Lunar
471806e7bd
Increase default async time for rust-synapse-compress-state
...
Increase the async timeout value defaults, as larger Matrix servers need more time to complete.
2022-04-17 20:27:04 -05:00
Arthur Brugière
3fbbd5a52c
Update mautrix-whatsapp 0.3.0 -> 0.3.1
2022-04-17 14:07:50 +07:00
Slavi Pantaleev
83ffb9d910
Merge pull request #1755 from etkecc/backup-borg-postgres
...
matrix-backup-borg: integrate postgres backups, add extended borgmatic configuration
2022-04-16 09:30:03 +03:00
Aine
c520a758ec
fix linter
2022-04-15 19:43:45 +03:00
Aine
a9d0cbc560
feedback
2022-04-15 19:38:10 +03:00
joecool1029
5611cab71a
Update element 1.10.9 -> 1.10.10
2022-04-14 13:38:38 -04:00
Aine
d5f4c17146
matrix-backup-borg: integrate postgres backups, add extended borgmatic configuration
2022-04-14 18:06:54 +03:00
Kim Brose
7e062328ff
Upgrade Hookshot (1.4.0 -> 1.5.0)
2022-04-14 15:01:40 +02:00
Slavi Pantaleev
2df993977a
Ensure git cloning when self-building is done with the matrix user, not root
...
Fixes https://github.com/spantaleev/matrix-docker-ansible-deploy/issues/1749
2022-04-14 08:52:37 +03:00
Aine
b9bf20c761
Update honoroit 0.9.5 -> 0.9.6
...
This update brings stable threads support
2022-04-12 15:52:49 +00:00
Christos Karamolegkos
9c606d1fcb
Update jitsi to version 7001
...
Tested, works without any configuration changes.
2022-04-12 17:00:07 +03:00
Aine
ac1bd49494
Update coturn 4.5.2-r8 -> 4.5.2-r11
2022-04-12 11:16:36 +00:00
Aine
10c6c24c16
Update element 1.10.8 -> 1.10.9
2022-04-12 11:15:11 +00:00
Yan Minagawa
f6cb59116b
This adds a variable for requiring MSC3231 token for registration
2022-04-12 14:31:49 +07:00
HarHarLinks
a9e6538ef8
Upgrade Hookshot (1.3.0 -> 1.4.0)
...
https://github.com/matrix-org/matrix-hookshot/releases/tag/1.4.0
2022-04-11 18:55:02 +02:00
HarHarLinks
ceb2f54970
Make hookshot hardcoded public URLs dynamic
2022-04-11 16:45:33 +02:00
Slavi Pantaleev
f4ba995d9b
Fix validation and prevent empty "external-ip=" lines in Coturn config
...
We no longer validate that there's an IP address defined.
Seems like Coturn can start without one as well, so there's no need to
require it.
If people populate `matrix_coturn_turn_external_ip_addresses` directly
to specify multiple addresses, they can leave
`matrix_coturn_turn_external_ip_address` empty.
We use the "select not equal to empty string" thing in the for loop
to avoid `matrix_coturn_turn_external_ip_address` leading to
`matrix_coturn_turn_external_ip_addresses: ['']` leading to
`external-ip=` in the Coturn configuration.
Related to https://github.com/spantaleev/matrix-docker-ansible-deploy/pull/1741
2022-04-11 15:38:35 +03:00
Hefty Zauk
03d2dcc996
Move into coturn defaults
2022-04-11 11:20:09 +00:00
heftyzauk
268b079374
Revert Coturn Address Change, add new Addresses var ( #2 )
2022-04-11 11:50:41 +01:00
heftyzauk
da31eecdb7
Merge branch 'spantaleev:master' into master
2022-04-11 11:42:49 +01:00
Slavi Pantaleev
0364c6c634
Suppress old container cleanup (kill/rm) failures
...
People often report and ask about these "failures".
More-so previously, when the `docker kill/rm` output was collected,
but it still happens now when people do `systemctl status
matrix-something` and notice that it says "FAILURE".
Suppressing to avoid further time being wasted on saying "this is
expected".
2022-04-11 09:05:33 +03:00
heftyzauk
29847627f1
Multi-IP coturn
...
Add support for multiple external turn IP addresses, this allows for better comptability with dualstack ipv4/ipv6 hosts, and is supported as per the documentation (point 6 here: https://matrix-org.github.io/synapse/latest/turn-howto.html#configuration )
2022-04-10 21:51:03 +01:00
Slavi Pantaleev
5e00f0135e
Merge pull request #1738 from SaltireSoul/master
...
Dendrite 0.8.1
2022-04-10 07:42:25 +03:00
SaltireSoul
515792790a
uncomment push_server config
2022-04-09 21:41:35 +01:00
Yan Minagawa
b982733a8a
fix typo in document path for the proxy
2022-04-09 19:41:48 +07:00
SaltireSoul
6925e26960
Dendrite 0.8.1
2022-04-09 02:55:48 +01:00
PC-Admin
ab3e02c7fd
Remove matrix-awx sections
2022-04-09 08:48:02 +08:00
slikie
17f8fd003d
bump mautrix instagram version to 0.1.3
2022-04-07 20:01:26 +08:00
László Várady
a86757a18d
mautrix-facebook: update to v0.4.0
2022-04-07 01:28:30 +02:00
Aine
7559eb99a7
Update Synapse 1.55.2 -> 1.56.0
2022-04-05 20:48:15 +03:00
Luke
627333d82b
fix container image
2022-04-05 12:42:38 +00:00
Aine
a5a3769ca9
add borg backup ( #1727 )
...
* add borg backup
* lint fix
* add exlclude patterns
* missed in the #1726 fix for honoroit
* feedback
* Fix indentation
* feedback
* feedback
* feedback
Co-authored-by: Slavi Pantaleev <slavi@devture.com>
2022-04-05 14:37:27 +03:00
Slavi Pantaleev
b9d6f8b90f
Merge pull request #1728 from RoiArthurB/hookshot-arm64
...
Add hookshot self build for arm64 and amd64
2022-04-05 09:58:26 +03:00
SaltireSoul
e7978dbdca
Dendrite 0.7.0
2022-04-05 03:40:37 +01:00
RoiArthurB
b38c7371a9
[STEAM] Move docker source from icewind1991 to tilosp fixed repo
2022-04-03 17:34:27 +07:00
Arthur Brugière
cfd8a9c0f8
[HOOKSHOT] Fix yamllint
2022-04-03 17:19:35 +07:00
Arthur Brugière
b3176957c3
Add hookshot self build for arm64 and amd64
2022-04-03 17:10:46 +07:00
Aine
5f0ece0c28
fix permissions
2022-04-03 00:49:57 +03:00
Slavi Pantaleev
999c717cf4
Revert "Temporarily switch to Myned-maintained fork of mx-puppet-discord/mx-puppet-slack"
...
This reverts commit 0103d92df4
.
The same fix has now been merged upstream
(https://gitlab.com/beeper/mx-puppet-monorepo/-/merge_requests/35 ), so
we don't need to use a fork anymore.
Related to https://github.com/spantaleev/matrix-docker-ansible-deploy/issues/1719
2022-03-31 08:37:24 +03:00
Kim Brose
ea358e208c
Upgrade Hookshot (1.2.0 -> 1.3.0)
2022-03-30 14:18:21 +02:00
Slavi Pantaleev
0103d92df4
Temporarily switch to Myned-maintained fork of mx-puppet-discord/mx-puppet-slack
...
Fixes https://github.com/spantaleev/matrix-docker-ansible-deploy/issues/1719
We're using a pinned commit of this fork, which patches up the npm/yarn
lock files, so that self-building of the Discord and Slack bridges can
work after GitHub's deprecation of the `git://` and `ssh://` protocols
(https://github.blog/2021-09-01-improving-git-protocol-security-github/ ).
When the issue gets fixed in the Beeper fork (via
https://gitlab.com/beeper/mx-puppet-monorepo/-/merge_requests/35 or
otherwise), we'll get back on it.
2022-03-30 09:02:17 +03:00
Olivér Falvai
9b03234323
Fix Facebook presence config key
2022-03-29 22:14:44 +02:00
joecool1029
f29f51a54c
Update Element 1.10.7 -> 1.10.8
2022-03-28 13:52:44 -04:00
GoliathLabs
fc1e15baff
Updated: to v0.3.1
2022-03-26 12:09:42 +01:00
Slavi Pantaleev
dac4df7384
Add arm64 support for rust-synapse-compress-state by switching container image
...
This switches the playbook from devture/rust-synapse-compress-state (a
container image which wraps the upstream-prebuilt amd64 binary of
rust-synapse-compress-state) to registry.gitlab.com/mb-saces/rust-synapse-compress-state
(https://gitlab.com/mb-saces/rust-synapse-compress-state ), which builds
rust-synapse-compress-state from source and provides a multi-arch image
that currently works on amd64 and arm64.
Ideally, we'll stop using `:latest` and arm32 support will be made
available upstream as well at some point.
Discussed here: https://gitlab.com/mb-saces/rust-synapse-compress-state/-/issues/1
2022-03-26 10:31:05 +02:00
Slavi Pantaleev
85627b59ad
Make synapse-compress-state in-container binary path configurable
...
This makes it easier to use another container image for
rust-synapse-compress-state, which may be storing the binary at another
path.
2022-03-26 10:04:21 +02:00
joecool1029
38f2dc4553
Synapse 1.55.0 -> Synapse 1.55.2
...
This is a minor hotfix, needs to be bumped though or new deploys will break (existing deploys not affected by bug).
2022-03-24 15:54:36 -04:00
pulmonarycosignerkindness
97865484bd
Update mjolnir antispam commit hash
...
Changed the commit hash in matrix_synapse_ext_spam_checker_mjolnir_antispam_git_version to latest. Fixes a Synapse ImportError with mjolnir v1.4.1 leading to a Synapse crash-loop.
2022-03-23 19:17:54 +00:00
Catalan Lover
07e68d48de
Update Mjolnir from 1.3.2 to 1.4.1
2022-03-22 20:37:40 +01:00
Slavi Pantaleev
d04162b275
Upgrade Synapse (1.54.0 -> 1.55.0)
...
`roles/matrix-synapse/vars/workers.yml` has not been updated here,
because running `roles/matrix-synapse/files/workers-doc-to-yaml.awk`
seems to cause some trouble with the current `workers.md` file
available at https://github.com/matrix-org/synapse/raw/master/docs/workers.md ,
namely lots of:
> FIXME: ADDITIONAL CONDITIONS REQUIRED: to be enabled manually
lines and commented out regex lines.
This is something that remains to be investigated/fixed.
2022-03-22 19:41:30 +02:00
Peter
41f948c48b
Update mautrix-whatsapp 0.2.4 -> 0.3.0
2022-03-22 13:34:05 +01:00
Slavi Pantaleev
0d6c0f5df2
Merge pull request #1705 from HarHarLinks/master
...
Fix index in external_prometheus.yml.example.j2
2022-03-18 08:46:15 +02:00
Slavi Pantaleev
c305ddd50f
Merge pull request #1703 from thomwiggers/patch-7
...
Update IRC appservice bridge
2022-03-17 23:03:54 +02:00
Aine
95cfbf0256
Switch mx-puppet-slack to the beeper fork ( #1704 )
2022-03-17 22:16:17 +02:00
Kim Brose
5ed23e81ef
Fix index in external_prometheus.yml.example.j2
...
For an unknown reason prometheus ignored the given "numeric" index and replaced it by 1. This made it not work properly, plus multiple workers of same types were not differentiable. With a "string" index, it works as intended.
2022-03-17 18:37:37 +01:00
Thom Wiggers
dc82c1a0e6
Update IRC appservice bridge
2022-03-17 17:21:18 +01:00
Aine
abff35ea97
Update Cinny 1.8.1 -> 1.8.2
2022-03-17 15:39:47 +00:00
Aine
2da3768b20
Added retries to the docker pulls ( #1701 )
2022-03-17 17:37:11 +02:00
Slavi Pantaleev
2af4a92fa9
Merge pull request #1698 from jimeh/fix-to_nice_yaml
...
fix: avoid yaml being wrapped at column 80 via to_nice_yaml
2022-03-16 09:46:32 +02:00
Jim Myhrberg
eeca3c8dca
fix: avoid yaml being wrapped at column 80 via to_nice_yaml
...
The `to_nice_yaml` helper will by default wrap any string YAML values on
the first space after column 80. This can in worst case yield invalid
YAML syntax. More details in Ansible's documentation here:
https://docs.ansible.com/ansible/latest/user_guide/playbooks_filters.html#formatting-data-yaml-and-json
In short, you need to explicitly provide a custom width argument of a
high number of some kind to avoid the line wrapping.
2022-03-16 01:10:26 +00:00
Sweeny
36d4d1f66e
Add check for ma1sd repo changes on image self build
...
Adding when clause to ma1sd image build task to avoid image being built if not needed.
2022-03-15 23:50:06 +00:00
Slavi Pantaleev
5cdb3b442c
Merge pull request #1696 from etkecc/patch-2
...
Update Cinny 1.8.0 -> 1.8.1
2022-03-15 22:28:57 +02:00
Aine
981dafa225
Update Cinny 1.8.0 -> 1.8.1
2022-03-15 18:21:09 +00:00
Aine
332fda6b02
Update Element 1.10.6 -> 1.10.7
2022-03-15 18:20:13 +00:00
Slavi Pantaleev
81f4a4b11e
Merge pull request #1685 from MrAnno/facebook-web-login
...
bridge-mautrix-facebook: add support for web-based login
2022-03-15 08:53:26 +02:00
László Várady
ebfa511515
synapse: do not expose plain federation port when it's disabled
...
matrix_synapse_federation_port_enabled can be disabled by users, for
example, when one wants to use the same port for client and federation
requests (docs/configuring-playbook-federation.md).
2022-03-14 03:45:46 +01:00
László Várady
f0588c7fd0
bridge-mautrix-facebook: disable temporary disconnect notices
...
https://github.com/mautrix/facebook/issues/215
2022-03-14 03:32:25 +01:00
László Várady
4359e5774c
bridge-mautrix-telegram: add option to enable/disable web-based login
2022-03-12 19:14:08 +01:00
László Várady
9de677942d
bridge-mautrix-facebook: add support for web-based login
2022-03-12 16:30:29 +01:00
László Várady
9cc3c5be76
Fix warning about reverse-proxying when built-in proxy is disabled
...
`matrix_nginx_proxy_enabled` is usually set to false by users, this is when
the warning should be displayed.
2022-03-12 16:29:20 +01:00
Slavi Pantaleev
65f92f043a
Fix mx-puppet-discord container image repository URL
...
Fixup for d8a19e5bf9
2022-03-10 20:14:59 +02:00
Slavi Pantaleev
d8a19e5bf9
Switch to the Beeper-maintained fork of mx-puppet-discord
...
Building mx-puppet-discord appears to have been broken for a while.
Related to:
- https://github.com/matrix-discord/mx-puppet-discord/issues/201
- https://github.com/matrix-discord/mx-puppet-discord/issues/202
- https://github.com/matrix-discord/mx-puppet-discord/issues/203
We'd rather use a fork that is maintained better and by someone who
cares about whether their software works or not, so we'll be using the
Beeper-maintained for from now on.
In the future, we should probably do the same for the Slack bridge
which is also part of the same monorepo
(https://gitlab.com/beeper/mx-puppet-monorepo ).
2022-03-10 12:27:53 +02:00
Slavi Pantaleev
1895b01810
Move matrix_container_global_registry_prefix to matrix-base
...
Various roles depend on this. It makes sense to make it part
of the `matrix-base` role.
2022-03-10 11:28:25 +02:00
Slavi Pantaleev
a05bcc98b0
Upgrade Synapse (1.53.0 -> 1.54.0)
2022-03-08 16:58:51 +02:00
László Várady
fabbc91cfa
client-cinny: update to v1.8.0
2022-03-08 13:04:55 +01:00
Slavi Pantaleev
d5de1e8352
Document that using an external Postgres server has serious downsides
...
Related to:
- https://github.com/spantaleev/matrix-docker-ansible-deploy/issues/1682
- https://github.com/spantaleev/matrix-docker-ansible-deploy/issues/1679
2022-03-08 09:30:20 +02:00
Slavi Pantaleev
5a4dd2b3e8
Merge pull request #1676 from MrAnno/federate-switch-for-portal-rooms
...
"Federate rooms" switch for mautrix bridges
2022-03-08 08:16:25 +02:00
Slavi Pantaleev
8c25ade9fb
Rework matrix_mautrix_twitter_database_* variables a bit
...
Related to https://github.com/spantaleev/matrix-docker-ansible-deploy/issues/1682
Previously, when matrix-postgres was disabled, we were setting
`matrix_mautrix_twitter_database_engine` to an invalid empty value.
Now, we always hardcode `matrix_mautrix_twitter_database_engine: postgres`,
but set/unset the database hostname and password values instead.
2022-03-08 08:10:40 +02:00
László Várady
338b4cebd2
bridge-mautrix-whatsapp: add option for creating non-federated rooms
2022-03-07 15:01:06 +01:00
László Várady
3c6c8db5d5
bridge-mautrix-twitter: add option for creating non-federated rooms
2022-03-07 15:01:06 +01:00
László Várady
5789b3bbab
bridge-mautrix-telegram: add option for creating non-federated rooms
2022-03-07 15:01:06 +01:00
László Várady
d1d68417ff
bridge-mautrix-signal: add option for creating non-federated rooms
2022-03-07 15:00:59 +01:00
László Várady
5c083b6385
bridge-mautrix-instagram: add option for creating non-federated rooms
2022-03-07 15:00:44 +01:00
László Várady
d6df1e7135
bridge-mautrix-googlechat: add option for creating non-federated rooms
2022-03-07 14:59:46 +01:00
László Várady
2c861c90bc
bridge-mautrix-facebook: add option for creating non-federated rooms
2022-03-07 14:59:46 +01:00
Slavi Pantaleev
1bea072484
Merge pull request #1677 from MrAnno/remove-community-support
...
Remove deprecated community options
2022-03-06 08:15:27 +02:00
Jim Myhrberg
a5e95c42b2
feat(appservice-discord): add disablePortalBridging bridge option
...
This allows disabling the automatic portal bridging, meaning bridges
must be manually setup via self-servicing, by setting:
matrix_appservice_discord_bridge_enableSelfServiceBridging: true
2022-03-06 01:46:09 +00:00
László Várady
ba68d2ad36
Remove deprecated community options
...
"Community" support
- has been removed from mautrix/facebook in v0.3.3:
31cac6fb5e
- has been removed from mautrix/signal in v0.2.2:
1f27a608a6
- will be removed in the next mautrix/instagram release:
e2ae1ca503
- will be removed in the next mautrix/twitter release:
3893075265
2022-03-05 21:57:30 +01:00
Luis
833ac506fe
pass GET parameters too
...
This fixes parameters not being passed to the provisioning api
2022-03-04 15:08:16 -03:00
Luis
584e50d117
fix hookshot provisioning url in nginx
...
Hello, this PR should fix Hookshot container not receiving API calls with the right path because nginx proxy was stripping the /v1 from it.
2022-03-04 14:40:05 -03:00
Kim Brose
f62279581d
Upgrade Hookshot (1.1.0 -> 1.2.0)
...
all features were actually already silently supported 🎉
upstream changelog: https://github.com/matrix-org/matrix-hookshot/releases/tag/1.2.0
2022-03-04 16:54:17 +01:00
Slavi Pantaleev
fb700743f9
Merge pull request #1635 from HarHarLinks/hookshot-urlprefix
...
Update hookshot to respect protocol and custom ports
2022-03-04 07:44:01 +02:00
Peter Schümann
211f05abbe
add $is_args$args
...
to proxy url params in GET requests
2022-03-03 22:21:21 +01:00
Alejo Diaz
4ec24ec344
Add support for obtain ECDSA keys ( #1667 )
...
* Add support for obtain ECDSA keys
* Replace matrix_ssl_lets_encrypt_use_ecdsa_keys for matrix_ssl_lets_encrypt_key_type
2022-03-03 18:15:39 +02:00
Slavi Pantaleev
35df276487
Merge pull request #1624 from HarHarLinks/hookshot
...
update hookshot registration.yml
2022-03-03 09:37:45 +02:00
Slavi Pantaleev
9d72f32e64
Merge pull request #1668 from HarHarLinks/hookshot-move
...
hookshot moved to matrix-org namespace
2022-03-03 09:13:11 +02:00
Slavi Pantaleev
e3d4c13e04
Merge pull request #1669 from HarHarLinks/hookshot-collision
...
avoid namespace collisions between webhook bridges
2022-03-03 09:12:32 +02:00
Aaron Raimist
09d45b854b
Upgrade Mjolnir (1.3.1 -> 1.3.2)
2022-03-02 20:39:23 +00:00
HarHarLinks
3d47b44d64
avoid namespace collisions between webhook bridges
2022-03-02 21:28:52 +01:00
HarHarLinks
58771a9c65
hookshot moved to matrix-org namespace
2022-03-02 20:58:11 +01:00
joecool1029
42a8fb3a3c
Upgrade Element (1.10.5 -> 1.10.6)
2022-03-01 17:30:15 -05:00
joecool1029
7384772957
Upgrade Element (1.10.4 -> 1.10.5)
2022-03-01 02:50:17 -05:00
GoMatrixHosting
28f6091ed4
GoMatrixHosting v0.7.0
2022-02-27 17:40:20 +08:00
Kim Brose
3719abe0e6
Optimize signal bridge startup order
...
bridge requires the daemon, so start it first
2022-02-26 14:56:51 +01:00
Aine
ffa57055f4
updated honoroit 0.9.4 -> 0.9.5
2022-02-24 20:50:06 +02:00
Slavi Pantaleev
87c9ea0dc6
Merge pull request #1651 from GoliathLabs/jitsi
...
