaleev
feaf1ee7e7
Switch mautrix-whatsapp from matrix-nginx-proxy to matrix-homeserver-proxy
2024-01-02 17:41:36 +02:00
Slavi Pantaleev
20c7cabfe4
Switch mautrix-discord from matrix-nginx-proxy to matrix-homeserver-proxy
2024-01-02 17:22:23 +02:00
Slavi Pantaleev
77b0ef4799
Add Traefik support to Hookshot
2024-01-02 17:10:26 +02:00
Slavi Pantaleev
4a6287c528
Initial work on matrix-homeserver-proxy role and eliminating matrix-nginx-proxy
...
This is still very far from usable.
Various bridges and bots are still talking to
`matrix-nginx-proxy` instead of the new `matrix-homeserver-proxy` role.
These services need to be reworked. While reworking them,
various cleanups are being done as well as adding Traefik-labels to
those that need them.
2024-01-02 16:07:40 +02:00
Pierre 'McFly' Marty
811c6b1af5
Merge branch 'spantaleev:master' into 3031-feat-add-signalgo-bridge
2023-12-26 09:39:46 +01:00
Aine
87a74335f9
add automatic registration of chatgpt bot's user (if password is provided)
2023-12-23 13:30:39 +02:00
Slavi Pantaleev
11ee949e9e
Add native Traefik support to matrix-corporal (HTTP API)
2023-12-23 10:36:20 +02:00
Pierre 'McFly' Marty
055406b255
Merge branch 'spantaleev:master' into 3031-feat-add-signalgo-bridge
2023-12-22 16:48:06 +01:00
Slavi Pantaleev
e7a911a7fa
Add note about matrix_nginx_proxy_proxy_media_repo_enabled
2023-12-22 09:18:44 +02:00
Slavi Pantaleev
ce013a325c
Remove duplicate matrix_media_repo_identifier definition from group_vars/matrix_servers
...
`matrix_media_repo_identifier` is already defined in the role defaults,
which is a better role to have it anyway.
2023-12-22 08:43:30 +02:00
Michael Hollister
0908c6b662
Added Traefik support to MMR
2023-12-20 13:38:46 -06:00
Pierre 'McFly' Marty
c93b642f90
doc: check typo
2023-12-18 16:51:35 +01:00
Pierre 'McFly' Marty
2f6525ccb3
refactor: remove signalgo and update signal to 'after merge'
2023-12-18 16:38:52 +01:00
Pierre 'McFly' Marty
0e4c878ee3
Merge branch 'spantaleev:master' into 3031-feat-add-signalgo-bridge
2023-12-16 12:34:56 +01:00
Slavi Pantaleev
dbf1a685bf
Do not connect Hookshot to Redis unless encryption is enabled
...
It seems like connectivity is problematic, even though the networks
appear to be configured correctly:
> [ioredis] Unhandled error event: Error: connect ECONNREFUSED 172.22.0.2:6739
> at TCPConnectWrap.afterConnect [as oncomplete] (node:net:1595:16)
For now, I disable pointing the queue host to Redis to avoid it.
It should be investigated.
People who enable Hookshot's new experimental encryption may encounter
this also.
Related to https://github.com/spantaleev/matrix-docker-ansible-deploy/pull/3042
2023-12-16 09:54:09 +02:00