Updated: jitsi to stable-6865
2022-02-23 14:44:37 +02:00
PC-Admin
c640799864
GoMatrixHosting v0.6.9 - stop re-writing of matrix_homeserver_generic_secret_key
2022-02-23 20:06:46 +08:00
Wm Salt Hale
46f74c3ac0
Merge branch 'spantaleev:master' into default_room_version_9
2022-02-22 11:05:13 -08:00
Slavi Pantaleev
ef7acce94b
Upgrade Synapse (1.52.0 -> 1.53.0)
2022-02-22 15:34:10 +02:00
Slavi Pantaleev
eca7c277b4
Merge pull request #1650 from GoliathLabs/synapse-admin
...
Updated: synapse-admin to 0.8.5
2022-02-22 14:57:32 +02:00
Slavi Pantaleev
0e6781fba1
Merge pull request #1649 from GoliathLabs/prometheus
...
Updated: prometheus to v2.33.3
2022-02-22 14:57:16 +02:00
Slavi Pantaleev
389f96b45b
Merge pull request #1648 from GoliathLabs/certbot
...
Updated: certbot to v1.23.0
2022-02-22 14:56:56 +02:00
Slavi Pantaleev
28df88643a
Merge pull request #1647 from GoliathLabs/grafana
...
Updated: grafana to 8.4.1
2022-02-22 14:56:34 +02:00
Slavi Pantaleev
22b82001d6
Merge pull request #1646 from GoliathLabs/ddclient
...
Updated: ddclient to v3.9.1-ls79
2022-02-22 14:56:00 +02:00
Slavi Pantaleev
8ca98582ef
Merge pull request #1645 from GoliathLabs/mautrix-telegram
...
Updated: mautrix-telegram to v0.11.2
2022-02-22 14:55:39 +02:00
GoliathLabs
b8f6f6a51a
Updated: jitsi to stable-6865
2022-02-22 13:08:28 +01:00
GoliathLabs
7f4d7444a3
Updated: synapse-admin to 0.8.5
2022-02-22 12:54:31 +01:00
GoliathLabs
728123b9ab
Updated: prometheus to v2.33.3
2022-02-22 12:52:00 +01:00
GoliathLabs
e53cc026d0
Updated: certbot to v1.23.0
2022-02-22 12:50:21 +01:00
GoliathLabs
0f251a2104
Updated: grafana to 8.4.1
2022-02-22 12:47:32 +01:00
GoliathLabs
5b96dd609b
Updated: ddclient to v3.9.1-ls79
2022-02-22 12:45:42 +01:00
GoliathLabs
a4ba2ba601
Updated: mautrix-telegram v0.11.2
2022-02-22 12:37:11 +01:00
GoliathLabs
906f192cf3
Updated: mautrix-signal to v0.2.3
2022-02-22 12:33:55 +01:00
Christos Karamolegkos
a6e766a06a
Upgrade Element (1.10.3 -> 1.10.4)
2022-02-18 19:56:22 +02:00
HarHarLinks
d556952bb6
update hookshot to respect protocol and custom ports
2022-02-16 20:10:01 +01:00
Petteri Pucilowski
fe389bd11a
Changed to: mautrix-whatsapp v0.2.4 tag
2022-02-16 19:48:41 +02:00
Aaron Raimist
f0e30c76f3
Postgres Minor Updates (14.2, 13.6, 12.10, 11.15, 10.20)
2022-02-16 09:22:25 +00:00
Slavi Pantaleev
1ed46f0a86
Remove Jinja2 templating delimiters from when statement
...
Fixes https://github.com/spantaleev/matrix-docker-ansible-deploy/issues/1629
Related to https://github.com/spantaleev/matrix-docker-ansible-deploy/pull/1505
2022-02-16 09:36:33 +02:00
Slavi Pantaleev
8b3fad45f9
Upgrade Element (1.10.1 -> 1.10.3)
...
Fixes https://github.com/spantaleev/matrix-docker-ansible-deploy/issues/1627
2022-02-15 14:04:08 +02:00
Slavi Pantaleev
241e21c702
Fix typo
2022-02-15 07:04:45 +02:00
Slavi Pantaleev
f0ab2ec506
Add support for configuring allow_embedding for Grafana
...
Fixes https://github.com/spantaleev/matrix-docker-ansible-deploy/issues/1626
2022-02-15 07:03:25 +02:00
Slavi Pantaleev
cfba9b2cf5
Update matrix_encryption_disabler (patch_power_levels feature)
...
Related to:
- https://github.com/digitalentity/matrix_encryption_disabler/pull/4
- https://github.com/digitalentity/matrix_encryption_disabler/issues/5
- https://github.com/digitalentity/matrix_encryption_disabler/pull/6
2022-02-14 10:39:14 +02:00
HarHarLinks
735eec92cc
update hookshot registration.yml
...
based on comments in chat:
https://matrix.to/#/!TlZdPIYrhwNvXlBiEk:half-shot.uk/$RbG6itEHVV8J_u5ry1HiFdC76n19M3vmopfQOyRmkKU?via=half-shot.uk&via=matrix.org&via=envs.net
2022-02-13 17:31:52 +01:00
Slavi Pantaleev
5eeb0156b1
Bump matrix_encryption_disabler "version"
2022-02-12 09:55:59 +02:00
Slavi Pantaleev
f44ca0c7c2
Add support for matrix_encryption_disabler
...
Related to https://github.com/matrix-org/synapse/issues/4401
Fixes https://github.com/spantaleev/matrix-docker-ansible-deploy/issues/1621
2022-02-12 09:25:24 +02:00
Catalan Lover
cc412dfffe
Update Hydrogen from v0.2.25 to v0.2.26
2022-02-12 00:37:40 +01:00
Slavi Pantaleev
85c66a944f
Remove useless cast
2022-02-11 20:05:32 +02:00
Slavi Pantaleev
5a69c899a3
Upgrade matrix-synapse-shared-secret-auth (1.0.2 -> 2.0.2)
...
For now, we disable the new `com.devture.shared_secret_auth` login type
by default, because it causes problems with Element:
https://github.com/vector-im/element-web/issues/19605
This also becomes the first module to use the new Synapse module system
that got introduced in Synapse v1.46.0.
Despite these upgrades, things should remain functionally identical
as far as bridges, matrix-corporal or other consumers are concerned.
2022-02-11 10:23:50 +02:00
Slavi Pantaleev
e2e5db3b89
Do not use misleading with_items for a single file
2022-02-11 08:36:05 +02:00
Slavi Pantaleev
6c47b447e3
Do not use misleading with_items for a single file
2022-02-11 08:35:39 +02:00
Wunderharke
a24f7626bd
7330992b20
fixed the major_version compare and made foedora deployments to use setup_redhat8.yml. This however broke the script on fedora as there is no EPEL package. This commit add very basic fedora support.
2022-02-09 16:56:14 +01:00
Slavi Pantaleev
7330992b20
Do not compare ansible_distribution_major_version as a string
...
Fedora 35 is:
- `ansible_os_family = 'RedHat'`
- `ansible_distribution_major_version = '35'`
Our RedHat checks against v7/v8 are really for RHEL derivatives (CentOS, Rockylinux,
AlmaLinux), but the same checks (by coincidence) apply for Fedora 35.
The problem is that `'35' > '7'` (comparing these as strings) is
`false`.
This patch makes sure that we always cast
`ansible_distribution_major_version` to an integer.
Fixes https://github.com/spantaleev/matrix-docker-ansible-deploy/issues/1610
2022-02-09 16:20:09 +02:00
Slavi Pantaleev
e0df99a7de
Fix typo
2022-02-09 14:03:06 +02:00
Slavi Pantaleev
94c9780f7a
Fix matrix_synapse_encryption_enabled_by_default_for_room_type
...
The value of `off` was taken to be a boolean, but it shouldn't be.
Synapse expects a string (currently one of: `all`, `invite`, `off`).
2022-02-09 10:38:28 +02:00
Slavi Pantaleev
5addb889b1
Fix inconsistent spacing
2022-02-09 10:27:12 +02:00
Marko Weltzer
d27e623c71
fix: manually merge upstream
2022-02-09 09:01:56 +01:00
Slavi Pantaleev
5163aa643a
Upgrade Synapse (1.51.0 -> 1.52.0)
...
This also removes the `matrix_synapse_version_arm64` variable we've
been dragging around for a long time.
Since https://github.com/matrix-org/synapse/pull/11810 , a multiarch Synapse
container image (for AMD64 and ARM64) is released at the same time.
2022-02-08 15:13:41 +02:00
Slavi Pantaleev
a095accce7
Replace some CentOS references to support other RHEL derivatives
...
Not hardcoding 'CentOS' and using the OS family ('RedHat') instead,
we now behave better on Rockylinux and AlmaLinux, etc.
With that said, we may or may not fully support CentOS/Rockylinux/AlmaLinux v8 yet.
Certain things were improved in
https://github.com/spantaleev/matrix-docker-ansible-deploy/issues/300 .
v8 support is discussed here: https://github.com/spantaleev/matrix-docker-ansible-deploy/issues/300
Certain things (firewalld?) may still be problematic. This patch does not try to address those.
If the remaining issues are confirmed to be fixed in the future, we can mark v8 as supported.
2022-02-06 18:05:25 +02:00
Marko Weltzer
819574b8ba
Merge branch 'spantaleev:master' into master
2022-02-05 21:37:53 +01:00
Marko Weltzer
7e5b88c3b7
fix: all praise the allmighty yamllinter
2022-02-05 21:32:54 +01:00
Slavi Pantaleev
b244ab477c
Upgrade email2matrix (1.0.2 -> 1.0.3)
...
Fixes https://github.com/spantaleev/matrix-docker-ansible-deploy/issues/1605
Fixes a regression introduced in ccb85b31a4
. The
`docker.io/devture/email2matrix:1.0.2` container image was faulty due to
this 49f966d6cc
2022-02-05 13:58:15 +02:00
Slavi Pantaleev
86c36523df
Replace ExecStopPost with ExecStop
...
Reverts b1b4ba501f
, 90c9801c56
, a3c84f78ca
, ..
I haven't really traced it (yet), but on some servers, I'm observing
`ansible-playbook ... --tags=start` completing very slowly, waiting
to stop services. I can't reproduce this on all Matrix servers I manage.
I suspect that either the systemd version is to blame or that some
specific service is not responding well to some `docker kill/rm` command.
`ExecStop` seems to work great in all cases and it's what we've been
using for a very long time, so I'm reverting to that.
2022-02-05 12:13:36 +02:00
Slavi Pantaleev
d07e50a04f
Merge pull request #1604 from GoliathLabs/prometheus
...
Updated: prometheus to v.2.33.1
2022-02-05 12:10:57 +02:00
Slavi Pantaleev
a66f5d35d6
Merge pull request #1603 from GoliathLabs/nginx-proxy
...
Updated: nginx to 1.21.6-alpine
2022-02-05 12:10:41 +02:00
Slavi Pantaleev
c9c79d935e
Merge pull request #1601 from GoliathLabs/grafana
...
Updated: grafana to 8.3.4
2022-02-05 12:05:02 +02:00
Slavi Pantaleev
eea58c9c44
Merge pull request #1600 from GoliathLabs/dynamic-dns
...
Updated: ddclient to v3.9.1-ls77
2022-02-05 12:04:39 +02:00
GoliathLabs
e0a088dbe3
Updated: prometheus to v.2.33.1
2022-02-05 11:01:52 +01:00
GoliathLabs
33851f1dfa
Updated: nginx to 1.21.6-alpine
2022-02-05 10:58:09 +01:00
GoliathLabs
e27e0b28c8
Updated: grafana to 8.3.4
2022-02-05 10:52:31 +01:00
GoliathLabs
509466018b
Updated: ddclient to v3.9.1-ls77
2022-02-05 10:49:14 +01:00
GoliathLabs
b4ecadcb2f
Updated: Heisenbridge to 1.10.1
2022-02-05 10:37:09 +01:00
Slavi Pantaleev
ccb85b31a4
Upgrade devture/email2matrix (1.0.1 -> 1.0.2) and disable self-building on ARM32/ARM64
...
1.0.2 is the first container image tag that is available as a multi-arch image
with support for linux/amd64, linux/arm64/v8 (arm64) and linux/arm/v7 (arm32),
so self-building is no longer necessary on all these platforms.
2022-02-05 11:14:20 +02:00
Slavi Pantaleev
45fbcc56da
Upgrade devture/exim-relay (4.95-r0-1 -> 4.95-r0-2)
...
4.95-r0-1 was problematic, because `/etc/exim/exim.conf` in the
container had the wrong permissions (writable by the `exim` user).
Fixed in 697f3cff7e
which is built as 4.95-r0-2
2022-02-01 18:31:38 +02:00
Slavi Pantaleev
133d85fedf
Upgrade Element (1.10.0 -> 1.10.1)
2022-02-01 18:27:06 +02:00
Slavi Pantaleev
1099ccab43
Upgrade devture/exim-relay (4.95-r0 -> 4.95-r0-1) and disable self-building on ARM32/ARM64
...
4.95-r0-1 is the first container image tag that is available as a multi-arch image
with support for linux/amd64, linux/arm64/v8 (arm64) and linux/arm/v7 (arm32),
so self-building is no longer necessary on all these platforms.
2022-02-01 17:23:07 +02:00
Slavi Pantaleev
0ec86d40ac
Merge pull request #1588 from FSG-Cat/patch-2
...
Update Mjolnir from v1.2.1 to v1.3.1
2022-02-01 17:16:31 +02:00
Catalan Lover
1f21799782
Update Mjolnir from v1.2.1 to v1.3.1
2022-02-01 15:23:31 +01:00
Catalan Lover
c03f69fe93
Update Hydrogen from v0.2.23 to v0.2.25
2022-02-01 15:00:33 +01:00
Slavi Pantaleev
e295c90d0b
Merge pull request #1505 from HarHarLinks/hookshot
...
add matrix-hookshot
2022-02-01 13:45:48 +02:00
Slavi Pantaleev
4216807c86
Upgrade Element (1.9.9 -> 1.10.0)
2022-01-31 18:51:28 +02:00
Slavi Pantaleev
4a4d718f7c
Upgrade matrix-corporal (2.2.2 -> 2.2.3) and disable self-building on ARM32/ARM64
...
2.2.3 is the first container image tag that is available as a multi-arch image
with support for linux/amd64, linux/arm64/v8 (arm64) and linux/arm/v7 (arm32),
so self-building is no longer necessary on all these platforms.
2022-01-31 16:52:49 +02:00
AtomHare
d93b8bb57a
Upgrade Mautrix/Facebook (0.3.2 -> 0.3.3)
...
Not tested but shouldn't break something
2022-01-30 23:37:19 +01:00
HarHarLinks
51baa40eff
fixup! escape hookshot variables using to_json
2022-01-30 19:28:40 +01:00
HarHarLinks
99cf6adf95
fixup! update hookshot private key installation method
2022-01-30 19:21:26 +01:00
HarHarLinks
5300dc7a8b
update hookshot/defaults/main.yml comments
2022-01-30 19:05:49 +01:00
HarHarLinks
f136c1fb8f
fixup! add some hookshot config validation
2022-01-30 18:53:57 +01:00
HarHarLinks
2a91a43b32
Merge remote-tracking branch 'origin/master' into hookshot
2022-01-30 17:50:50 +01:00
HarHarLinks
4477711e79
add some hookshot config validation
2022-01-30 17:46:40 +01:00
HarHarLinks
f47bfdfb4f
remove hookshot uninstall comments based on feedback
2022-01-30 17:46:01 +01:00
HarHarLinks
29d0b277f4
fix hookshot missing figma config variable
2022-01-30 17:45:28 +01:00
HarHarLinks
a3c84f78ca
update hookshot.service to ExecStopPost
2022-01-30 17:45:09 +01:00
HarHarLinks
99802bc143
escape hookshot variables using to_json
2022-01-30 17:44:22 +01:00
Aine
211b0ad3b5
Update honoroit (v0.9.3 -> v0.9.4)
2022-01-29 21:08:20 +02:00
Slavi Pantaleev
fce190099a
Use |to_json for matrix_mx_puppet_slack_oauth_client_secret
2022-01-28 08:15:23 +02:00
Jim Myhrberg
7ae70c27e6
feat(mx-puppet-slack): add support for OAuth client ID/secret
...
The OAuth credentials method seems to be the only viable way to
configure the mx-puppet-bridge now. Legacy tokens can no longer be
created, and the other methods (xoxs and xoxc tokens) come with warnings
about them being against Slack's terms of service.
2022-01-28 01:22:34 +00:00
Slavi Pantaleev
11c0dcf2ac
Upgrade Cinny (1.6.1 -> 1.7.0)
...
(untested change, but unlikely to cause breakage)
2022-01-26 15:16:55 +02:00
Slavi Pantaleev
ad082b3b1b
Fix self-building for Synapse v1.51.0 (requires BuildKit)
...
Synapse v1.51.0 requires to be built with BuildKit since
https://github.com/matrix-org/synapse/pull/11691
The `docker_image` Ansible module does not support BuildKit
(https://github.com/ansible-collections/community.general/issues/514 ),
so we had to switch to a `docker build` call.
2022-01-26 08:41:34 +02:00
Slavi Pantaleev
cf46b7fed5
Upgrade Synapse (1.50.2 -> 1.51.0)
2022-01-25 14:19:40 +02:00
Catalan Lover
f59f903c04
Update Synapse from 1.50.1 to 1.50.2
...
Fixes a issue with room version 1.
Merging has to wait until ARM images are built ofc.
2022-01-24 14:47:41 +01:00
Thracky
b02aa4b799
Add missing slash in url scheme for mediaUrl
2022-01-23 14:09:18 -05:00
HarHarLinks
a1a5b16185
update hookshot private key installation method
2022-01-23 16:10:25 +01:00
HarHarLinks
5d07f14235
install openssl for hookshot
...
using b33ea48
2022-01-23 15:11:25 +01:00
GoliathLabs
c6287083e4
Updated: prom-postgres-exporter to v0.10.1
2022-01-20 10:57:39 +01:00
Wm Salt Hale
88b832a818
updated task names leftover from template used
2022-01-19 22:02:20 -08:00
Wm Salt Hale
3aa8c1f62c
only enable openssl if necessary
2022-01-19 21:58:39 -08:00
Aine
51b27de1bb
matrix-bot-honoroit: bugfix commands in reply-to mode, add custom prefixes for thread topics
2022-01-19 18:33:51 +02:00
Slavi Pantaleev
bcfae766a1
Merge pull request #1567 from aaronraimist/antispam
...
Upgrade synapse-simple-antispam (0.0.3 -> 0.0.7)
2022-01-19 16:56:10 +02:00
Aaron Raimist
ff94d815e1
Upgrade synapse-simple-antispam (0.0.3 -> 0.0.7)
2022-01-19 14:35:55 +00:00
Wm Salt Hale
ad8d4740a7
Merge branch 'spantaleev:master' into default_room_version_9
2022-01-18 14:56:25 -08:00
Slavi Pantaleev
4cd44f117d
Upgrade Synapse (1.50.0 -> 1.50.1)
...
v1.50.0 was found to be buggy for people using a `webclient` listener.
This is fixed in v1.50.1.
We don't use such a listener, so we weren't affected anyway.
2022-01-18 20:45:12 +02:00
Slavi Pantaleev
5f22371c23
Upgrade Synapse (1.49.2 -> 1.50.0)
2022-01-18 16:15:52 +02:00
Slavi Pantaleev
1b151a59ad
Merge pull request #1562 from GoliathLabs/element-web
...
Updated: element-web to v1.9.9
2022-01-18 09:55:50 +02:00
GoliathLabs
3614903e38
Updated: element-web to v1.9.9
2022-01-17 18:40:44 +01:00
Slavi Pantaleev
06d188ee2d
Merge pull request #1561 from GoliathLabs/certbot
...
Updated: Certbot to v1.22.0
2022-01-17 11:57:46 +02:00
GoliathLabs
b608c3d342
Updated: worker_processes to auto
2022-01-17 10:55:36 +01:00
GoliathLabs
8a66db850e
Updated: Certbot to v1.22.0
2022-01-17 10:53:15 +01:00
Slavi Pantaleev
a1460616d6
Merge pull request #1560 from GoliathLabs/twitter
...
Updated: mautrix-twitter to v0.1.3
2022-01-17 11:14:30 +02:00
Slavi Pantaleev
14d58b8e95
Merge pull request #1559 from GoliathLabs/whatsapp
...
Added: mautrix-whatsapp v0.2.3 tag
2022-01-17 11:13:59 +02:00
GoliathLabs
94d31eefd3
Updated: mautrix-twitter to v0.1.3
2022-01-17 10:02:16 +01:00
Slavi Pantaleev
098d21a7b7
Merge pull request #1558 from GoliathLabs/signal
...
Added: mautrix-signal 0.2.2 & signald 0.16.1
2022-01-17 10:58:37 +02:00
GoliathLabs
46f621bca6
Added: mautrix-whatsapp v0.2.3 tag
2022-01-17 09:58:16 +01:00
GoliathLabs
6f142faf85
Added: mautrix-signal 0.2.2 & signald 0.16.1
2022-01-17 09:55:00 +01:00
GoliathLabs
29668f4a33
Updated: telegram to v0.11.1
2022-01-16 22:41:01 +01:00
Aine
05541bd54a
Updated Honoroit with fallback reply-to mode
2022-01-16 18:41:02 +02:00
Slavi Pantaleev
d0030b2de9
Merge pull request #1555 from GoliathLabs/master
...
Added Instagram version tag instead of latest
2022-01-16 17:04:11 +02:00
Felix
8f0da16621
Added: version tag (v0.1.2
2022-01-16 16:00:54 +01:00
Slavi Pantaleev
1fd8bcc0bc
Merge pull request #1547 from GoliathLabs/jitsi
...
Updated: version to stable-6726-2
2022-01-15 20:32:41 +02:00
Slavi Pantaleev
e8077485f2
Merge pull request #1551 from GoliathLabs/node-exporter
...
Updated: node-exporter to v1.3.1
2022-01-15 20:32:07 +02:00
Slavi Pantaleev
5a3f0eacf5
Merge pull request #1553 from GoliathLabs/appservice-slack
...
Updated: slack to 1.10.0
2022-01-15 20:31:24 +02:00
Slavi Pantaleev
efa5ac6064
Merge pull request #1550 from GoliathLabs/sygnal
...
Updated: sygnal to v0.11.0
2022-01-15 20:29:33 +02:00
Slavi Pantaleev
dd44d07100
Merge pull request #1548 from GoliathLabs/appservice-webhooks
...
Updated: webhooks image tag to v1.0.3-01
2022-01-15 20:26:56 +02:00
Slavi Pantaleev
1122a481fd
Merge pull request #1546 from GoliathLabs/dynamic-dns
...
Updated: ddclient to v3.9.1-ls76
2022-01-15 20:25:22 +02:00
GoliathLabs
dec1bd6c65
Updated: slack to 1.10.0
2022-01-15 18:59:18 +01:00
GoliathLabs
f2f4d5ba21
Updated: node-exporter to v1.3.1
2022-01-15 18:49:30 +01:00
GoliathLabs
6bdb599a58
Updated: sygnal to v0.11.0
2022-01-15 18:45:23 +01:00
GoliathLabs
dcbd0a598e
Updated: beeper-linkedin to v0.5.2
2022-01-15 18:40:28 +01:00
GoliathLabs
7dffd44171
Updated: webhooks image tag to v1.0.3-01
2022-01-15 18:36:10 +01:00
GoliathLabs
be4c93dc24
Updated: version to stable-6726-2
2022-01-15 18:33:44 +01:00
GoliathLabs
b0b88242f2
Updated: ddclient to v3.9.1-ls76
2022-01-15 18:31:07 +01:00
Slavi Pantaleev
b87cf31d59
Merge pull request #1543 from aaronraimist/hydrogen
...
Upgrade Hydrogen (0.2.19 -> 0.2.23)
2022-01-15 09:08:48 +02:00
Slavi Pantaleev
cba605a8b7
Fix go-neb sample configuration to not clash with Jinja2
...
Fixes https://github.com/spantaleev/matrix-docker-ansible-deploy/issues/1544
2022-01-15 09:07:24 +02:00
Aaron Raimist
02c1756135
Upgrade Hydrogen (0.2.19 -> 0.2.23)
2022-01-14 19:31:30 +00:00
HarHarLinks
321ed9b609
Merge remote-tracking branch 'origin/master' into hookshot
2022-01-14 19:26:31 +01:00
HarHarLinks
df074151cd
update default hookshot webhook mxid prefix
2022-01-14 19:24:37 +01:00
HarHarLinks
58b732a84d
support hookshot permissions management
...
see Half-Shot/matrix-hookshot#167
2022-01-14 19:21:05 +01:00
IUCCA
49342bd3a7
added writable /tmp directory
2022-01-14 11:29:18 +01:00
Toni Spets
037bde73a6
Upgrade Heisenbridge (1.9.0 -> 1.10.0)
2022-01-14 11:53:03 +02:00
HarHarLinks
6f32db3063
fix matrix_hookshot_github_oauth_uri
2022-01-12 02:15:37 +01:00
HarHarLinks
8498ffd8f7
name hookshot github private key consistently
2022-01-12 01:28:38 +01:00
HarHarLinks
28c9e7aac2
fix hookshot commandPrefix jinja2
2022-01-12 01:26:17 +01:00
HarHarLinks
f12cad7a7b
rename hookshot *.yaml to *.yml
2022-01-12 00:18:54 +01:00
HarHarLinks
23d6b2d3da
update hookshot github private key path and install condition
2022-01-11 23:18:47 +01:00
HarHarLinks
964479d3d3
.gitkeep matrix-bridge-hookshot/files
...
needed for users to put private-key.pem in
2022-01-11 23:03:16 +01:00
HarHarLinks
3a766d4ba5
proxy hookshot metrics when proxying synapse metrics
...
see also #1527
2022-01-11 22:39:57 +01:00
HarHarLinks
8b19f56ef8
add hookshot config validation
2022-01-11 22:36:10 +01:00
HarHarLinks
206a093d56
fix hookshot docker image name
2022-01-11 22:35:57 +01:00
HarHarLinks
65991de61c
update hookshot private key file mechanism
2022-01-11 01:30:57 +01:00
HarHarLinks
87871040df
add hookshot metrics to internal prometheus
2022-01-11 00:56:51 +01:00
HarHarLinks
1987cc4839
refine hookshot role
2022-01-11 00:19:29 +01:00
Slavi Pantaleev
ac515b7f09
Fix incorrect variables being used
2022-01-10 15:11:14 +02:00
Slavi Pantaleev
29bc22a085
Add matrix_nginx_proxy_container_additional_networks
...
Fixes https://github.com/spantaleev/matrix-docker-ansible-deploy/issues/1498
2022-01-10 11:51:57 +02:00
Slavi Pantaleev
7d96526b53
Merge pull request #1524 from GoMatrixHosting/gomatrixhosting-testing
...
update new variable for matrix-awx, update documentation
2022-01-10 08:02:48 +02:00
PC-Admin
e72ecf2c65
update new variable for matrix-awx, update documentation
2022-01-10 09:18:10 +08:00
Aine
4377c348c5
matrix-bot-honoroit: disable self-build by default, update to v0.9.1
2022-01-09 17:46:47 +02:00
Slavi Pantaleev
c12c224322
Merge pull request #1521 from HarHarLinks/webhooks_tag
...
pin appservice-webhooks version v1.0.2-01
2022-01-09 17:22:52 +02:00
HarHarLinks
b50494e5b3
pin appservice-webhooks version v1.0.2-01
2022-01-09 15:05:01 +01:00
Slavi Pantaleev
27a4871aea
Fix variable name typo
2022-01-09 12:14:23 +02:00
Slavi Pantaleev
817d6833bf
Try to fix self-building for honoroit (fix incorrect Dockerfile path)
...
Hopefully fixes https://github.com/spantaleev/matrix-docker-ansible-deploy/issues/1518
2022-01-08 20:06:59 +02:00
HarHarLinks
ebf33f46b7
update hookshot passkey.pem path according to docs
...
https://github.com/Half-Shot/matrix-hookshot/issues/133#issuecomment-1007541580
2022-01-08 16:55:27 +01:00
HarHarLinks
912c238847
Upgrade Hookshot (1.0.0 -> 1.1.0)
2022-01-08 16:53:52 +01:00
HarHarLinks
495bfedc0d
refine hookshot role using --test
2022-01-08 16:53:48 +01:00
Slavi Pantaleev
4e4fb98a65
Do not install fuse unless necessary
...
Discussed here: https://github.com/spantaleev/matrix-docker-ansible-deploy/issues/1510
2022-01-08 14:14:46 +02:00
Slavi Pantaleev
0f59c4056e
Set up well-known when invoked with the setup-dendrite tag
2022-01-07 16:00:51 +02:00
Slavi Pantaleev
139c574cdb
Move checks from unused validate_config.yml file elsewhere
2022-01-07 16:00:51 +02:00
Slavi Pantaleev
90c9801c56
Use ExecStopPost instead of ExecStop
...
This is the equivalent of b1b4ba501f
for the matrix-dendrite role.
2022-01-07 16:00:51 +02:00
Slavi Pantaleev
61c0930325
Suppress output for ExecStartPre/ExecStop commands
...
This brings matrix-dendrite.service in line with all the other services.
2022-01-07 16:00:51 +02:00
Slavi Pantaleev
5c3c0d0d58
Set Dendrite's real_ip_header correctly
2022-01-07 16:00:51 +02:00
Slavi Pantaleev
05b4572fab
Fix matrix_dimension_homeserver_federationUrl for Dendrite
2022-01-07 16:00:51 +02:00
Slavi Pantaleev
965890bf75
Derive secrets from matrix_homeserver_generic_secret_key, not matrix_synapse_macaroon_secret_key
...
We're trying to move away from implementation-specific variables,
hoping for a clean (implementation-neutral) examples/vars.yml file.
2022-01-07 16:00:42 +02:00
Slavi Pantaleev
1dfe21944f
Make matrix_homeserver_implementation influence matrix_IMPLEMENTATION_enabled, not the other way around
...
Doing this seems more reasonable and simpler.
2022-01-07 15:59:35 +02:00
Slavi Pantaleev
4139290cc9
Rename some variables for consistency
2022-01-07 15:59:35 +02:00
Slavi Pantaleev
2bd33e5cf2
Make --tags=register-user work for both Dendrite/Synapse
...
Also get rid of `--tags=update-user-password` in the
`matrix-dendrite` role, as what we had doesn't work.
We may be able to do it with some Ansible helper or something else.
For now, we'll omit this feature.
2022-01-07 15:59:35 +02:00
Slavi Pantaleev
f8a8d7d310
Fix /usr/local/bin/matrix-dendrite-create-account
...
We also need to fix `--tags=register-user`. This tag is currently
defined in both the `matrix-synapse` and `matrix-dendrite` roles.
2022-01-07 15:59:35 +02:00
Slavi Pantaleev
b297e8ee2b
Delay Dendrite startup so that matrix-postgres.service can start
2022-01-07 15:59:35 +02:00
Slavi Pantaleev
9f6e8f5eaf
Remove matrix_s3 references from matrix-dendrite role
...
All the `matrix_s3_*` stuff happens in the `matrix-synapse` role.
If we are to have such S3 support for Dendrite, we should probably
extract it out of the `matrix-synapse` role (into a `matrix-s3` role or
`matrix-goofys`, etc.) and wire `matrix-dendrite` accordingly.
This may or may not be done in the future though. For now, I'm
cleaning things up in the `matrix-dendrite` role.
2022-01-07 15:59:35 +02:00
Slavi Pantaleev
3b9d5b13e9
Add support for not serving Dendrite federation APIs on the client port
...
Seems like Dendrite encourages serving both the Client and Federation
API at the same port.
Coming from Synapse and how things are done there, we have separate
ports. Using separate ports probably makes matrix-corporal (etc.)
integration easier, so separating the APIs by default probably makes
sense.
2022-01-07 15:59:35 +02:00
Slavi Pantaleev
ecc237bbad
Initial work on getting nginx reverse proxying working with Dendrite
2022-01-07 15:59:35 +02:00
Slavi Pantaleev
2f57c51733
Remove useless check
...
Since 025a5ab5e5
, we do a similar check in matrix-base.
2022-01-07 15:59:35 +02:00
Slavi Pantaleev
3cf9f87097
Add matrix_homeserver_implementation, tracking the current homeserver implementation
...
The goal is to have a single variable which tells us which homeserver
software is in use. Much simpler than having if/elif/elif checks for
variables like (`matrix_synapse_enabled` and `matrix_dendrite_enabled`, etc.)
everywhere.
2022-01-07 15:59:35 +02:00
Slavi Pantaleev
63968cb04f
Upgrade Dendrite (0.5.0 -> 0.5.1)
2022-01-07 15:59:35 +02:00
Slavi Pantaleev
b2b62b7221
Add a variable to control Dendrite's disable_federation setting
2022-01-07 15:59:35 +02:00
Slavi Pantaleev
5b148921a0
Upgrade Dendrite (0.3.11 -> 0.5.0) and update configuration
...
This brings dendrite.yaml up to date and cleans things up a bit.
2022-01-07 15:59:35 +02:00
Slavi Pantaleev
ccd3dc7a57
Remove Dendrite file logging
...
We refrain from logging to files for all components,
because we rely on systemd-journald anyway.
2022-01-07 15:59:35 +02:00
Jip J. Dekker
953a9ac718
Upgrade Dendrite (0.3.9 -> 0.3.11)
2022-01-07 15:59:35 +02:00
Jip J. Dekker
cde2504966
Upgrade Dendrite (0.3.8 -> 0.3.9)
2022-01-07 15:59:35 +02:00
Aaron Raimist
265d048597
Upgrade Dendrite (0.3.6 -> 0.3.8)
2022-01-07 15:59:35 +02:00
Aaron Raimist
fc62537fcf
Remove Synapse and Goofys stuff
2022-01-07 15:59:35 +02:00
Jip J. Dekker
07af05690c
Add initial role for Dendrite as alternative Matrix server
2022-01-07 15:59:35 +02:00
rakshazi
2836667df2
self-build consistency: missing var
2022-01-07 13:21:41 +02:00
rakshazi
c191bf54ca
self-build consistency: add deprecation warnings
2022-01-07 13:17:39 +02:00
rakshazi
d9dd524db3
self-build consistency: rename vars everywhere
2022-01-07 12:18:45 +02:00
Slavi Pantaleev
b0c801a497
Rename variable for consistency (matrix_bot_honoroit_container_self_build -> matrix_bot_honoroit_container_image_self_build)
...
Discussed in https://github.com/spantaleev/matrix-docker-ansible-deploy/pull/1514
2022-01-07 11:53:24 +02:00
rakshazi
d66c812830
matrix-bot-honoroit: fix self-build
2022-01-07 09:06:25 +00:00
rakshazi
d7af37e9e9
matrix-bot-honoroit feedback
2022-01-07 09:41:52 +02:00
rakshazi
407e8c4940
added honoroit
2022-01-06 20:30:10 +02:00
HarHarLinks
b8ee1980ea
refine hookshot role
2022-01-06 18:55:36 +01:00
Slavi Pantaleev
7dfb68b7f8
Add else statements to inline ifs
...
Related to https://github.com/spantaleev/matrix-docker-ansible-deploy/pull/1509
2022-01-06 11:05:02 +02:00
rakshazi
490f11ba0d
matrix-client-cinny: self_build feedback"
2022-01-06 09:11:28 +02:00
rakshazi
5788a16a2e
added matrix-client-cinny
2022-01-05 18:33:21 +02:00
Slavi Pantaleev
b1b4ba501f
Replace ExecStop with ExecStopPost
...
ExecStopPost should allow us to clean up (docker kill + docker rm)
even if the ExecStart (docker run ..) command failed, and not just after
a graceful service stop was initiated.
Source: https://www.freedesktop.org/software/systemd/man/systemd.service.html#ExecStopPost=
2022-01-04 17:27:25 +02:00
Slavi Pantaleev
8515ac55e6
Upgrade nginx (1.21.4 -> 1.21.5)
2022-01-04 17:04:01 +02:00
Slavi Pantaleev
b3a9160e0f
Merge pull request #1497 from jimeh/etherpad-add-optional-admin-access
...
feat(etherpad): add optional admin web-UI access
2022-01-04 09:20:39 +02:00
Slavi Pantaleev
f0d7a8e99d
Use to_json
2022-01-04 09:18:31 +02:00
Slavi Pantaleev
3295eb15bf
Merge pull request #1500 from cnvandijk/deprecated-jitsi-interface-config
...
Remove Jitsi web interface_config.js in favour of custom-interface_config.js
2022-01-04 08:50:42 +02:00
Slavi Pantaleev
bd91230cf8
Merge pull request #1502 from aaronraimist/mautrix-twitter
...
Update links to Mautrix Twitter bridge
2022-01-04 08:48:09 +02:00
HarHarLinks
621251c1e5
hookshot role groundwork
2022-01-03 21:25:03 +01:00
HarHarLinks
c0f7c39f7d
s/plabook/playbook
2022-01-03 18:34:21 +01:00
Aaron Raimist
dc96526475
Update links to Mautrix Twitter bridge
...
Signed-off-by: Aaron Raimist <aaron@raim.ist>
2022-01-03 01:05:13 +00:00
Chris van Dijk
bc5efa0dbc
Remove Jitsi web interface_config.js in favour of custom-interface_config.js
...
As of docker-jitsi-meet stable-6433 [1], `/config/interface_config.js`
is regenerated on every boot. The correct way to modify the interface
config is now via `/config/custom-interface_config.js`, which is
appended to a default copy of `interface_config.js` by
`/etc/cont-init.d/10-config` on every boot of the docker image.
Given that `interface_config.js` is considered deprecated by upstream
(all options will eventually be moved to `config.js`), we also deprecate
the `matrix_jitsi_web_interface_config_*` variables in favour of
`matrix_jitsi_web_custom_interface_config_extension`.
[1] https://github.com/jitsi/docker-jitsi-meet/blob/stable-6433/CHANGELOG.md#stable-6433
2022-01-02 10:54:51 +01:00
Jim Myhrberg
993121e517
feat(etherpad): add optional admin web-UI access
...
Enables optional access to Etherpad's web-UI. This is useful for
managing Etherpad plugins.
Among other things, plugins makes it easy to manage/delete pads if you
install the adminpads2 plugin.
2022-01-01 03:12:14 +00:00
Slavi Pantaleev
948c411106
Remove sudo requirement for generating SSL certificates
...
Fixes https://github.com/spantaleev/matrix-docker-ansible-deploy/issues/1492
2021-12-30 10:47:06 +02:00
Toni Spets
cdf76bdbb7
Upgrade Heisenbridge (1.8.2 -> 1.9.0)
2021-12-29 21:05:41 +02:00
Slavi Pantaleev
d166a90514
Merge pull request #1493 from SierraKiloBravo/allow-configuring-mautrix-telegram-name-templates
...
Allow editing of MXID/dispname templates for mautrix-telegram users
2021-12-29 10:19:49 +02:00
Slavi Pantaleev
908dc6c07a
Merge pull request #1491 from HarHarLinks/webhooks_fork
...
switch appservice-webhooks fork
2021-12-28 18:25:03 +02:00
HarHarLinks
c2f3586ac6
switch appservice-webhooks fork
...
turt2live/matrix-appservice-webhooks -> redoonetworks/matrix-appservice-webhooks
2021-12-28 17:12:28 +01:00
pushytoxin
1066baed38
Upgrade etherpad to 1.8.16
...
Extend the config template with the lines added in the past year
2021-12-28 15:02:28 +01:00
SierraKiloBravo
56e9ff1740
Added defaults and edited config template for mautrix-telegram, allowing editing of MXID/displayname templates for bridged users
2021-12-28 11:40:22 +01:00
Slavi Pantaleev
280c6c5424
Add |to_json
2021-12-27 21:45:13 +02:00
Alejo Diaz
297ed9ce36
Add encryption_enabled_by_default_for_room_type
...
This commit simply add encryption_enabled_by_default_for_room_type
variable.
Signed-off-by: Alejo Diaz <xlejo@protonmail.com>
2021-12-27 14:20:23 -03:00
Toni Spets
5df486f31e
Upgrade Heisenbridge (1.8.0 -> 1.8.2)
2021-12-25 18:05:41 +02:00
Slavi Pantaleev
dcab14d9a8
Add self-building support to Beeper LinkedIn bridge
...
Fixes https://github.com/spantaleev/matrix-docker-ansible-deploy/issues/1480
Related to https://github.com/spantaleev/matrix-docker-ansible-deploy/pull/1242
2021-12-23 13:04:09 +02:00
Toni Spets
061d6ac86f
Upgrade Heisenbridge (1.7.1 -> 1.8.0)
2021-12-22 19:04:21 +02:00
Slavi Pantaleev
f6f81a85de
Enable notifications during backfill
...
.. as per the default bridge config.
Source: f848710c01/mautrix_twitter/example-config.yamll (L147)
2021-12-22 15:27:35 +02:00
Shreyas Ajjarapu
ed0fcd618c
Update config.yaml.j2
2021-12-21 21:37:09 -06:00
Shreyas Ajjarapu
99b59f73f4
Merge branch 'spantaleev:master' into master
2021-12-21 21:36:09 -06:00
Catalan Lover
eb0c332f80
Update Synapse Version from 1.49.1 to 1.49.2
...
This upgrade is technically not needed due to 1.49.1 and 1.49.2 being identical with a lone fix to Debian packaging being the only change.
Still some might want us to be on the absolutely latest version even tho these 2 are practically identical.
ARM64 has yet to be built so this has to wait for that before merge.
2021-12-21 19:29:56 +01:00
Shreyas Ajjarapu
bae375f3af
Merge branch 'spantaleev:master' into master
2021-12-21 09:32:16 -06:00
Catalan Lover
6c9f6c28de
Update Synapse from 1.49.0 to 1.49.1
...
This update fixes a sync issue that would cause some users to experience sync issues that could cause initial sync to completely fail.
2021-12-21 14:15:13 +01:00
Shreyas Ajjarapu
3509f648af
Update config.yaml.j2
2021-12-21 00:28:55 -06:00
Shreyas Ajjarapu
cddbb1ffa0
Update config.yaml.j2
2021-12-21 00:27:45 -06:00
Shreyas Ajjarapu
6a9775520b
Update validate_config.yml
2021-12-21 00:13:08 -06:00
Shreyas Ajjarapu
87bc9bd146
Update validate_config.yml
2021-12-20 23:36:05 -06:00
Shreyas Ajjarapu
3441e1a307
Merge branch 'spantaleev:master' into master
2021-12-20 23:25:39 -06:00
array-in-a-matrix
2d49b95006
missing uppercase in bot name
2021-12-20 16:55:15 -05:00
WobbelTheBear
dad1a23aa8
Update Element version (v1.9.7 -> v1.9.8)
2021-12-20 17:44:08 +01:00
Slavi Pantaleev
01b6bba9d7
Make Synapse's url_preview_accept_language default to 'en-US, en'
...
Related to https://github.com/matrix-org/synapse/issues/11604
Getting an upstream fix is preferable. In any case, it's probably nice
to have this defined explicitly in our configuration. This way, people
can more easily discover that they can override the URL preview
language.
2021-12-18 15:17:14 +02:00
SkepticalWaves
e8237ea37e
Update synapse-admin to newest tagged release
2021-12-17 15:23:44 -05:00
Slavi Pantaleev
afd7f03bb5
Minor comment changes
2021-12-17 17:30:40 +02:00
Slavi Pantaleev
fa704f104b
Add support for using custom ACME CA servers (other than Let's Encrypt')
...
Fixes https://github.com/spantaleev/matrix-docker-ansible-deploy/issues/1468
2021-12-17 17:30:21 +02:00
Slavi Pantaleev
4625b34acc
Fix failure trying to stop orphaned systemd services
...
Fixes https://github.com/spantaleev/matrix-docker-ansible-deploy/issues/1461
2021-12-17 17:18:35 +02:00
Alexander Bersenev
45119ea9df
Remove a space from XMPP_INTERNAL_MUC_DOMAIN
...
The domain is invalid with space, so it shouldn't be here
2021-12-17 05:47:47 +05:00
Slavi Pantaleev
d45d30cc3f
Merge pull request #1467 from GoMatrixHosting/gomatrixhosting-testing
...
GoMatrixHosting v0.6.7
2021-12-16 08:16:17 +02:00
PC-Admin
2579f6f49b
add new defaults for AWX section
2021-12-16 07:51:27 +08:00
Slavi Pantaleev
60592fd6a8
Fix Jitsi logging.properties conditional being interpreted as Jinja code
...
Related to https://github.com/spantaleev/matrix-docker-ansible-deploy/pull/1464
2021-12-15 21:22:29 +02:00
Slavi Pantaleev
0f569df629
Merge pull request #1464 from sakkiii/jitsi-update
...
Update Jitsi to stable-6726-1
2021-12-15 17:46:24 +02:00
sakkiii
42cd4d2c8d
crontab mount dir should exists
2021-12-15 20:14:47 +05:30
Slavi Pantaleev
a2cdc8b543
Merge pull request #1466 from sakkiii/patch-3
...
Update coturn (4.5.2-r4 -> 4.5.2-r8)
2021-12-15 15:24:37 +02:00
sakkiii
980c2b9a80
Update coturn (4.5.2-r4 -> 4.5.2-r8)
2021-12-15 18:35:13 +05:30
sakkiii
8a0c7913be
Grafana Updata (8.3.1 -> 8.3.3)
2021-12-15 18:33:09 +05:30
sakkiii
55860bf38f
Jitsi update - sentry logging added
2021-12-15 18:23:29 +05:30
sakkiii
12832d8a68
jitsi update
2021-12-15 18:05:52 +05:30
PC-Admin
9b4e4477d9
Merge remote-tracking branch 'upstream/master' into gomatrixhosting-testing
2021-12-15 15:10:06 +08:00
PC-Admin
aef9a1ea1f
GoMatrixHosting v0.6.7
2021-12-15 15:07:41 +08:00
Wm Salt Hale
3001b2d32d
Merge branch 'spantaleev:master' into default_room_version_9
2021-12-14 18:19:26 -08:00
Slavi Pantaleev
5be1310541
Upgrade Synapse (1.48.0 -> 1.49.0)
2021-12-14 16:54:35 +02:00
Matthew Cengia
2b83aeb87e
Update Mautrix-Twitter image path
2021-12-14 22:36:23 +11:00
Matthew Cengia
cb608c06aa
Remove references to sqlite
...
Remove references to sqlite since we should just use postgres from the
outset.
2021-12-14 22:36:23 +11:00
Matthew Cengia
68e6311a9f
Update mautrix-twitter config to be Jinja2 template
...
Updates based off the variable names used in mautrix-facebook role.
Also update port number in defauts/main.yml, and disable presence
checking, because Twitter doesn't support that.
2021-12-14 22:36:23 +11:00
Matthew Cengia
8282ab48c7
Replace bridge config with one from upstream
...
Source: 12f420ab95/mautrix_twitter/example-config.yaml
2021-12-14 22:36:23 +11:00
Matthew Cengia
7afe8103da
Find/replace Facebook with Twitter
...
find roles/matrix-bridge-mautrix-twitter -type f -exec sed -i \
-e 's/facebook/twitter/g' \
-e 's/Facebook/Twitter/g' \
-e 's/FB/Twitter/g' \
-e 's/fb/twitter/g' {} +
2021-12-14 22:36:23 +11:00
Matthew Cengia
e9e4d8f250
Rename mautrix-twitter systemd file
2021-12-14 22:36:23 +11:00
Matthew Cengia
6b9b824964
Copy matrix-bridge-mautrix-facebook as base for matrix-bridge-mautrix-twitter
2021-12-14 22:36:23 +11:00
rakshazi
1f0d56fb75
(Security fix) Update Element 1.9.6 -> 1.9.7
...
Ref: https://matrix.org/blog/2021/12/13/disclosure-buffer-overflow-in-libolm-and-matrix-js-sdk
2021-12-13 15:55:40 +00:00
ppacheco28
eca26e49e1
Update Jitsi to version stable-6727
2021-12-11 11:09:06 -03:00
laszabine
dd903ffcc2
Updated signald docker image path
2021-12-11 16:16:41 +00:00
SkepticalWaves
bbab82ee64
Fix email sending broken by #1406
2021-12-11 10:26:55 -05:00
AnonyPla
ece163b29f
Upgrade Mjolnir from 1.1.20 to version 1.2.1 ( #1422 )
...
* Upgrade Mjolnir from 1.1.20 to version 1.2.1
https://hub.docker.com/r/matrixdotorg/mjolnir/tags
using the "latest" tag seems inefficient as it doesn't actually redirect to the latest release
In any case, the latest release is now 1.2.1
docker pull matrixdotorg/mjolnir:v1.2.1
* Fixup
Co-authored-by: Slavi Pantaleev <slavi@devture.com>
2021-12-11 10:16:33 +02:00
Slavi Pantaleev
b1d8e39612
Merge pull request #1446 from hypn0tick/master
...
Add support for creation of Jitsi internal authentication users in vars.yml
2021-12-11 10:14:50 +02:00
Slavi Pantaleev
6568b68759
Fix validation message
...
The check was checking for an empty string in `matrix_jitsi_prosody_auth_internal_accounts`,
which is unlikely to happen. We should check for an empty list instead.
The check was not validating username/password values, so telling the user that they need a non-empty
username/password is misleading. It was merely checking if there's at least one entry in the list.
This patch adjusts the check and message accordingly.
2021-12-11 10:14:33 +02:00
ppacheco28
c116f268f2
Fixed type mismatch
2021-12-09 19:30:32 -03:00
Slavi Pantaleev
a9e222d523
Remove useless variable (matrix_appservice_webhooks_control_room_id)
...
Fixes https://github.com/spantaleev/matrix-docker-ansible-deploy/issues/1447
Seems like there's such a variable in the
`matrix-bridge-appservice-slack` role, which is probably where it got
copied over from.
2021-12-09 19:46:20 +02:00
Slavi Pantaleev
f6238c9305
Merge pull request #1443 from aaronraimist/v3-again
...
Run `workers-doc-to-yaml.sh`
2021-12-09 15:48:59 +02:00
Slavi Pantaleev
9b6bb9cad7
Merge pull request #1444 from aaronraimist/patch-1
...
Fix comments about `_database_*` variables
2021-12-09 15:45:33 +02:00
ppacheco28
0c101f20c4
Fixed unnecessary checking of user attributes, added check for matrix_jitsi_enable_auth boolean
2021-12-09 07:54:40 -03:00
ppacheco28
4c25c1df06
Changed matrix_jitsi_prosody_auth_internal_accounts default to an empty array, removed unused configuration declaration, and moved jibri configuration back to its proper place
2021-12-09 07:50:31 -03:00
ppacheco28
a26abb2f1b
Removed an empty line (formatting)
2021-12-09 07:44:50 -03:00
ppacheco28
6e38ce42d8
Added check before stopping service, fixed unnecessary checking of user attributes, and created sections to clarify the file's purpose
2021-12-09 07:40:25 -03:00
ppacheco28
d086668f52
Ensure internal authentication users are properly configured
2021-12-09 02:42:36 -03:00
ppacheco28
dd1feffcc2
Add support for Jitsi internal authentication user creation
2021-12-08 20:14:18 -03:00
ppacheco28
f2cd37685c
Add support for Jitsi internal authentication user creation
2021-12-08 19:52:05 -03:00
John M
286871b9b5
Add self-build for Dimension
...
Add a self-build option for the Dimension Dockerfile.
- This helps further support arm64 hosts (i.e. A1.Flex w/Oracle)
2021-12-08 04:48:59 -08:00
Aaron Raimist
fac497faa5
Fix comments in other roles
2021-12-08 10:13:12 +00:00
Aaron R
421b055cb5
Fix comment about matrix_mautrix_whatsapp_database_*
variables
...
Was renamed in 087dbe4ddc
It is unclear to me if there is anything you actually need to adjust with these variables. It looks like that is done automatically in `matrix_servers`.
2021-12-08 04:09:09 -06:00
Aaron Raimist
0071828503
Run workers-doc-to-yaml.sh
...
1472958e25
reverted some of the v3 changes. I'm not sure why. Running the `workers-doc-to-yaml.sh` script now puts them back 🤷♂️ .
2021-12-08 08:37:55 +00:00
Catalan Lover
18daf8f3da
Update Grafana from 8.3.0 to 8.3.1 due to Security Flaw
...
https://grafana.com/blog/2021/12/07/grafana-8.3.1-8.2.7-8.1.8-and-8.0.7-released-with-high-severity-security-fix/
2021-12-07 21:52:49 +01:00
Slavi Pantaleev
ff720bedce
Upgrade matrix-postgres-backup default to v14
...
Related to c08880d175
2021-12-07 19:43:33 +02:00
WobbelTheBear
391e095cb9
Update main.yml
2021-12-06 19:56:13 +01:00
Slavi Pantaleev
9babaa5a2b
Fix mx-puppet-discord media URLs using container-network URLs ( http://matrix-nginx-proxy:12080 )
2021-12-06 13:40:01 +02:00
Jan
20bc3eb24b
Update signal bridge configuration template
2021-12-04 22:08:59 +01:00
Slavi Pantaleev
42352b491c
Merge pull request #1432 from wol-win/prometheus
...
Update prometheus (v2.30.3 -> v2.31.1)
2021-12-02 15:01:03 +02:00
Slavi Pantaleev
971a751a5e
Merge pull request #1433 from wol-win/redis
...
Update redis (6.2.4 -> 6.2.6)
2021-12-02 15:00:45 +02:00
WobbelTheBear
229b93d7c8
Update redis (6.2.4 -> 6.2.6)
2021-12-02 13:54:57 +01:00
WobbelTheBear
3f0e8122ec
Update prometheus
2021-12-02 13:41:12 +01:00
WobbelTheBear
27e1451cbc
Update main.yml
2021-12-02 13:31:57 +01:00
Slavi Pantaleev
d584b44f10
Upgrade matrix-corporal (2.2.1 -> 2.2.2)
2021-12-01 08:23:35 +02:00
Slavi Pantaleev
1472958e25
Upgrade Synapse (1.47.1 -> 1.48.0)
2021-11-30 16:35:23 +02:00
SkepticalWaves
8e1463a6a1
Update matrix-bridge-mautrix-telegram version
2021-11-28 21:59:33 -05:00
Slavi Pantaleev
61391647e9
Make /.well-known/matrix/client and /.well-known/matrix/server customizable
...
We recently had someone need to inject additional configuration into
`/.well-known/matrix/client` as described here:
22b245bbd1/docs/bigbluebutton.md (have-dimension-create-meetings-with-elements-video-call-button)
There may be other use cases as well.
2021-11-26 15:28:03 +02:00
Slavi Pantaleev
cfc79ebe29
Upgrade exim-relay (4.94.2-r0-5 -> 4.95-r0)
2021-11-25 09:21:05 +02:00
Slavi Pantaleev
3a9fe48deb
Make matrix-nginx-proxy's X-Forwarded-For header customizable
...
Fixes https://github.com/spantaleev/matrix-docker-ansible-deploy/issues/1393
2021-11-24 11:32:06 +02:00
PC-Admin
37191d98c5
GoMatrixHosting v0.6.6
2021-11-24 10:43:25 +08:00
Toni Spets
e8a57ad432
Upgrade Heisenbridge (1.7.0 -> 1.7.1)
2021-11-23 15:03:09 +02:00
Slavi Pantaleev
6b07ee3b58
Upgrade Synapse (1.47.0 -> 1.47.1) - security fixes
...
Learn more here: https://github.com/matrix-org/synapse/releases/tag/v1.47.1
2021-11-23 14:50:07 +02:00
WobbelTheBear
e11e31e2c6
Update main.yml
2021-11-22 16:53:20 +01:00
Slavi Pantaleev
fc751f0330
Upgrade exim-relay (4.94.2-r0-4 -> 4.94.2-r0-5)
2021-11-20 09:31:04 +02:00
Slavi Pantaleev
2734adfb4e
Upgrade matrix-corporal (2.2.0 -> 2.2.1)
2021-11-20 09:28:27 +02:00
Slavi Pantaleev
3b27ce2ff6
Merge pull request #1404 from aaronraimist/v3
...
Allow workers to serve new v3 APIs
2021-11-19 10:54:47 +02:00
Slavi Pantaleev
2e73dac39f
Upgrade matrix-corporal (2.1.4 -> 2.2.0)
...
There was also a 2.1.5 security release made today.
2.2.0 contains the same security fix + more.
Both make handling of Client-Server API v3-prefixed requests better.
Related to https://github.com/spantaleev/matrix-docker-ansible-deploy/pull/1404
2021-11-19 10:53:09 +02:00
Toni Spets
110d91b06e
Upgrade Heisenbridge (1.6.0 -> 1.7.0)
2021-11-18 13:05:30 +02:00
rakshazi
d41e9230da
expose smtp_user and smtp_pass to ansible configs (role: matrix-synapse)
2021-11-17 21:34:46 +02:00
Slavi Pantaleev
e1a6d1e4b2
Upgrade Synapse (1.46.0 -> 1.47.0)
...
We had to remove UID/GID environment variables that we used to pass
to the Synapse container, because it was causing a problem after
https://github.com/matrix-org/synapse/pull/11209
We were using both `--user` and UID/GID environment variables until now.
2021-11-17 17:21:15 +02:00
Aaron Raimist
f8fe68b385
Allow workers to serve new v3 APIs
...
1f196f59cb
2021-11-17 14:54:49 +00:00
Slavi Pantaleev
75cb4ce3b0
Add warning about matrix_ma1sd_default_port being renamed
...
Related to https://github.com/spantaleev/matrix-docker-ansible-deploy/pull/1403
2021-11-17 10:38:52 +02:00
Slavi Pantaleev
b4fb819481
Merge pull request #1403 from borisrunakov/rename-matrix-ma1sd-default-port
...
remove default from variable name
2021-11-17 10:35:54 +02:00
Slavi Pantaleev
6bbc2054b8
Merge pull request #1402 from borisrunakov/matrix-synapse-container-client-api-port
...
make 8008 configurable
2021-11-17 10:34:40 +02:00
boris runakov
394ecb0acc
remove default from variable name
2021-11-16 21:14:28 +02:00
boris runakov
d3a9ec98de
refactoring
2021-11-16 21:03:21 +02:00
Slavi Pantaleev
5fc533eca5
Merge pull request #1400 from IUCCA/master
...
Updated Mautrix-WhatsApp config
2021-11-16 15:50:06 +02:00
iucca
949ae80117
added server_map variable and renamed secret_map
2021-11-16 14:22:06 +01:00
iucca
b272e6147a
Resolved server_map
2021-11-16 13:37:11 +01:00
boris runakov
1ec67f49b0
replaced 8008 where possible
2021-11-15 22:43:05 +02:00
IUCCA
adf2dc13b3
Update main.yml
2021-11-15 19:27:49 +01:00
iucca
3535c97117
updated whatsapp config
2021-11-15 19:25:08 +01:00
iucca
ae122466fc
updated whatsapp config
2021-11-15 19:23:28 +01:00
Slavi Pantaleev
e72ae8bc48
Upgrade matrix-corporal (2.1.3 -> 2.1.4)
2021-11-15 17:23:25 +02:00
Slavi Pantaleev
c1bc7b9f93
Rename variables to prevent confusion
...
Related to https://github.com/spantaleev/matrix-docker-ansible-deploy/pull/1397
and https://github.com/spantaleev/matrix-docker-ansible-deploy/pull/1399
2021-11-15 14:56:11 +02:00
Slavi Pantaleev
ba48aa70f7
Fix variable name typo
...
Related to https://github.com/spantaleev/matrix-docker-ansible-deploy/pull/1397
2021-11-15 14:52:08 +02:00
Slavi Pantaleev
dc4452ac21
Merge branch 'master' into matrix-federation-api-port
2021-11-15 14:49:03 +02:00
Slavi Pantaleev
edf63bfdd7
Add some to_json invocations
2021-11-15 14:48:25 +02:00
Slavi Pantaleev
994c0e504c
Ensure some matrix-nginx-proxy variables are defined
...
Related to https://github.com/spantaleev/matrix-docker-ansible-deploy/pull/1397
2021-11-15 14:46:44 +02:00
Slavi Pantaleev
0152ecef1c
Merge pull request #1397 from borisrunakov/synapse_container_federation_port
...
Synapse container federation port
2021-11-15 14:45:34 +02:00
boris runakov
8c3e25de1b
renamed var to matrix_synapse_container_federation_api_port
2021-11-15 13:01:22 +02:00
boris runakov
28d9c3192e
Merge branch 'master' into matrix-federation-api-port
2021-11-15 12:49:47 +02:00
b
07496069c8
rellocating variables for consistency
2021-11-15 12:07:54 +02:00
Slavi Pantaleev
0d4764a213
Upgrade matrix-corporal (2.1.2 -> 2.1.3)
...
2.1.3 fixes a security vulnerability, which allowed attackers to
circuimvent policy checks by sending HTTP requests with trailing slashes.
Learn more in the matrix-corporal changelog: https://github.com/devture/matrix-corporal/blob/master/CHANGELOG.md
2021-11-15 11:24:12 +02:00
Slavi Pantaleev
c08880d175
Upgrade postgres-backup to v14
2021-11-15 09:15:44 +02:00
Slavi Pantaleev
10523b700c
Merge pull request #1396 from aaronraimist/postgres
...
Postgres Minor Updates (14.1, 13.5, 12.9, 11.14, 10.19)
2021-11-15 08:35:26 +02:00
Slavi Pantaleev
8abe1ac483
Warn people if on an old SQLite-supporting mautrix-facebook version
...
Related to https://github.com/spantaleev/matrix-docker-ansible-deploy/pull/1401
https://github.com/mautrix/facebook/releases/tag/v0.3.2 says that this
version re-adds SQLite support.
2021-11-15 08:28:20 +02:00
Arthur Brugière
708a7108b3
Upgrade Mautrix Facebook bridge version
2021-11-15 10:29:13 +07:00
iucca
4ff8fddd72
updated whatsapp config, backfill doesn't work
2021-11-14 23:57:52 +01:00
iucca
1d0e594def
updated whatsapp config, backfill doesn't work
2021-11-14 23:45:07 +01:00
b
afccc2b11f
make 8448 configurable instead of hard coded
2021-11-14 23:32:25 +02:00
Aaron Raimist
61b743f86d
Postgres Minor Updates (14.1, 13.5, 12.9, 11.14, 10.19)
2021-11-14 19:10:56 +00:00
b
5e97f5a4e6
fixed matrix_dimension_homeserver_federationUrl
2021-11-14 20:57:27 +02:00
b
7756cc4c8e
replace port 8048 with matrix_synapse_container_default_federation_port
2021-11-14 20:30:13 +02:00
JokerGermany
c0656448f7
Port 80 for IPv6
2021-11-13 01:18:22 +01:00
Toni Spets
f01b9c3865
Upgrade Heisenbridge (1.5.0 -> 1.6.0)
2021-11-12 04:50:29 +02:00
Slavi Pantaleev
c4d2c8394c
Abort if on an unsupported Postgres version (v9.6)
...
Official support ends today (2021-11-11).
Synapse still supports v9.6, but we'd better force users to transition
to newer versions anyway.
2021-11-11 15:42:34 +02:00
sakkiii
cd26af2f6f
Certbot Update (v1.20.0 -> v1.21.0)
2021-11-10 22:58:45 +05:30
sakkiii
7a4f49c457
Nginx Minio Update (1.21.3 -> 1.21.4)
2021-11-10 22:52:23 +05:30
Slavi Pantaleev
735c966ab6
Disable systemd services when stopping to uninstall them
...
Until now, we were leaving services "enabled"
(symlinks in /etc/systemd/system/multi-user.target.wants/).
We clean these up now. Broken symlinks may still exist in older
installations that enabled/disabled services. We're not taking care
to fix these up. It's just a cosmetic defect anyway.
2021-11-10 17:39:21 +02:00
teutat3s
367cddb715
Upgrade Element (v1.9.4)
2021-11-09 15:01:18 +01:00
Slavi Pantaleev
143b0f26d9
Restore usage of some _environment_variables_extension Jitsi variables
...
Fixes https://github.com/spantaleev/matrix-docker-ansible-deploy/issues/1377
Regresion since https://github.com/spantaleev/matrix-docker-ansible-deploy/pull/1139
2021-11-08 10:34:09 +02:00
b
6eaa8ac65a
add server_name to matrix-synapsel.conf only if matrix_nginx_proxy_enabled
2021-11-05 15:31:10 +02:00
Toni Spets
09ac6a0e8c
Upgrade Heisenbridge (1.4.1 -> 1.5.0)
2021-11-05 10:31:31 +02:00
Slavi Pantaleev
7b8b595e81
Upgrade Synapse (1.45.1 -> 1.46.0)
2021-11-02 17:42:13 +02:00
Slavi Pantaleev
dae117c91b
Bump Hydrogen (0.2.7 -> 0.2.19)
2021-11-02 15:57:18 +02:00
Slavi Pantaleev
4586efebd7
Merge pull request #1369 from borisrunakov/configurable-ma1sd-port
...
change port 8090 to matrix_ma1sd_default_port
2021-11-01 10:50:14 +02:00
Slavi Pantaleev
0434e3bf8f
Allow force-patching webpack.config.js when self-building Element
...
We were applying the low-memory system patch to webpack.config.js
on systems with < 4GB memory.
From now on, we also let people force-enable patching by toggling the
`matrix_client_element_container_image_self_build_low_memory_system_patch_enabled`
variable.
Related to https://github.com/spantaleev/matrix-docker-ansible-deploy/issues/1357
2021-11-01 09:08:18 +02:00
b
dcda17595a
change port 8090 to matrix_ma1sd_default_port
2021-10-31 21:06:22 +02:00
Toni Spets
17fc055d53
Upgrade Heisenbridge (1.4.0 -> 1.4.1)
2021-10-31 18:31:31 +02:00
PC-Admin
c6c68e00a4
merge upstream
2021-10-31 08:56:48 +08:00
Patrick C. F. Ernzer
65182ea0f2
fixes #1365
...
docker-ce does not like quotes around the shm-size value
2021-10-30 13:13:30 +02:00
Slavi Pantaleev
fc593bc8ab
Increase shm-size for Postgres container to fix VACUUM
...
Related to https://github.com/spantaleev/matrix-docker-ansible-deploy/issues/1268
Related to https://github.com/spantaleev/matrix-docker-ansible-deploy/issues/1364
Fixes https://github.com/spantaleev/matrix-docker-ansible-deploy/issues/1362
2021-10-30 09:53:56 +03:00
Slavi Pantaleev
c8a8035de4
Make it possible to self-build Element on low-memory devices (<4G RAM)
...
Fixes https://github.com/spantaleev/matrix-docker-ansible-deploy/issues/1357
2021-10-29 11:13:01 +03:00
Slavi Pantaleev
39fa852ed6
Remove unnecessary if checks
...
Should have been done in 63f5a88fa0
.
2021-10-29 10:41:11 +03:00
Slavi Pantaleev
63f5a88fa0
Separate install/uninstall tasks for Element and Hydrogen
2021-10-29 10:29:54 +03:00
Toni Spets
124b9608fc
Upgrade Heisenbridge (1.3.0 -> 1.4.0)
2021-10-28 21:07:11 +03:00
Thom Wiggers
32f15e9bf0
update IRC appservice
...
https://github.com/matrix-org/matrix-appservice-irc/releases/tag/0.32.1
2021-10-28 15:21:58 +02:00
sakkiii
0231302db9
Upgrade grafana (8.1.4 -> 8.2.2)
2021-10-27 23:14:14 +05:30
sakkiii
d09609b3bd
Update prometheus (2.29.2 -> 2.30.3)
2021-10-27 23:11:01 +05:30
throwawayay
d31cdb071a
Upgrade Element (v1.9.3)
...
https://github.com/vector-im/element-web/releases/tag/v1.9.3
2021-10-25 12:44:58 -04:00
Slavi Pantaleev
06bcdcf9d2
Merge pull request #1311 from HarHarLinks/master
...
add auto proxy synapse worker metrics
2021-10-25 09:21:11 +03:00
Kim Brose
5f6bbafa17
fix space before tab in indent
2021-10-24 16:00:42 +02:00
Toni Spets
d7af78066b
Upgrade Heisenbridge (1.2.1 -> 1.3.0)
2021-10-21 19:55:13 +03:00
Slavi Pantaleev
09ac950d17
Fix dump importing (backup restore) into Postgres v14
...
In short, the problem is that older Postgres versions store passwords
hashed as md5. When you dump such a database, the dump naturally also
contains md5-hashed passwords.
Restoring from that dump used to create users and updates their passwords
with these md5 hashes.
However, Postgres v14 prefers does not like md5-hashed passwords now (by default),
which breaks connectivity. Postgres v14 prefers `scram-sha-256` for
authentication.
Our solution is to just ignore setting passwords (`ALTER ROLE ..`
statements) when restoring dumps. We don't need to set passwords as
defined in the dump anyway, because the playbook creates users
and manages their passwords by itself.
Fixes https://github.com/spantaleev/matrix-docker-ansible-deploy/issues/1340
2021-10-21 16:38:56 +03:00
PC-Admin
7f140e9be2
Merge remote-tracking branch 'upstream/master' into gomatrixhosting-testing
2021-10-21 10:27:45 +08:00
PC-Admin
725150565a
GoMatrixHosting v0.6.3 hotfix2
2021-10-21 10:25:23 +08:00
Slavi Pantaleev
86614d6357
Merge pull request #1345 from GoMatrixHosting/gomatrixhosting-testing
...
GoMatrixHosting v0.6.3 [hotfix]
2021-10-20 17:04:55 +03:00
Slavi Pantaleev
5dc2868269
Upgrade Synapse (1.45.0 -> 1.45.1)
2021-10-20 15:08:07 +03:00
HarHarLinks
7b33fc8e19
fixup! auto-generate prometheus.yml for workers metrics
2021-10-20 13:30:38 +02:00
HarHarLinks
ce41674e61
auto-generate prometheus.yml for workers metrics
2021-10-20 12:51:00 +02:00
HarHarLinks
4209c4208c
add own variable for worker metrics
...
https://github.com/spantaleev/matrix-docker-ansible-deploy/pull/1311#issuecomment-945718866
2021-10-20 12:51:00 +02:00
PC-Admin
75cfad57ca
GoMatrixHosting v0.6.3 hotfix
2021-10-20 18:00:55 +08:00
Slavi Pantaleev
1dab178a44
Upgrade Synapse (1.44.0 -> 1.45.0)
2021-10-19 16:25:00 +03:00
PC-Admin
d65607c48f
Merge remote-tracking branch 'upstream/master' into gomatrixhosting-testing
2021-10-19 17:48:23 +08:00
PC-Admin
18395e73d3
GMH v0.6.3
2021-10-19 17:45:15 +08:00
Slavi Pantaleev
5284afc60e
Merge pull request #1333 from Samonitari/add-support-for-suse-linux
...
Add support for suse linux
2021-10-15 09:50:02 +03:00
Slavi Pantaleev
8c15555d00
Upgrade Element (1.9.0 -> 1.9.2)
2021-10-15 09:27:26 +03:00
Wm Salt Hale
a1cbd5459c
Update Synapse default room version (6 -> 9)
...
From the [Synapse 1.43.0 release highlights](https://matrix.org/blog/2021/09/21/synapse-1-43-0-released ):
> Asks clients to prefer [room version 9](https://github.com/matrix-org/matrix-doc/pull/3375 ) when creating restricted rooms ([#10772 ](https://github.com/matrix-org/synapse/issues/10772 )), via the API defined in [MSC3244: room version capabilities](https://github.com/matrix-org/matrix-doc/pull/3244 ).
2021-10-12 09:49:16 -07:00
Luke
1dac525e63
Added Mautrix Google Chat
2021-10-12 11:45:04 +00:00
Slavi Pantaleev
fb709152f3
Add self-building support for mautrix-whatsapp
...
Fixes https://github.com/spantaleev/matrix-docker-ansible-deploy/issues/1322
2021-10-12 10:02:07 +03:00
Slavi Pantaleev
0c21b5a055
Merge pull request #1326 from GoMatrixHosting/gomatrixhosting-testing
...
GoMatrixHosting v0.6.2
2021-10-12 08:53:11 +03:00
Michael Collins
fc0296b56e
update element section
2021-10-12 12:20:53 +08:00
Aaron R
25d0ae7b67
Update matrix-appservice-slack (1.5.0 -> 1.8.0)
...
I am not using this bridge and haven't tested this but multiple people have said 1.5.0 isn't working and 1.8.0 works for them so it seems to make sense to update.
https://github.com/matrix-org/matrix-appservice-slack/issues/618#issuecomment-929849093
2021-10-11 18:36:07 -05:00
Michael Collins
c630bc3eaa
update element section
2021-10-11 15:13:09 +08:00
Michael Collins
46cba52e79
update element section
2021-10-11 15:00:11 +08:00
Michael Collins
b4654f8992
update element section
2021-10-11 14:53:52 +08:00
Michael Collins
927633321a
update element section
2021-10-11 13:34:46 +08:00
Michael Collins
676ba70971
update element section
2021-10-11 12:57:16 +08:00
Michael Collins
53f4b84d1f
update element section
2021-10-11 12:55:49 +08:00
Michael Collins
8ff0ae27b8
update element section
2021-10-11 12:15:15 +08:00
Michael Collins
9f0a8965d5
update element config
2021-10-11 11:43:58 +08:00
Michael Collins
36883150c6
update
2021-10-11 11:30:30 +08:00
Michael Collins
291efc1163
update element section
2021-10-11 11:20:28 +08:00
Michael Collins
6a8799afcc
wrap brand variable in single quotes too
2021-10-11 10:55:39 +08:00
Michael Collins
85bc12d14c
saner handling of background variable
2021-10-11 10:37:02 +08:00
Michael Collins
79acf6fc7e
update conditionals
2021-10-11 10:30:12 +08:00
Michael Collins
a352ea4674
derp
2021-10-11 10:23:37 +08:00
Michael Collins
1ae103bbbe
stop configure element from double wrapping this
2021-10-11 10:07:34 +08:00
Michael Collins
89c8ae94d6
update
2021-10-10 16:16:31 +08:00
Michael Collins
a631587ebd
this isnt needed
2021-10-10 14:44:27 +08:00
Michael Collins
07a5433c24
fix lineinfile
2021-10-10 14:39:36 +08:00
Michael Collins
dd6e643581
first round of variable name changes
2021-10-10 14:10:06 +08:00
Michael Collins
175bdb100b
first round of variable name changes
2021-10-10 13:23:49 +08:00
Michael Collins
6b9af38228
update?
2021-10-10 09:19:01 +08:00
Michael Collins
f4410514f5
update variable names
2021-10-09 15:45:49 +08:00
Michael Collins
de084c4d4d
fix variable name change
2021-10-09 15:43:47 +08:00
Michael Collins
fb23c7b697
Merge remote-tracking branch 'upstream/master' into gomatrixhosting-testing
2021-10-09 15:38:32 +08:00
Michael Collins
a60a43cb08
change naming scheme of variables that feature in deploy.
2021-10-09 15:21:10 +08:00
Michael Collins
42af090a7c
update naming scheme 1
2021-10-09 10:21:27 +08:00
Michael Collins
df9da052ab
fix conditional
2021-10-09 09:24:39 +08:00
Michael Collins
384dfdce4b
update?
2021-10-09 08:58:10 +08:00
Samonitari
6f99f95aa2
Merge branch 'master' of https://github.com/spantaleev/matrix-docker-ansible-deploy into add-support-for-suse-linux
2021-10-08 10:27:32 +02:00
Michael Collins
b0d56f6c18
update conditionals
2021-10-08 14:28:37 +08:00
Michael Collins
208dce51d8
add new survey entries for welcome page link, headline and text
2021-10-08 14:18:59 +08:00
Michael Collins
0f4cb513b8
update survey
2021-10-08 13:16:09 +08:00
Michael Collins
8d9d176c36
update?
2021-10-07 13:29:55 +08:00
Michael Collins
d1754915d1
improve conditional
2021-10-07 12:53:32 +08:00
Michael Collins
ecc0437520
add logo section
2021-10-07 12:49:59 +08:00
Slavi Pantaleev
2bf052369d
Upgrade certbot (v1.19.0 -> v1.20.0)
2021-10-06 15:14:38 +03:00
Slavi Pantaleev
278bbae4d5
Upgrade Synapse (1.43.0 -> 1.44.0)
2021-10-05 17:13:21 +03:00
Slavi Pantaleev
bad2c5296e
Merge pull request #1312 from HarHarLinks/patch-4
...
add how to generate htpasswd
2021-10-05 11:29:44 +03:00
Michael Collins
e3183ba267
Merge remote-tracking branch 'upstream/master' into gomatrixhosting-testing
2021-10-05 11:39:07 +08:00
Kim Brose
1ba7760ea4
add how to generate htpasswd
...
for matrix_nginx_proxy_proxy_synapse_metrics_basic_auth_key
resolves #1308
2021-10-04 22:18:05 +02:00
HarHarLinks
d9fa2f7ed4
add auto proxy synapse worker metrics
...
when matrix_nginx_proxy_proxy_synapse_metrics is enabled
2021-10-04 21:44:50 +02:00
Michael Collins
40506d5c5a
no log
2021-10-02 12:43:14 +08:00
Slavi Pantaleev
b5d8444764
Add self-building support to matrix-bridge-appservice-webhooks
2021-10-01 16:37:37 +03:00
Michael Collins
c8744ef9a9
update deploy role for new awx token authentication method
2021-10-01 18:56:38 +08:00
Slavi Pantaleev
096c960b84
Add support for Postgres v14
2021-10-01 11:27:40 +03:00
Slavi Pantaleev
256d3ffec5
Merge pull request #1304 from apmechev/update-linkedin-0.5.1
...
Upgrade LinkedIn (0.5.0 -> 0.5.1)
2021-10-01 10:15:08 +03:00
Toni Spets
3119ef4574
Upgrade Heisenbridge (1.2.0 -> 1.2.1)
2021-09-30 08:42:58 +03:00
Slavi Pantaleev
b4b14539a7
Use ntp (instead of systemd-timesyncd) on Ubuntu 18.04
...
Seems like Ubuntu 18.04 does not have a dedicated `systemd-timesyncd` package, nor
does it include the `systemd-timesyncd` binary in the main `systemd` package.
Fixes https://github.com/spantaleev/matrix-docker-ansible-deploy/issues/1302
Regression since https://github.com/spantaleev/matrix-docker-ansible-deploy/pull/1192
2021-09-28 13:38:27 +03:00
Alexandar Mechev
f02c08dc7f
Upgrade LinkedIn (0.5.0 -> 0.5.1)
2021-09-28 11:07:43 +02:00
Oli
59d4532efb
Upgrade Element (1.8.5 -> 1.9.0)
2021-09-28 07:40:00 +02:00
Jan
0ed585baa7
Archlinux: remove package systemd-timesyncd
...
#1192 lead to the following error for me on Archlinux:
`TASK [matrix-base : Install host dependencies] *******************************************************************************************************************************
fatal: [matrix.***.de]: FAILED! => changed=false
msg: |-
failed to install systemd-timesyncd: error: target not found: systemd-timesyncd`
There is no package called `systemd-timesyncd` on Archlinux. The service is installed with the [`systemd`](https://archlinux.org/packages/core/x86_64/systemd/ ) package itself.
I suggest removing the `systemd-timesyncd` from 2453876eb9/roles/matrix-base/tasks/server_base/setup_archlinux.yml (L7)
2021-09-26 11:48:03 +02:00
Slavi Pantaleev
31396f0615
Merge pull request #1295 from nogweii/feat-support-upstream-https-forwarded
...
Support trusting the upstream server when it says the protocol is HTTPS
2021-09-26 09:54:15 +03:00
Slavi Pantaleev
4f841a7001
Merge pull request #1192 from sakkiii/patch-1
...
migrate from ntp to systemd-timesyncd for ubuntu & Archlinux
2021-09-25 10:15:40 +03:00
Slavi Pantaleev
62ce06e28c
Merge pull request #1298 from GoMatrixHosting/gomatrixhosting-testing
...
GoMatrixHosting v0.6.0
2021-09-25 09:35:53 +03:00
Michael Collins
9a4187c852
Merge remote-tracking branch 'upstream/master' into gomatrixhosting-testing
2021-09-25 10:56:26 +08:00
Aaron Raimist
a676b5358c
Fix hydrogen OCSP typo
...
From 6f80292745
2021-09-24 20:09:06 -05:00
Colin Shea
2578ca4cee
rename matrix_nginx_proxy_x_forwarded_header_value -> matrix_nginx_proxy_x_forwarded_proto_value
2021-09-24 05:22:30 -07:00
Colin Shea
d0cd67044e
replace $scheme with X-Forwarded-Proto when enabled
2021-09-24 05:14:38 -07:00
Toni Spets
ff63f4efce
Upgrade Heisenbridge (1.1.1 -> 1.2.0)
2021-09-23 10:18:46 +03:00
Michael Collins
33c471477f
remove commented section
2021-09-22 09:44:52 +08:00
Slavi Pantaleev
7934cde90f
Upgrade Synapse (1.42.0 -> 1.43.0)
...
Related to:
- https://github.com/spantaleev/matrix-docker-ansible-deploy/pull/1287
- https://github.com/spantaleev/matrix-docker-ansible-deploy/pull/1288
.. but does it in a more complete way
2021-09-21 18:17:50 +03:00
Slavi Pantaleev
35153093fc
Merge pull request #1283 from wol-win/irc-update
...
Update irc bridge version (release-0.30.0 -> release-0.31.0)
2021-09-21 10:51:11 +03:00
WobbelTheBear
d82b98a522
Upgrade mjolnir (v0.1.19 -> v1.1.20)
...
Upgrade mjolnir (v0.1.19 -> v1.1.20)
Remark: interesting version number increase :-)
2021-09-20 16:53:13 +02:00
WobbelTheBear
f542a3a7c8
Update release (release-0.30.0 -> release-0.31.0)
...
Update release (release-0.30.0 -> release-0.31.0)
2021-09-20 16:49:30 +02:00
Michael Collins
6902ee5aa7
add rotate ssh module to matrix-awx
2021-09-19 17:12:12 +08:00
Toni Spets
8b9c7b18ac
Upgrade Heisenbridge (1.1.0 -> 1.1.1)
2021-09-17 21:31:02 +03:00
sakkiii
255cb97c41
Upgrade grafana (8.1.3 -> 8.1.4)
2021-09-17 15:50:06 +05:30
Slavi Pantaleev
b166f0175a
Upgrade Element (1.8.4 -> 1.8.5)
2021-09-15 09:36:21 +03:00
sakkiii
3055b3996e
Updates Certbot -> v1.19.0, nginx ->1.21.3-alpine
2021-09-14 16:51:01 +05:30
Toni Spets
4adbefab82
Upgrade Heisenbridge (1.0.1 -> 1.1.0)
2021-09-14 11:17:28 +03:00
Krisztian Szegi
f364fba182
Fix tripping on timesync setup
2021-09-14 08:35:20 +02:00
Slavi Pantaleev
4b46913278
Upgrade Element (1.8.2 -> 1.8.4) to patch a security issue
...
See:
- https://github.com/vector-im/element-web/releases/tag/v1.8.4
- https://matrix.org/blog/2021/09/10/pre-disclosure-upcoming-critical-fix-for-several-popular-matrix-clients
2021-09-13 16:24:09 +03:00
Aaron Raimist
f7e614b644
Add comment explaining why this step goes here
2021-09-11 20:44:00 -05:00
Aaron Raimist
82641092a7
Revert "Move some related tasks closer together in matrix-client-hydrogen"
...
This reverts commit e913347fe1
.
2021-09-11 20:43:08 -05:00
WobbelTheBear
df13ea5f14
Upgrade grafana (8.1.2 -> 8.1.3) ( #1269 )
...
Upgrade grafana (8.1.2 -> 8.1.3)
2021-09-09 09:33:22 +03:00
Slavi Pantaleev
0faad74a44
Upgrade Synapse (1.41.1 -> 1.42.0)
2021-09-07 20:44:18 +03:00
Michael Collins
8339103594
revert unneeded changes
2021-09-04 15:08:07 +08:00
Michael Collins
ca705cf9dd
Merge remote-tracking branch 'upstream/master' into testing
2021-09-04 14:24:13 +08:00
sakkiii
ae6caf158a
Added variable matrix_nginx_proxy_request_timeout ( #1265 )
...
* add timeout param for nginx proxy
default value matrix_nginx_proxy_request_timeout is 60s
* default matrix_nginx_proxy_request_timeout - 60s
* few more variables for request timeout
* Update nginx.conf.j2
* Update nginx.conf.j2
2021-09-03 10:00:45 +03:00
Slavi Pantaleev
a911207854
Revert "nginx update v1.21.2"
...
This reverts commit 732051b8fc
.
There's no such container image published yet.
2021-09-03 09:07:58 +03:00
Slavi Pantaleev
115f365860
Merge pull request #1263 from hifi/feature/heisenbridge-1.0.1
...
Bump Heisenbridge to v1.0.1
2021-09-03 08:43:01 +03:00
sakkiii
732051b8fc
nginx update v1.21.2
...
http://nginx.org/en/CHANGES
2021-09-03 10:46:21 +05:30
Toni Spets
c228343339
Bump Heisenbridge to v1.0.1
2021-09-03 07:58:48 +03:00
Slavi Pantaleev
e913347fe1
Move some related tasks closer together in matrix-client-hydrogen
2021-09-01 16:47:43 +03:00
Slavi Pantaleev
d384d0d7a0
Upgrade Element (1.8.1 -> 1.8.2)
2021-09-01 11:14:04 +03:00
Slavi Pantaleev
1c9124e3b7
Merge pull request #1260 from aaronraimist/self-build
...
Pull correct version when self building Mautrix Facebook and Synapse Admin
2021-08-31 17:30:49 +03:00
Aaron Raimist
3ab01a5f9e
Pull correct version when self building Mautrix Facebook and Synapse Admin
2021-08-31 08:43:52 -05:00
Catalan Lover
777ba6bc5a
Upgrade to Synaspe v 1.41.1 (Security Update)
...
Synapse 1.41.1 Patches 2 exploits that can reveal information about rooms an user is not supposed to have access to information about.
2021-08-31 14:54:23 +02:00
sakkiii
2453876eb9
Update main.yml
2021-08-31 16:24:26 +05:30
sakkiii
087a5d62f1
systemd-timesyncd for any archlinux version
2021-08-31 15:53:59 +05:30
Slavi Pantaleev
7fc1a94c30
Merge pull request #1258 from sakkiii/jitsi-fix
...
Jitsi Update (stable-5963 -> stable-6173)
2021-08-30 10:41:00 +03:00
Slavi Pantaleev
9d06dd61a6
Upgrade exim-relay (4.94.2-r0-3 -> 4.94.2-r0-4)
2021-08-30 10:09:51 +03:00
sakkiii
510f299c04
Syntex fixed
2021-08-29 21:43:39 +05:30
sakkiii
465d436b1b
Merge branch 'spantaleev:master' into jitsi-fix
2021-08-29 19:35:09 +05:30
sakkiii
a43b109653
Jitsi Update stable-5963
2021-08-29 19:34:30 +05:30
sakkiii
6feb99076a
Update Coturn (4.5.2-r3 -> 4.5.2-r4)
2021-08-29 15:40:00 +05:30
WobbelTheBear
972077aa33
Update prometheus (2.29.1 -> 2.29.2)
...
Update prometheus (2.29.1 -> 2.29.2)
2021-08-27 16:51:38 +02:00
Slavi Pantaleev
ad3d2a5aee
Merge pull request #1252 from sakkiii/patch-4
...
mjolnir & hydrogen Minor Updates
2021-08-25 20:23:57 +03:00
sakkiii
e4ea32b89f
Hydrogen v0.2.7
2021-08-25 22:49:12 +05:30
sakkiii
44709465c9
mjolnir releases v0.1.19
2021-08-25 22:45:21 +05:30
sakkiii
86f5ba8348
Grafana Grafana v8.1
2021-08-25 22:43:07 +05:30
Slavi Pantaleev
a4db9557db
Update homeserver.yaml to match the one in Synapse v1.41.0
...
Related to https://github.com/spantaleev/matrix-docker-ansible-deploy/pull/1247
2021-08-25 09:51:50 +03:00
Slavi Pantaleev
bb0e59de48
Merge pull request #1250 from wol-win/worker_trial
...
Endpoint changes for Client and media API due to migration to 1.41.0
2021-08-25 09:37:43 +03:00
Slavi Pantaleev
b447fa8f34
Merge pull request #1247 from FSG-Cat/patch-1
...
Update Synapse from 1.40.0 to 1.41.0
2021-08-25 09:37:20 +03:00
Wolfgang Winter
ee75d35193
Endpoint changes for Client and media API due to migration to 1.41.0
2021-08-24 21:46:38 +02:00
Joseph Walton-Rivers
a787f406f9
Update main.yml
...
Fix incorrect docker version tag for matrix-appservice-irc
2021-08-24 18:41:39 +01:00
Catalan Lover
1e070f1e56
Update Synapse from 1.40.0 to 1.41.0
2021-08-24 19:09:28 +02:00
Michael Collins
6ecd947c72
remove delete subscription section
2021-08-24 19:05:58 +08:00
Michael Collins
463e9a6196
woops bool not bools
2021-08-24 18:48:43 +08:00
Michael Collins
f19856e125
change template name
2021-08-24 18:35:49 +08:00
Michael Collins
c6f8bc5d83
missing one template from deletion section
2021-08-24 18:35:00 +08:00
Michael Collins
a49da05cf9
delegate locally
2021-08-24 18:20:26 +08:00
Michael Collins
ef4b5a187d
alter delete_job_template template
2021-08-24 14:33:50 +08:00
Michael Collins
b120b8aeba
delay these till the next playbook
2021-08-24 14:27:50 +08:00
sakkiii
01a5f521cd
Merge branch 'patch-2' of https://github.com/sakkiii/matrix-docker-ansible-deploy into patch-2
2021-08-24 10:26:20 +05:30
sakkiii
00d1804dd9
prometheus & its exporter updates
2021-08-24 10:24:54 +05:30
Slavi Pantaleev
57414ec2be
Upgrade matrix-corporal (2.1.1 -> 2.1.2)
2021-08-23 15:39:54 +03:00
Slavi Pantaleev
4b643db31b
Upgrade devture/exim-relay (4.94.2-r0-2 -> 4.94.2-r0-3)
...
Related to https://github.com/devture/exim-relay/pull/11
2021-08-23 15:31:37 +03:00
Slavi Pantaleev
ca7e0b9df2
Merge pull request #1243 from sakkiii/patch-3
...
Postgres Minor Updates
2021-08-23 15:29:14 +03:00
Slavi Pantaleev
2ec06b7477
Merge pull request #1242 from apmechev/add_beeper_linkedin_bridge
...
Add beeper LinkedIn bridge
2021-08-23 15:15:35 +03:00
Slavi Pantaleev
603ad7c52b
Remove (non-working) SQLite support from beeper-linkedin bridge
...
This bridge doesn't support SQLite anyway, so it's not necessary
to carry around configuration fields and code for migration from SQLite
to Postgres. There's nothing to migrate.
2021-08-23 15:12:19 +03:00
Slavi Pantaleev
78c22138a5
Do not reference variables from other roles
...
This configuration is supposed to be kept clean and not reference variables defined in other roles.
`group_vars/matrix_servers` redefines these to hook our various roles together.
2021-08-23 15:06:00 +03:00
Thom Wiggers
78b62664cd
Update to version v0.30.0
...
https://github.com/matrix-org/matrix-appservice-irc/releases/tag/0.30.0
2021-08-23 10:29:05 +02:00
sakkiii
48548eb561
Postgres Minor Updates
2021-08-22 18:45:25 +05:30
Alexandar Mechev
b13cf1871f
add code for LinkedIn Bridge
2021-08-21 17:32:45 +02:00
Slavi Pantaleev
24793adb2f
Merge pull request #1241 from sakkiii/patch-3
...
Certbot update v1.18.0
2021-08-20 22:05:29 +03:00
Slavi Pantaleev
9860fb4675
Upgrade Sygnal (v0.9.0 -> v0.10.1)
2021-08-20 17:48:24 +03:00
sakkiii
f5a7e6d78b
Certbot update v1.18.0
2021-08-20 19:47:11 +05:30
Michael Collins
3125ee56e2
add abort_deletion.yml task list
2021-08-20 13:27:10 +08:00
Michael Collins
e75ecd858d
launch cleanup job after deleting subscription
2021-08-20 11:14:15 +08:00
Michael Collins
a37e5b6d60
job templates cant delete themselves
2021-08-20 09:58:55 +08:00
Michael Collins
14effd5e2b
delegate delete tasks locally
2021-08-20 09:35:12 +08:00
Michael Collins
312bcc444b
no log
2021-08-20 09:28:54 +08:00
nono
d9d9554a74
Update the docker image version for mautrix-telegram
2021-08-19 14:08:53 +02:00
Michael Collins
92b26ec846
check if matrix_vars.yml file exists
2021-08-19 18:05:47 +08:00
Michael Collins
7203d4ec21
replace module only if file exists
2021-08-19 18:01:26 +08:00
Michael Collins
9ac5ad148a
merge upstream
2021-08-19 17:38:38 +08:00
Michael Collins
b2f96df1a9
end play after deleting subscription in AWX
2021-08-19 17:13:34 +08:00
Michael Collins
fa43d04ad7
syntax error
2021-08-19 17:02:28 +08:00
Michael Collins
7b9929e17b
add << SUBSCRIPTION DELETION IN PROGRESS >> job template
2021-08-19 16:55:58 +08:00
AtomHare
4240df6401
update link
2021-08-18 17:25:45 +02:00
AtomHare
7d0ce01792
update links
2021-08-18 17:24:54 +02:00
AtomHare
7eec01e359
update mautrix new repo name
2021-08-18 17:21:20 +02:00
AtomHare
43c9eab6b9
update mautrix new repo name
2021-08-18 17:20:18 +02:00
AtomHare
1ae4032cb7
update new repo name mautrix
2021-08-18 17:17:44 +02:00
AtomHare
b9124c0080
update new repo name mautrix-hangouts
2021-08-18 17:16:58 +02:00
AtomHare
69f333ea25
Update main.yml
2021-08-18 17:14:18 +02:00
Michael Collins
517ecbf0d1
move delete-subscription to deploy
2021-08-18 21:07:44 +08:00
Slavi Pantaleev
dc8000760b
Bump Coturn version tag (4.5.2-r2 -> 4.5.2-r3)
...
Fixes https://github.com/spantaleev/matrix-docker-ansible-deploy/issues/1236
2021-08-18 09:50:10 +03:00
Slavi Pantaleev
511a267b00
Merge pull request #1229 from wol-win/feature/signal_config
...
Feature/signal config
2021-08-18 09:42:46 +03:00
Slavi Pantaleev
2c80e0bc89
Merge pull request #1235 from wol-win/element_web
...
Upgrade Element (1.8.0 -> 1.8.1)
2021-08-17 20:21:44 +03:00
WobbelTheBear
12dbb29675
Upgrade Element (1.8.0 -> 1.8.1)
...
Element web/desktop has just been updated to fix some regressions in regard to VoIP.
2021-08-17 12:47:52 +02:00
pushytoxin
854ea91195
Mautrix-Facebook repo location update, pin v0.3.1
...
The Github link is just a redirect to Tulir's own GitLab, so I replaced the self-build link
The docker container repository was rearranged hierarchically (dock.mau.dev/tulir/mautrix-facebook -> dock.mau.dev/mautrix/facebook)
Tagged versions have been made available, thus :latest -> :v0.3.1
2021-08-17 10:35:49 +02:00
Michael Collins
bdf10462d2
Merge remote-tracking branch 'upstream/master'
2021-08-17 16:24:34 +08:00
Slavi Pantaleev
62bba12551
Merge pull request #1233 from hifi/feature/heisenbridge-1.0.0
...
Pin Heisenbridge to 1.0.0
2021-08-17 09:12:45 +03:00
Slavi Pantaleev
71c7d0ba7f
Merge pull request #1232 from thedanbob/debian-bullseye
...
docker-ce is now available for Debian Bullseye
2021-08-17 09:12:17 +03:00
Michael Collins
41c335b967
merge upstream
2021-08-17 13:20:39 +08:00
Toni Spets
4fe27a7645
Pin Heisenbridge to 1.0.0
2021-08-17 07:50:53 +03:00
Wolfgang Winter
4b7506ca1a
Preset the permissions inline with other bridges
2021-08-16 18:24:12 +02:00
Wolfgang Winter
b1c94efcd8
Make template generic for the pemission settings
2021-08-16 18:23:40 +02:00
Slavi Pantaleev
70d412e523
Upgrade Element (1.7.34 -> 1.8.0)
2021-08-16 18:10:22 +03:00
Dan Arnfield
df82ec13b2
docker-ce is now available for Debian Bullseye
2021-08-16 08:44:02 -05:00
Wolfgang Winter
d0b557eb6f
Replace tabs to spaces to prevent problems in YAML
2021-08-15 08:42:21 +02:00
Slavi Pantaleev
f5a2d732ea
Merge pull request #1224 from GoMatrixHosting/master
...
GoMatrixHosting v0.5.7
2021-08-15 08:45:56 +03:00
Wolfgang Winter
7486db0d1a
Missing ticks
2021-08-14 17:58:08 +02:00
WobbelTheBear
f988fd3339
Change sequence of permissions
...
As per earlier comment (see from tulir) the sequence has been changed.
2021-08-14 17:47:31 +02:00
WobbelTheBear
d249fe874e
Update roles/matrix-bridge-mautrix-signal/templates/config.yaml.j2
...
Updated settings in template file:
* relay for any user
* user permissions only for HS domain users
Co-authored-by: Jan <31133207+Jaffex@users.noreply.github.com>
2021-08-14 17:36:43 +02:00
WobbelTheBear
ae9639585c
Update roles/matrix-bridge-mautrix-signal/defaults/main.yml
...
Improved setup through template file
Co-authored-by: Jan <31133207+Jaffex@users.noreply.github.com>
2021-08-14 17:35:49 +02:00
Wolfgang Winter
a34241e4cc
Remove intial permissions seting
...
Permissions, when set in the template, will be augmented rahter than replaced when using matrix_mautrix_signal_configuration_extension_yaml. Therefore, permissions shall only be set in the defaults/vars.yml or in the HS specific vars.yml file
2021-08-13 21:11:41 +02:00
Wolfgang Winter
5ca28ba872
Default relay bot functionality setting
...
Per default relay bot functionality is disabled; the bridge user permissions depends on the relay bot, if enabled the base domain users are on level relay, else remain on user;
2021-08-13 17:48:05 +02:00
Wolfgang Winter
e6b77284f2
Relay bot configurable + permissions
...
Enable / disable relay bot functionality as configuratoin paramter; set bridge permissions for base domain users to user level
2021-08-13 17:46:37 +02:00
Michael Collins
98e6cd685d
sync with previous repo
2021-08-13 16:05:57 +08:00
Jaffex
e90b33c4e3
Update matrix-mautrix-signal config to 0.2.0 to enable relay mode
2021-08-12 12:52:55 +02:00
Michael Collins
4c12c1892c
use saner folder permissions
2021-08-11 17:32:38 +08:00
Michael Collins
4d57a41b3f
remove matrix_awx_enabled from these
2021-08-11 17:18:57 +08:00
Michael Collins
2e30802b87
use group variables instead
2021-08-11 15:21:09 +08:00
Michael Collins
8238d65e5f
simplify template conditional
2021-08-11 14:19:19 +08:00
Toni Spets
bce94c5860
Allow configuring synapse database transaction limit
2021-08-10 21:09:28 +03:00
Slavi Pantaleev
05ad620386
Update homeserver.yaml to keep up with Synapse v1.40.0
...
Related to https://github.com/spantaleev/matrix-docker-ansible-deploy/pull/1225
2021-08-10 17:36:44 +03:00
WobbelTheBear
2469ada520
Update Synapse (1.39.0 -> 1.40.0)
2021-08-10 15:32:07 +02:00
Michael Collins
bfb61e776e
GMH v0.5.7... maybe!
2021-08-10 12:58:10 +08:00
Sebastian Gumprich
24589b91f4
irc appservice image tag has a 'v' now
2021-08-09 19:01:51 +02:00
Slavi Pantaleev
6de8b5925a
Merge pull request #1222 from wol-win/feature/signal
...
New version of Mautrix Signal bridge (version 0.2.0)
2021-08-09 13:59:17 +03:00
Wolfgang Winter
6ecfbe98b1
New version of Mautrix Signal bridge version 0.2.0 provided through new GitLab repository location
2021-08-09 11:19:12 +02:00
Thom Wiggers
d11d6f52ae
Update IRC appservice
...
https://github.com/matrix-org/matrix-appservice-irc/releases/tag/0.29.0
2021-08-09 10:57:45 +02:00
Sebastian Gumprich
d2a1b8b134
whatsapp bridge has new docker image location
...
See https://github.com/mautrix/whatsapp/releases/tag/v0.1.8
2021-08-07 15:47:24 +02:00
Slavi Pantaleev
2e23166ed3
Merge pull request #1216 from aaronraimist/hydrogen
...
Upgrade Hydrogen (0.2.3 -> 0.2.5)
2021-08-07 11:34:04 +03:00
Aaron Raimist
f3aae70f70
Upgrade Hydrogen (0.2.3 -> 0.2.5)
2021-08-07 02:47:51 -05:00
Slavi Pantaleev
23006fd64e
Fix email2matrix path initialization
...
Regression since 421f85defa
2021-08-04 17:59:49 +03:00
Slavi Pantaleev
421f85defa
Add self-building support to matrix-email2matrix
2021-08-04 15:03:45 +03:00
Slavi Pantaleev
2697590d28
Remove some useless if conditions
2021-08-04 14:51:15 +03:00
Slavi Pantaleev
a68ac9cb4f
Split install/uninstall tasks in matrix-email2matrix
2021-08-04 14:45:07 +03:00
Slavi Pantaleev
5fc61ed964
Upgrade Element (1.7.33 -> 1.7.34)
2021-08-04 09:09:35 +03:00
Slavi Pantaleev
179775b92d
Upgrade Synapse (1.38.1 -> 1.39.0)
2021-07-29 18:51:22 +03:00
Slavi Pantaleev
dfa7b6e4fd
Merge pull request #1171 from BackInBash/patch-1
...
Updating to ma1sd v2.5.0
2021-07-28 11:09:39 +03:00
Slavi Pantaleev
676101e999
Minor fixups for ma1sd 2.5.0
...
Related to https://github.com/spantaleev/matrix-docker-ansible-deploy/pull/1171
2021-07-28 11:08:50 +03:00
Michael Collins
67db5a0024
GoMatrixHosting v0.5.5
2021-07-27 15:12:03 +08:00
Slavi Pantaleev
49abe66f1d
Remove unnecessary if condition
...
All of `setup_install.yml` only runs if `matrix_bot_matrix_reminder_bot_enabled`,
so it's not necessary to add that condition once again.
2021-07-26 08:54:35 +03:00
Nate
012440c309
Allow for self-building of reminder-bot
2021-07-25 14:16:37 -07:00
Hardy Erlinger
03e8c75a30
Restore authentication for Jitsi Meet.
2021-07-25 16:23:51 +02:00
sakkiii
4a2b169fc9
systemd-timesyncd for ubuntu
2021-07-22 23:42:53 +05:30
sakkiii
f4a9c4dff2
Update prometheus node exporter (1.1.2 -> 1.2.0)
2021-07-22 23:29:43 +05:30
Slavi Pantaleev
112d8d8243
Upgrade Synapse (1.38.0 -> 1.38.1)
2021-07-22 19:48:29 +03:00
sakkiii
7f0b8fef0a
Merge branch 'spantaleev:master' into patch-1
2021-07-21 23:50:19 +05:30
Slavi Pantaleev
31244e7fcc
Merge pull request #1180 from Toorero/master
...
Fixed self-build functionality for mautrix-signal
2021-07-21 15:17:57 +03:00
Slavi Pantaleev
7d9ee3e2fb
Remove unnecessary if-condition
2021-07-21 15:17:17 +03:00
Slavi Pantaleev
a21696f687
Fix some if-checks
...
We'd rather not suppress pull errors or run self-build tasks if pulling fails.
2021-07-21 15:16:14 +03:00
Toorero
ead4b00c09
Reverted back to manual self-build detection
2021-07-21 14:05:21 +02:00
Slavi Pantaleev
30339cd313
Merge pull request #1139 from sakkiii/jitsi-fix
...
Jitsi Update -> stable-5963
2021-07-20 09:57:11 +03:00
sakkiii
d08a78ff1f
remove prosody JICOFO_COMPONENT_SECRET
2021-07-20 12:09:11 +05:30
Slavi Pantaleev
4105ba854b
Merge pull request #1147 from datenkollektiv-net/allow-custom-federation-fqn
...
Make federation domain customizable
2021-07-20 09:12:16 +03:00
Slavi Pantaleev
25e6eb27ab
Merge pull request #1183 from Toorero/mautrix-telegram-selfbuild-fix
...
Fixed mautrix-telegram selfbuild not working on non amd64 platforms
2021-07-20 09:06:04 +03:00
Slavi Pantaleev
fb221c8179
Do not needlessly ignore errors
2021-07-20 09:05:13 +03:00
Slavi Pantaleev
51b94d9987
Merge pull request #1194 from meyerrj/master
...
Update main.yml for matrix-reminder-bot
2021-07-20 08:57:59 +03:00
Slavi Pantaleev
931b16fa66
Merge pull request #1193 from sakkiii/patch-2
...
Upgrade hydrogen (v0.2.0 -> v0.2.3)
2021-07-20 08:57:23 +03:00
JokerGermany
9345d840be
root path for the base domain is wrong ( #1189 )
...
* root path for the base domain
* Fix path when running in a container
Co-authored-by: Slavi Pantaleev <slavi@devture.com>
2021-07-20 08:48:11 +03:00
Richard Meyer
a8373d6bd4
Update main.yml
...
Fixes an issue related to https://github.com/anoadragon453/matrix-reminder-bot/issues/86
2021-07-19 19:02:29 -05:00
sakkiii
8b304445e5
Upgrade hydrogen (v0.2.0 -> v0.2.3)
2021-07-19 23:31:39 +05:30
sakkiii
5209a17da1
migrate from ntp to chrony
2021-07-19 23:11:30 +05:30
Slavi Pantaleev
70cb27138c
Upgrade Element (1.7.32 -> 1.7.33)
2021-07-19 18:57:19 +03:00
Toorero
b3793f3595
Masked TARGETARCH via docker.build.arg directive
2021-07-17 14:40:21 +02:00
Toorero
3a28100131
Renamed matrix_lottieconverter to matrix_telegram_lottieconverter
2021-07-17 14:05:13 +02:00
Toorero
7f15787d54
Fixed mautrix-telegram selfbuild not working on non amd64 platforms
2021-07-16 18:58:55 +02:00
Toorero
f933ba14ae
Fixed self-build functionality for mautrix-signal and added self-build functionality for signald
2021-07-16 13:27:36 +02:00
sakkiii
e90979e91f
Upgrade grafana (8.0.5 -> 8.0.6)
2021-07-15 23:10:45 +05:30
Slavi Pantaleev
a435c64c13
Merge pull request #1176 from GoMatrixHosting/master
...
GoMatrixHosting v0.5.4
2021-07-15 09:28:59 +03:00
Michael-GMH
86e4649578
GoMatrixHosting v0.5.5
2021-07-15 12:47:00 +08:00
Michael-GMH
03006eb5ab
GoMatrixHosting v0.5.5
2021-07-15 12:46:38 +08:00
Michael-GMH
245986c793
Merge remote-tracking branch 'upstream/master'
2021-07-15 12:44:54 +08:00
Toorero
f732a75ca5
Added selfbuild functionality to mautrix-signal bridge
2021-07-14 03:11:13 +02:00
Janar Juusu
c198320f65
feat: update synapse to 1.38.0
2021-07-13 20:56:47 +03:00
Slavi Pantaleev
2e0eddde9d
Upgrade matrix-corporal (2.1.0 -> 2.1.1)
2021-07-10 19:40:53 +03:00
Markus
83b9908c9d
Update to ma1sd v2.5.0
2021-07-10 14:09:08 +02:00
sakkiii
cd54147144
Upgrade grafana (8.0.3 -> 8.0.5)
2021-07-09 17:55:15 +05:30
sakkiii
7a51268dfc
Upgrade certbot & nginx
...
Upgrade certbot (v1.16.0 -> v1.17.0) nginx (1.21.0 -> 1.21.1)
2021-07-09 17:51:27 +05:30
Slavi Pantaleev
3fa895fe96
Upgrade Element (1.7.31 -> 1.7.32)
2021-07-09 11:26:13 +03:00
Michael-GMH
f6e0cbe5f3
did i even update this
2021-07-08 09:46:29 +08:00
sakkiii
49455a9ce0
prometheus version 2.28.0 -> 2.28.1
2021-07-07 21:53:05 +05:30
Michael-GMH
1c938c72fd
GoMatrixHosting 0.5.2
2021-07-06 14:51:36 +08:00
Slavi Pantaleev
b4d7ab0b53
Merge pull request #1153 from Cadair/worker_prom
...
Add worker metrics to prometheus exporter
2021-07-05 10:30:02 +03:00
Slavi Pantaleev
b6d71b9da1
Fix self-building for Coturn
...
Fixes https://github.com/spantaleev/matrix-docker-ansible-deploy/issues/1158
2021-07-03 10:06:09 +03:00
Neutron
1ad9bba88f
Skip importing validate_config task when Synapse is disabled
2021-07-02 20:58:57 +03:00
Stuart Mumford
2aa457efcc
Use a prom variable and not a synapse role variable
2021-07-02 15:41:36 +00:00
Michael-GMH
7acaef89df
GoMatrixHosting v0.5.1
2021-07-02 14:11:09 +08:00
Slavi Pantaleev
ccde2362fc
Merge branch 'master' into mjolnir-0.1.18
2021-07-02 08:52:58 +03:00
Slavi Pantaleev
55452c3068
Update Mjolnir (v0.1.17 -> v0.1.18)
2021-07-02 08:28:44 +03:00
Aaron Raimist
fc16fbda5b
Remove a bunch of redundant Ansible <2.8 self building checks
2021-07-02 00:14:37 -05:00
Aaron Raimist
19ed8d1d17
Upgrade mjolnir (0.1.17 -> 0.1.18) and implement self building
2021-07-02 00:10:59 -05:00
sak
7b2211da8e
remove jibri
2021-07-01 15:37:20 +05:30
Slavi Pantaleev
6294e58304
Fix Content-Security-Policy for Element
...
Fixes https://github.com/spantaleev/matrix-docker-ansible-deploy/issues/1154
According to
https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Content-Security-Policy ,
having both a header and the `<meta>`-tag provided by Element itself is
not a problem. The 2 CSP policies get combined.
2021-07-01 12:41:05 +03:00
Stuart Mumford
09ee5ce52e
we index from 0 apparently
2021-06-30 21:32:19 +00:00
Stuart Mumford
3d063f6ace
make them show as jobs in grafana
2021-06-30 21:30:18 +00:00
oxmie
5df4d68829
Make federation domain customizable
2021-06-30 23:02:27 +02:00
Stuart Mumford
7b52e6ad5e
Add worker metrics to prometheus exporter
2021-06-30 20:52:49 +00:00
Davy Landman
c9d73c6606
Updating to latest synapse release (performance regression)
...
https://github.com/matrix-org/synapse/releases/tag/v1.37.1
2021-06-30 16:15:00 +02:00
sakkiii
d338090f00
postgres minor updates
2021-06-30 10:00:52 +05:30
Slavi Pantaleev
3da4b684a5
Upgrade Synapse (1.36.0 -> 1.37.0)
2021-06-29 13:55:09 +03:00
Thom Wiggers
eb5619fd4b
Update IRC bridge
2021-06-29 12:45:21 +02:00
Michael Sasser
7578a355c4
heisenbridge fix service name
2021-06-29 12:15:03 +02:00
sakkiii
8a369f61f3
Merge branch 'spantaleev:master' into jitsi-fix
2021-06-26 21:54:42 +05:30
hanthor
ddbb4b2acc
Update main.yml
...
update to v0.2.0
2021-06-24 12:10:45 -04:00
Slavi Pantaleev
2d740dbebd
Mount /data in matrix-redis container
...
Fixes https://github.com/spantaleev/matrix-docker-ansible-deploy/issues/1140
2021-06-24 10:10:52 +03:00
sakkiii
2b881e245b
Update prometheus v2.27.1 -> v2.28.0
2021-06-24 10:07:14 +05:30
sakkiii
0cc17ab2ca
matrix_jitsi_jicofo_component_secret validation
2021-06-23 23:55:55 +05:30
sakkiii
f2f1b20e44
jicofo client proxy connection
2021-06-23 23:17:24 +05:30
sakkiii
b132941e71
Merge branch 'spantaleev:master' into jitsi-fix
2021-06-23 21:31:25 +05:30
Slavi Pantaleev
18533b5000
Merge pull request #1135 from sakkiii/patch-1
...
Coturn update 4.5.2 -> 4.5.2-r2
2021-06-23 11:15:41 +03:00
Slavi Pantaleev
d019e9078a
Remove unused variables from mx-puppet-* bridges
...
Related to https://github.com/spantaleev/matrix-docker-ansible-deploy/pull/1131
2021-06-23 09:56:31 +03:00
sakkiii
6ede9c8cd6
network-alias added to fix domains
2021-06-22 23:59:49 +05:30
sakkiii
d9e943aaaa
minor fix
2021-06-22 23:32:32 +05:30
sakkiii
0c8a3c401f
jibri service
2021-06-22 23:20:09 +05:30
sakkiii
04805f35a7
Coturn update 4.5.2 -> 4.5.2-r2
2021-06-22 22:39:35 +05:30
Slavi Pantaleev
b19fa3acb2
Upgrade Element (1.7.30 -> 1.7.31)
2021-06-22 10:18:58 +03:00
sakkiii
1250208907
whitespaces
2021-06-22 12:24:35 +05:30
sakkiii
c0cd2a3c93
JICOFO_RESERVATION_ENABLED contains whitespaces.
2021-06-22 12:14:14 +05:30
sakkiii
f8be36327c
jibri service
2021-06-22 11:11:01 +05:30
sakkiii
3e011bafd5
jibri env
2021-06-22 00:18:29 +05:30
sakkiii
8af2d818b1
domain_fix
2021-06-21 23:55:26 +05:30
sakkiii
2ca92b76b6
stable-5963
2021-06-21 23:37:08 +05:30
Slavi Pantaleev
5a1dabe14f
Bump exim-relay Docker image tag
...
The new one is based on Alpine 3.14, instead of Alpine 3.13.
2021-06-21 15:32:34 +03:00
Slavi Pantaleev
282844209a
Merge pull request #1105 from blaztinn/centos-stream-8
...
Add support for CentOS (Stream) 8
2021-06-21 15:32:11 +03:00
Marcel Ackermann
a790096adf
matrix_mx_puppet_slack_client_id deprecated
2021-06-21 12:13:20 +02:00
Marcel Ackermann
ed078998b5
deprecated
2021-06-21 12:12:07 +02:00
Slavi Pantaleev
efa7486b88
Merge pull request #1127 from sakkiii/patch-3
...
Content-Security-Policy For Element Web
2021-06-20 10:01:43 +03:00
sakkiii
b826171139
Update grafana 8.0.2 -> 8.0.3
2021-06-18 23:32:30 +05:30
sakkiii
0217644b48
Content-Security-Policy For Element Web
...
https://github.com/vector-im/element-web#configuration-best-practices
2021-06-18 23:27:23 +05:30
Slavi Pantaleev
3dd32d2512
Update worker endpoints
...
Should have been part of 9daeb39710
2021-06-15 19:28:21 +03:00
Slavi Pantaleev
9daeb39710
Upgrade Synapse (1.35.1 -> 1.36.0)
2021-06-15 19:25:41 +03:00
Michael-GMH
4fb1134ad1
GoMatrixHosting v0.5.0
2021-06-14 22:36:49 +08:00
Slavi Pantaleev
a7fcb7c04d
Merge pull request #1122 from sakkiii/patch-2
...
update hydrogen v0.1.56 -> v0.1.57
2021-06-14 17:26:30 +03:00
sakkiii
4cd5835e11
update hydrogen v0.1.56 -> v0.1.57
...
https://github.com/vector-im/hydrogen-web/releases/tag/v0.1.57
2021-06-14 19:46:08 +05:30
sakkiii
08d1a5c2e7
Update grafana 8.0.0 -> 8.0.2
2021-06-14 19:41:23 +05:30
Blaž Tomažič
72bc9b5cfc
Add support for CentOS (Stream) 8
2021-06-12 10:49:38 +02:00
Slavi Pantaleev
1cf4d5ea7f
Upgrade Redis (6.0.10 -> 6.2.4)
2021-06-10 12:25:55 +03:00
Slavi Pantaleev
963f38ee7b
Upgrade certbot (v1.14.0 -> v1.16.0)
2021-06-10 12:18:42 +03:00
SkepticalWaves
2e8a2bdf7d
Add empty default for jitsi-prosody modules
2021-06-08 22:56:09 -04:00
SkepticalWaves
2886dc3939
Add module configuration to jitsi-prosody env file
2021-06-08 22:55:19 -04:00
Slavi Pantaleev
6c9c78ddae
Merge pull request #1112 from sakkiii/patch-2
...
coturn update
2021-06-08 22:46:11 +03:00
sakkiii
be1d1d0b7c
matrix_grafana_content_security_policy_customized default false
2021-06-09 00:52:52 +05:30
sakkiii
2d9ba82337
Update element 7.5.7 -> 8.0.0
2021-06-09 00:48:55 +05:30
sakkiii
1cc1202df2
update coturn
2021-06-08 23:59:31 +05:30
rakshazi
77fd1bff22
Update element 1.7.29 -> 1.7.30
2021-06-08 14:57:49 +00:00
Slavi Pantaleev
fa76c1ee5b
Do not run self-build Ansible version-check, if component not enabled
...
Related to https://github.com/spantaleev/matrix-docker-ansible-deploy/pull/1108
2021-06-08 08:59:02 +03:00
Slavi Pantaleev
bec9eaeb50
Merge pull request #1108 from tommes0815/fix-hydrogen-for-ansible2.7
...
fix error when running with Ansible 2.7 in the hydrogen setup
2021-06-07 22:09:39 +03:00
Thom Wiggers
3c05cc04bc
Update IRC appservice
2021-06-07 10:41:18 +02:00
Thomas Kühne
7f4e71b22a
fix error when running with Ansible 2.7 in the hydrogen setup
...
Without this the hydrogen task would fail for Ansible 2.7 even when hydrogen is not enabled.
2021-06-06 14:37:17 +02:00
Michael-GMH
122a92fa1c
GoMatrixHosting v0.4.9 update
2021-06-04 13:10:45 +08:00
Slavi Pantaleev
b1f1c28ef0
Upgrade Synapse (1.34.0 -> 1.35.0)
2021-06-01 19:14:59 +03:00
Michael-GMH
ad7bbd6442
merge upstream
2021-06-01 16:00:13 +08:00
Michael-GMH
6f40d78353
fix random edits to upstream
2021-05-25 21:25:40 +08:00
Michael-GMH
ea6e344d05
merge upstream
2021-05-25 21:10:34 +08:00
Michael-GMH
85777e8f96
merge with upstream
2021-05-25 21:08:00 +08:00
Slavi Pantaleev
1ed0857019
Fix syntax error
...
Related to https://github.com/spantaleev/matrix-docker-ansible-deploy/pull/1024
2021-05-25 11:45:17 +03:00
sakkiii
4a4a7f136e
changes added to hydrogen client
2021-05-25 11:42:51 +05:30
sakkiii
25e67b51d1
Merge branch 'spantaleev:master' into master
2021-05-25 11:40:56 +05:30
sakkiii
3436f9c10a
rename to matrix_nginx_proxy_hsts_preload_enabled
2021-05-25 00:56:59 +05:30
Slavi Pantaleev
0648b1b618
Upgrade Element (1.7.28 -> 1.7.29)
2021-05-24 20:38:48 +03:00
sakkiii
7cc5328ede
Comments & Ref
2021-05-24 17:20:54 +05:30
sakkiii
df2d91970d
matrix_nginx_proxy_xss_protection
2021-05-24 17:02:47 +05:30
Slavi Pantaleev
d4c7a90b5c
Merge pull request #1076 from Eagle-251/Jitsi-Prosody-OwnNginxCompatibility
...
Allow Jitsi XMPP websocket support for users using own webserver.
2021-05-24 11:07:05 +03:00
ewang
409cd2b9a3
Source port binding from group vars in line other components
2021-05-23 14:06:18 +02:00
Eagle-251
ef6a7e051c
Fix missing port binding.
2021-05-22 15:55:50 +02:00
ewang
1bb6ed97ae
Make port bindings default for those disabling nginx proxy
...
I changed the conditional statement in prosody systemd template to bind the localhost port by default if people have set ```matrix_nginx_proxy_enabled == false ```.
Hopefully that should make it the default behaviour now.
2021-05-22 15:53:42 +02:00
Aaron Raimist
3c0452ff5a
Remove unnecessary bind for config.json, use proper nginx.conf
2021-05-21 17:22:40 -05:00
ewang
4a772e50f4
Allow Jitsi XMPP webscoket support for users using own webserver.
...
Added:
- Conditional localhost Port bindings for Jitsi Prosody systemd template
- Added variable to main.yml to allow overriding from vars.yml
2021-05-21 15:26:06 +02:00
Slavi Pantaleev
6f80292745
Add OCSP stapling support and other SSL optimizations to Hydrogen vhost
...
Related to https://github.com/spantaleev/matrix-docker-ansible-deploy/pull/1061
and https://github.com/spantaleev/matrix-docker-ansible-deploy/pull/1057
2021-05-21 13:40:37 +03:00
Slavi Pantaleev
d0de21ab34
Delete Hydrogen nginx configuration file when disabled
2021-05-21 12:58:32 +03:00
Aaron Raimist
ac4ede20af
Add docs
2021-05-21 04:43:04 -05:00
Aaron Raimist
1633f61018
Only install config.json when self building
2021-05-21 04:23:06 -05:00
Aaron Raimist
04548f8df2
Merge branch 'master' into hydrogen
2021-05-21 04:09:18 -05:00
Aaron Raimist
9437f78c9e
Build using custom config.json, add CSP, update to 0.1.53
2021-05-21 03:45:21 -05:00
Slavi Pantaleev
47b4608b96
Fail in a friendlier way when trying to self-build on Ansible <= 2.8
...
Fixes https://github.com/spantaleev/matrix-docker-ansible-deploy/issues/1070
Related discussion here: 1ab507349c (commitcomment-51108407)
2021-05-21 11:15:05 +03:00
Slavi Pantaleev
1ab507349c
Fix self-building for various components on Ansible < 2.8
...
Fixes https://github.com/spantaleev/matrix-docker-ansible-deploy/issues/1070
2021-05-20 08:43:20 +03:00
Slavi Pantaleev
66615c43a3
Merge pull request #1065 from sakkiii/patch-1
...
Update grafana (7.5.6->7.5.7)
2021-05-19 22:07:59 +03:00
Tobias K
3dcbed6353
roles/matrix-grafana: Set root_url in granafa.ini
2021-05-19 19:52:58 +02:00
sakkiii
8529ca4c17
Update grafana (7.5.6->7.5.7)
2021-05-19 22:30:03 +05:30
Slavi Pantaleev
073d920a62
Merge pull request #1061 from sakkiii/ssl_enhancement
...
Optimize SSL session
2021-05-19 17:14:52 +03:00
Toni Spets
544915ff76
Add Heisenbridge
2021-05-19 10:42:21 +03:00
Slavi Pantaleev
21eb39f986
Mention matrix_common_after_systemd_service_start_wait_for_timeout_seconds in failure message
...
Related to https://github.com/spantaleev/matrix-docker-ansible-deploy/issues/1062
2021-05-19 08:46:13 +03:00
Slavi Pantaleev
ee46fabdca
Make waiting time for --tags=start configurable
...
Fixes https://github.com/spantaleev/matrix-docker-ansible-deploy/issues/1062
2021-05-19 08:39:55 +03:00
sakkiii
e9b878b9e9
Optimize SSL session
2021-05-18 19:39:43 +05:30
Slavi Pantaleev
e6afa05f7b
Enable OCSP stapling for the federation port
...
Related to https://github.com/spantaleev/matrix-docker-ansible-deploy/pull/1057
Not sure if this is beneficial though.
2021-05-18 08:15:42 +03:00
Slavi Pantaleev
57a6a98a50
Fix incorrect SSL certificate path
...
Related to https://github.com/spantaleev/matrix-docker-ansible-deploy/pull/1057
2021-05-18 07:58:47 +03:00
Slavi Pantaleev
b9c4e8ce16
Merge pull request #1057 from sakkiii/ssl_staple
...
Enable OCSP Stapling
2021-05-18 07:50:35 +03:00
sakkiii
d31b55b2a7
SSL-enabled block only
2021-05-18 03:24:06 +05:30
rakshazi
400371f6dd
Updated Element version (1.7.27 -> 1.7.28)
2021-05-17 13:15:12 +00:00
Slavi Pantaleev
d156c8caa2
Upgrade Synapse (1.33.2 -> 1.34.0)
2021-05-17 14:58:07 +03:00
Slavi Pantaleev
e4dd933cf0
Make missing /_synapse/admin correctly return 404 responses
...
Fixes https://github.com/spantaleev/matrix-docker-ansible-deploy/issues/1058
We may try to capture such calls and return a friendlier response (HTML
or JSON) saying "The Synapse Admin API is not enabled", but that may not
be desirable.
For now, we stick to what "upstream" recommends: "simply
don't proxy these APIs", which should lead to the same kind of 404 that
we have now.
See here: 6660912226/docs/reverse_proxy.md (synapse-administration-endpoints)
2021-05-17 11:45:35 +03:00
sakkiii
2c3da6599b
Added warning
2021-05-15 16:07:52 +05:30
sakkiii
0dd4459799
matrix_nginx_proxy_ocsp_stapling_enabled variable added
2021-05-15 16:01:49 +05:30
sakkiii
c05021640d
Enable OCSP Stapling
2021-05-15 15:57:05 +05:30
Aaron Raimist
ca361af616
Add Hydrogen
2021-05-15 04:23:36 -05:00
sakkiii
b191e461a5
Merge branch 'spantaleev:master' into master
2021-05-15 12:20:02 +05:30
sakkiii
4bd7d8b5e4
Update grafana (7.5.5->7.5.6)
2021-05-14 18:59:21 +05:30
sakkiii
d5cd3d443d
Update prometheus (2.26.0->2.27.0)
2021-05-14 18:56:33 +05:30
sakkiii
322b750aad
Merge branch 'spantaleev:master' into master
2021-05-14 18:54:47 +05:30
Slavi Pantaleev
f481b1a84b
Upgrade matrix-mailer (4.94.2-r0 -> 4.94.2-r0-1)
...
Related to https://github.com/devture/exim-relay/pull/9
2021-05-12 18:09:08 +03:00
Slavi Pantaleev
8e6f1876f5
Switch to :latest version of synapse-admin
...
Related to https://github.com/Awesome-Technologies/synapse-admin/issues/132
We should switch back when >0.8.0 gets released.
2021-05-11 19:25:12 +03:00
sakkiii
8fc55b30c5
Upgrade Synapse (1.33.1 -> 1.33.2)
...
This release fixes a denial of service attack (CVE-2021-29471) against Synapse's push rules implementation. Server admins are encouraged to upgrade.
Ref: https://github.com/matrix-org/synapse/releases/tag/v1.33.2
2021-05-11 19:06:30 +05:30
Slavi Pantaleev
2d4b039c55
Merge pull request #1046 from GoMatrixHosting/master
...
GoMatrixHosting v0.4.6
2021-05-11 09:07:48 +03:00
Michael-GMH
2b4bada72a
fix conditional
2021-05-11 14:05:45 +08:00
Michael-GMH
0adcef65e6
fix conditional
2021-05-11 13:58:42 +08:00
Michael-GMH
f70102e40c
no dashes in usernames
2021-05-11 13:55:13 +08:00
Slavi Pantaleev
f4657b2cdb
Upgrade Element (1.7.26 -> 1.7.27)
2021-05-11 08:22:43 +03:00
Michael-GMH
4e6f6e179b
GMH 0.4.6 update
2021-05-10 18:50:10 +08:00
sakkiii
29cf6a0087
Merge branch 'spantaleev:master' into master
2021-05-10 15:10:18 +05:30
Slavi Pantaleev
3dcc006932
Fix self-building for Coturn
...
689dcea773
wasn't enough. The `upstream/..` tags are
just upstream sources, without the alpine-based Dockerfile.
We need to use the `docker/..` tags for that (or `master`)
Fixes https://github.com/spantaleev/matrix-docker-ansible-deploy/issues/1032
Fixes https://github.com/spantaleev/matrix-docker-ansible-deploy/issues/1023
Related to https://github.com/spantaleev/matrix-docker-ansible-deploy/pull/1009
2021-05-10 11:35:53 +03:00
Slavi Pantaleev
33f0074862
Upgrade matrix-mailer (4.94-r0 -> 4.94.2-r0)
...
Related to https://github.com/devture/exim-relay/issues/6
2021-05-10 11:23:44 +03:00
Slavi Pantaleev
c19508087a
Merge pull request #1036 from sakkiii/grafana-csp
...
Grafana csp template backward compatible with older browsers
2021-05-10 10:09:13 +03:00
Slavi Pantaleev
a198b87455
Upgrade synapse-admin (0.7.2 -> 0.8.0)
...
Related to https://github.com/Awesome-Technologies/synapse-admin/issues/132
2021-05-10 10:06:12 +03:00
Slavi Pantaleev
867ebb52ab
Merge pull request #1037 from pushytoxin/jitsi-5765-1
...
Update Jitsi (5142 -> 5765-1)
2021-05-08 12:35:29 +03:00
sakkiii
bb0810302d
Merge branch 'spantaleev:master' into master
2021-05-07 23:03:55 +05:30
Slavi Pantaleev
61220ea487
Upgrade Synapse (1.33.0 -> 1.33.1)
2021-05-06 20:47:09 +03:00
sakkiii
9174448e5e
get rid of this {% else %}
2021-05-06 12:46:17 +05:30
sakkiii
0d5fe2d9f7
Update roles/matrix-grafana/templates/grafana.ini.j2
...
Co-authored-by: Aaron Raimist <aaron@raim.ist>
2021-05-06 12:38:40 +05:30
Béla Becker
b10655ebb1
Jitsi XMPP Websocket support
...
Jitsi-meet enabled websockets by default, claiming better reliability.
Matrix-nginx-proxy configuration has been set up according to the
Prosody documentation: https://prosody.im/doc/websocket
2021-05-05 19:10:58 +02:00
Béla Becker
116bcaa13b
Update jitsi to stable-5765-1
...
Changelog:
https://github.com/jitsi/docker-jitsi-meet/blob/stable-5765-1/CHANGELOG.md
2021-05-05 19:10:58 +02:00
sakkiii
37de7fc96a
Updated Reference
2021-05-05 22:25:38 +05:30
sakkiii
303de935d5
grafana CSP backward compatible with older browsers
2021-05-05 22:12:56 +05:30
Slavi Pantaleev
d4d1e2e922
Upgrade Synapse (1.32.2 -> 1.33.0)
2021-05-05 19:18:53 +03:00
Slavi Pantaleev
b09a805939
Merge pull request #1031 from thedanbob/nginx-1.20.0
...
Update nginx (1.19.10 -> 1.20.0)
2021-05-04 10:41:02 +03:00
Slavi Pantaleev
6fdc71c40b
Merge pull request #1030 from thedanbob/grafana-7.5.5
...
Update grafana (7.5.4 -> 7.5.5)
2021-05-04 10:40:21 +03:00
Dan Arnfield
cfaa3e598a
Update nginx (1.19.10 -> 1.20.0)
2021-05-03 16:00:11 -05:00
Dan Arnfield
bec5933db4
Update grafana (7.5.4 -> 7.5.5)
2021-05-03 15:57:06 -05:00
Michael-GMH
067b61e779
GoMatrixHosting v0.4.5 update
2021-04-29 08:06:45 +08:00
Slavi Pantaleev
2409c33ea2
Upgrade Element (1.7.25 -> 1.7.26)
2021-04-27 17:21:31 +03:00
benkuly
49cb2635a2
updated matrix-sms-bridge
2021-04-27 14:39:58 +02:00
Michael-GMH
a14bf6c2ed
GoMatrixHosting v0.4.4 update
2021-04-26 20:00:32 +08:00
Slavi Pantaleev
689dcea773
Fix self-building for Coturn
...
Fixes https://github.com/spantaleev/matrix-docker-ansible-deploy/issues/1023
Related to https://github.com/spantaleev/matrix-docker-ansible-deploy/pull/1009
2021-04-24 20:31:25 +03:00
sakkiii
40fe6bd5c1
variable matrix_nginx_proxy_hsts_preload_enable added
2021-04-24 20:04:20 +05:30
Slavi Pantaleev
389dc26615
Fix Synapse generic worker balancing
...
Potentially fixes https://github.com/spantaleev/matrix-docker-ansible-deploy/issues/1022
2021-04-24 11:52:45 +03:00
sakkiii
5b4fdf9b87
Merge branch 'master' of https://github.com/sakkiii/matrix-docker-ansible-deploy
2021-04-24 12:15:34 +05:30
sakkiii
0ccf0fbf1c
HSTS preload + X-XSS enables
...
**HSTS Preloading:**
In its strongest and recommended form, the [HSTS policy](https://www.chromium.org/hsts ) includes all subdomains, and indicates a willingness to be “preloaded” into browsers:
`Strict-Transport-Security: max-age=31536000; includeSubDomains; preload`
**X-Xss-Protection:**
`1; mode=block` which tells the browser to block the response if it detects an attack rather than sanitising the script.
2021-04-24 12:12:34 +05:30
sakkiii
3564635f0f
Merge branch 'master' into master
2021-04-24 11:46:52 +05:30
sakkiii
29bba5161b
Element More security headers
...
More Production ready nginx headers for Matrix client element.
2021-04-24 11:10:40 +05:30
Slavi Pantaleev
f6b371164c
Remove useless variable
2021-04-23 07:07:18 +03:00
Slavi Pantaleev
62c0587b6a
Use Alpine-based Coturn
2021-04-22 15:05:37 +03:00
Slavi Pantaleev
72a7cb4145
Merge pull request #1018 from GoMatrixHosting/master
...
GoMatrixHosting v0.4.3
2021-04-22 14:23:30 +03:00
Slavi Pantaleev
e3fa3e12bc
Upgrade Synapse (1.31 -> 1.32.2)
2021-04-22 14:22:07 +03:00
Michael-GMH
50d7209c5b
GMH v04.3
2021-04-22 11:45:59 +08:00
Slavi Pantaleev
378fabf177
Revert "Upgrade Synapse (1.31 -> 1.32.1)"
...
This reverts commit 1fb54a37cb
.
Seems like it's been pulled or something. It used to exist, but not
anymore. Not sure what's going on.
Fixes https://github.com/spantaleev/matrix-docker-ansible-deploy/issues/1017
Related to
https://github.com/spantaleev/matrix-docker-ansible-deploy/issues/1010
2021-04-21 23:36:58 +03:00
Slavi Pantaleev
1fb54a37cb
Upgrade Synapse (1.31 -> 1.32.1)
...
Related to https://github.com/spantaleev/matrix-docker-ansible-deploy/issues/1010
2021-04-21 18:47:15 +03:00
Slavi Pantaleev
d691cc0920
Move variable definition a bit
2021-04-21 13:59:20 +03:00
Slavi Pantaleev
e00ef04b57
Add opt-out-of-FLoC headers by default
2021-04-21 13:58:24 +03:00
Slavi Pantaleev
42783972fd
Merge pull request #1011 from aaronraimist/synapse-admin
...
Upgrade synapse-admin (0.7.0 -> 0.7.2)
2021-04-21 09:24:30 +03:00
Slavi Pantaleev
ca786cc343
Revert "Upgrade Synapse (1.31 -> 1.32)"
...
This reverts commit f825c7c263
.
Related to https://github.com/spantaleev/matrix-docker-ansible-deploy/issues/1010
2021-04-20 23:40:55 +03:00
Aaron Raimist
bb64b80697
Upgrade synapse-admin (0.7.0 -> 0.7.2)
2021-04-20 15:14:08 -05:00
Slavi Pantaleev
f825c7c263
Upgrade Synapse (1.31 -> 1.32)
2021-04-20 17:47:34 +03:00
Slavi Pantaleev
7eda6a3c12
Merge pull request #1009 from thedanbob/coturn-official
...
Switch to official coturn image
2021-04-19 18:41:17 +03:00
Slavi Pantaleev
adcecaffaf
Fix connectivity between prometheus and prometheus-node-exporter
...
Expected to have regressed after https://github.com/spantaleev/matrix-docker-ansible-deploy/pull/1008
This patch comes with its own downsides (as described in the comments
for matrix_prometheus_node_exporter_container_http_host_bind_port),
but at least there's:
- no security issue
- metrics remain readable from matrix-prometheus (even if the network metrics are inaccurate)
A better patch is certainly welcome.
2021-04-19 18:29:03 +03:00
Dan Arnfield
b2ca1f2829
Add capability required by new image
2021-04-19 10:16:26 -05:00
Slavi Pantaleev
398b9f5d66
Merge pull request #1008 from sakkiii/master
...
security** node-exporter data & port publicly exposed
2021-04-19 17:31:00 +03:00
Dan Arnfield
29177d4922
Switch to official coturn docker image
2021-04-19 09:04:08 -05:00
sak
88a30fb5ed
security** node-exporter data & port publicly exposed
2021-04-19 15:35:23 +05:30
sak
0f9a455719
Revert "security** node-exporter data & port publicly exposed"
...
This reverts commit d0cd709c08
.
2021-04-19 15:24:36 +05:30
sak
d0cd709c08
security** node-exporter data & port publicly exposed
2021-04-19 15:15:59 +05:30
Slavi Pantaleev
4a1739f604
Merge pull request #1007 from teutat3s/fix/nginx-dont-send-version
...
Don't expose nginx version with each response
2021-04-18 21:33:11 +03:00
teutat3s
2bf7c26cfa
Don't expose nginx version with each response
2021-04-18 16:24:13 +02:00
Slavi Pantaleev
c565e72f0d
Merge pull request #1003 from sakkiii/patch-2
...
updated matrix_grafana_docker_image to v7.5.4
2021-04-18 09:56:12 +03:00
Slavi Pantaleev
51b46697c5
Merge pull request #1005 from sakkiii/master
...
Improve security for grafana
2021-04-18 09:50:59 +03:00
Dan Arnfield
f04614a993
Fix prometheus network for ansible < 2.8
2021-04-17 20:15:26 -05:00
Slavi Pantaleev
badd81e0ec
Revert "Attempt to fix docker_network result discrepancy between Ansible versions"
...
This reverts commit 68ca81c8c2
.
2021-04-17 19:31:20 +03:00
sakkiii
1958d0792d
Update matrix-client-element.conf.j2
2021-04-17 21:33:07 +05:30
sakkiii
b6d45c5fd8
Merge branch 'master' of https://github.com/sakkiii/matrix-docker-ansible-deploy
2021-04-17 21:03:26 +05:30
sakkiii
05042f5ff1
Improve security grafana
...
- duplicate X-Content-Type-Options
- X-Frame-Options header
- Referrer-Policy [Might consider adding variable]
- Secure flag with cookies
- matrix_grafana_content_security_policy variable for [Content Security Policy](https://grafana.com/docs/grafana/latest/administration/configuration/#content_security_policy )
2021-04-17 21:03:05 +05:30
sakkiii
27377e099d
updated matrix_grafana_docker_image to v7.5.4
...
Latest stable grafana version is [7.5.4 (2021-04-14)](https://github.com/grafana/grafana/releases/tag/v7.5.4 )
2021-04-17 17:31:14 +05:30
Slavi Pantaleev
68ca81c8c2
Attempt to fix docker_network result discrepancy between Ansible versions
...
Supposedly fixes https://github.com/spantaleev/matrix-docker-ansible-deploy/issues/907
2021-04-17 11:42:06 +03:00
Slavi Pantaleev
9c1f41eadf
Merge pull request #1002 from thedanbob/node-exporter-1.1.2
...
Update prometheus node exporter (1.1.0->1.1.2)
2021-04-17 11:15:13 +03:00
Dan Arnfield
8a550ce67c
Update prometheus (2.24.1->2.26.0)
2021-04-16 09:25:45 -05:00
Dan Arnfield
83cc5c9e6a
Update prometheus node exporter (1.1.0 -> 1.1.2)
2021-04-16 09:17:04 -05:00
sakkiii
5dc642ace1
Nginx element web: XSS protection & nosniff header
...
X-XSS-Protection: 1; mode=block; header, for basic XSS protection in legacy browsers.
X-Content-Type-Options: nosniff header, to disable MIME sniffing
2021-04-16 14:45:04 +05:30
Slavi Pantaleev
fcb9e9618a
Make Coturn TLSv1/v1.1 configurable
...
Related to https://github.com/spantaleev/matrix-docker-ansible-deploy/pull/999
2021-04-16 09:29:32 +03:00
sakkiii
540416e32d
Disable support for TLS 1.0 and TLS 1.1
...
These old versions of TLS rely on MD5 and SHA-1, both now broken, and contain other flaws. TLS 1.0 is no longer PCI-DSS compliant and the TLS working group has adopted a document to deprecate TLS 1.0 and TLS 1.1.
2021-04-15 19:25:23 +05:30
Michael-GMH
89cb5a3d7a
GMH v0.4.2 update
2021-04-15 17:07:03 +08:00
Michael
f41bfb69d2
update survey template formatting
2021-04-04 12:01:53 +08:00
Michael
814bdf5a88
update spelling
2021-04-04 11:52:26 +08:00
Michael
fbe22289bd
merge with upstream and testing branch
2021-04-04 11:41:06 +08:00
Slavi Pantaleev
995c483856
Merge pull request #962 from aaronraimist/mjolnir
...
Add mjolnir
2021-04-03 10:45:29 +03:00
Slavi Pantaleev
f183add44d
Merge pull request #977 from aaronraimist/simple-antispam
...
Upgrade synapse-simple-antispam (0.0.1 -> 0.0.3)
2021-04-03 08:45:14 +03:00
Aaron Raimist
81dddd2e25
Upgrade Element (1.7.24 -> 1.7.24.1)
2021-04-02 18:43:30 -05:00
Aaron Raimist
c43bd412dd
Upgrade synapse-simple-antispam (0.0.1 -> 0.0.3)
2021-04-02 18:08:08 -05:00
Aaron Raimist
1ecee625d5
Depend on more services, add a delay
2021-04-02 17:07:24 -05:00
Slavi Pantaleev
a88391edf5
Merge pull request #972 from JohannesKleine/nginx-config
...
matrix-nginx-proxy: add custom nginx options to nginx.conf.j2
2021-03-31 10:30:57 +03:00
teutat3s
0b5e903693
Updates to mautrix-signal config
...
See these last commits:
tulir/mautrix-signal@4fc34330c1
tulir/mautrix-signal@64bc5c36a5
tulir/mautrix-signal@ddda1666d4
2021-03-31 02:51:23 +02:00
Christoph Johannes Kleine
fcd66b2889
rename variables
2021-03-30 16:41:32 +02:00
Christoph Johannes Kleine
8ba1105010
rename variable
2021-03-30 15:59:10 +02:00
Christoph Johannes Kleine
3a772f2f65
matrix-nginx-proxy: add custom nginx options to nginx.conf.j2
2021-03-30 14:11:20 +02:00
Slavi Pantaleev
93960b70be
Do not fail if _matrix-identity
DNS SRV record missing
...
Related to https://github.com/spantaleev/matrix-docker-ansible-deploy/pull/963
This also simplifies Prerequisites, which is great.
It'd be nice if we were doing these checks in some optional manner
and reporting them as helpful messages (using
`matrix_playbook_runtime_results`), but that's more complicated.
I'd rather drop these checks completely.
2021-03-30 11:24:04 +03:00
Slavi Pantaleev
5e1cf7f8b9
Upgrade Element (1.7.23 -> 1.7.24)
2021-03-29 17:58:02 +03:00
Slavi Pantaleev
9409588513
Fix variable name typo (take 2)
...
Related to https://github.com/spantaleev/matrix-docker-ansible-deploy/issues/970
2021-03-29 10:59:57 +03:00
Slavi Pantaleev
179b416ed5
Fix variable name typo
...
Fixes https://github.com/spantaleev/matrix-docker-ansible-deploy/issues/970
2021-03-29 09:24:35 +03:00
Slavi Pantaleev
77d598b315
Fix Go-NEB variable definitions using the wrong type
...
Fixes https://github.com/spantaleev/matrix-docker-ansible-deploy/pull/969
2021-03-28 12:10:22 +03:00
Slavi Pantaleev
49868db3de
Upgrade Synapse for ARM64 (1.30.0 -> 1.30.1)
2021-03-26 16:48:15 +02:00
Slavi Pantaleev
94487dc6a7
Upgrade Synapse for amd64 (1.30.0 -> 1.30.1)
2021-03-26 15:37:11 +02:00
transcaffeine
dbae18fd6a
feat: push ephemeral events to appservices
...
This adds https://github.com/matrix-org/matrix-doc/pull/2409 to the
appservice registrations, enabling synapse to push EDUs to appservices.
2021-03-25 18:49:54 +01:00
Dan Arnfield
97d8527e00
Update nginx (1.19.6 -> 1.19.8)
2021-03-24 09:42:08 -05:00
Slavi Pantaleev
5a4ea5f866
Make AWX enabling/disabling consistent with other playbook roles
...
That is:
- enabled in the role by default
- disabled in the compilation (playbook), if considered an optional
component
2021-03-24 14:02:53 +02:00
Aaron Raimist
bab8b950ca
Add mjolnir
2021-03-23 22:46:08 -05:00
Slavi Pantaleev
06c74728eb
Move matrix_nginx_proxy_proxy_synapse_federation_api_enabled definition to the role
...
This variable was previously undefined in the role and was only getting
defined via `group_vars/matrix_servers`.
We now properly initialize it (and its good default value) in the role
itself.
2021-03-23 10:28:32 +02:00
Slavi Pantaleev
d09609daa8
Fix Jinja2 syntax error
...
Fixes a regression introduced in ffe649a240
2021-03-22 17:13:10 +02:00
Slavi Pantaleev
6a3433fbad
Update Synapse for ARM64 (1.29.0 -> 1.30.0)
...
Related to https://github.com/spantaleev/matrix-docker-ansible-deploy/pull/958
2021-03-22 16:43:23 +02:00
Slavi Pantaleev
ffe649a240
Update homeserver.yaml to keep up with Synapse v1.30.0
...
Related to https://github.com/spantaleev/matrix-docker-ansible-deploy/pull/958
2021-03-22 16:43:10 +02:00
rakshazi
74106f2a80
Updated synapse 1.29.0 -> 1.30.0
2021-03-22 14:03:42 +00:00
Thom Wiggers
54fe59f05c
Update IRC appservice
2021-03-22 12:37:35 +01:00
Slavi Pantaleev
2737ebc290
Complain if people try to use matrix-sygnal on non-amd64
2021-03-20 13:38:27 +02:00
Slavi Pantaleev
b824522b33
Remove unnecessary with_items statement
2021-03-20 13:34:22 +02:00
Slavi Pantaleev
9a0222fa47
Add Sygnal support
...
Fixes https://github.com/spantaleev/matrix-docker-ansible-deploy/issues/683
2021-03-20 13:32:22 +02:00
Michael
af240aef37
remove sections from task list that arent needed
2021-03-20 17:35:30 +08:00
Michael
85127bacba
Merge remote-tracking branch 'upstream/master'
2021-03-20 17:21:27 +08:00
Michael
1e54b1d1a5
merge upstream
2021-03-20 17:21:02 +08:00
Slavi Pantaleev
f99dcd611f
Pass proper UID/GID to Synapse
...
Fixes a regression caused by a5ee39266c
.
If the user id and group id were different than 991:991
(which used to be a hardcoded default for us long ago),
there was a mismatch between what Synapse was trying to use (991:991)
and what it was actually started with (in `--user=..`). It was then
trying to change ownership, which was failing.
This was mostly affecting newer installations which were not using the
991:991 defaults we had long ago (since a1c5a197a9
).
2021-03-19 16:44:10 +02:00
Slavi Pantaleev
a5ee39266c
Go through start.py when launching Synapse
...
This allows us to benefit from helpful things it does for us,
like enabling jemalloc: https://github.com/matrix-org/synapse/pull/8553
We weren't going through `start.py` before, because it was causing some
conflict with our `docker run --user=...` stuff, but it doesn't seem
to be a problem anymore.
Having done this, we won't need to do things like
https://github.com/spantaleev/matrix-docker-ansible-deploy/pull/941
anymore.
2021-03-19 08:16:59 +02:00
Aaron Raimist
32b3650c12
Set X-Forwarded-Proto on federation requests
2021-03-17 18:51:10 -05:00
Béla Becker
2d7e7680e5
matrix.{{ matrix_domain }} -> {{ matrix_server_fqn_matrix }}
2021-03-17 12:36:45 +01:00
Aaron Raimist
466827139a
Also check if matrix_ssl_lets_encrypt_support_email is blank
2021-03-17 00:54:05 -05:00
Slavi Pantaleev
97c0bf1a73
Merge pull request #942 from pushytoxin/etherpad1_8_12
...
Upgrade Etherpad (1.8.7 -> 1.8.12)
2021-03-16 20:07:34 +02:00
Béla Becker
60aa40845f
Upgrade Etherpad (1.8.7 -> 1.8.12)
2021-03-16 18:55:58 +01:00
Yannick Goossens
27416607d9
Another field with 'invalid input syntax for type smallint'
2021-03-16 16:38:59 +01:00
Michael
5a6bdb0c3d
merge upstream
2021-03-16 21:52:26 +08:00
Michael
571b70a1f4
fix for running outside of AWX
2021-03-16 21:37:19 +08:00
Michael
5a1f3b7d67
GMH v0.3.0
2021-03-14 14:35:38 +08:00
Michael
33ec5710d9
0.2.1 revision
2021-02-28 22:21:40 +08:00
Michael
4c882c513b
initial PR
2021-02-20 17:19:17 +08:00
Marcus Proest
2ca8211184
Merge remote-tracking branch 'upstream/master'
2021-02-19 19:02:48 +01:00
Marcus Proest
b99372a3c5
initial commit of mautrix-instagram role
2021-02-19 17:20:26 +01:00
Slavi Pantaleev
108aed53be
Fix invalid matrix-postgres.service when matrix_postgres_process_extra_arguments is empty
...
This only seems to be affecting some people badly enough to cause
matrix-postgres not to start. Certain systemd versions probably handle
it better or something.
Fixes https://github.com/spantaleev/matrix-docker-ansible-deploy/issues/889
(hopefully)
2021-02-19 16:33:23 +02:00
Slavi Pantaleev
1dbdfeec07
Fix matrix-postgres stopping for consistency with other services
...
This probably got lost somehow in all the work that happened in
https://github.com/spantaleev/matrix-docker-ansible-deploy/pull/456
2021-02-19 15:53:30 +02:00
Slavi Pantaleev
9f91eaa54b
Fix incorrect service name
...
Fixes https://github.com/spantaleev/matrix-docker-ansible-deploy/issues/887
2021-02-19 12:12:21 +02:00
Slavi Pantaleev
91c987ca7d
Merge pull request #872 from xangelix/add-mx-puppet-groupme-gh
...
Add mx-puppet-groupme support
2021-02-19 11:42:41 +02:00
Slavi Pantaleev
d94d0e2ca5
Merge pull request #456 from eMPee584/synapse-workers
...
Synapse workers
2021-02-19 11:40:36 +02:00
Slavi Pantaleev
9dc87bb948
Add Synapse worker presets for easier configuration
...
Adding more presets in the future would be nice.
2021-02-19 11:38:47 +02:00
Slavi Pantaleev
eaea215282
Allow Synapse workers to be used with an external nginx webserver
...
We're talking about a webserver running on the same machine, which
imports the configuration files generated by the `matrix-nginx-proxy`
in the `/matrix/nginx-proxy/conf.d` directory.
Users who run an nginx webserver on some other machine will need to do
something different.
2021-02-19 11:36:48 +02:00
Slavi Pantaleev
2f732e4234
Update Synapse worker endpoints
2021-02-19 11:36:14 +02:00
Slavi Pantaleev
217b4a8808
Release Synapse v1.27.0 to ARM32 via self-building
...
Related to: https://matrix.org/blog/2021/02/18/synapse-1-27-0-released#dropping-armv7-docker-images
2021-02-19 09:10:16 +02:00
Béla Becker
65eab14a64
Make sure Etherpad has a database to write to
2021-02-18 17:43:14 +01:00
Béla Becker
005f4d57f9
Remove mention of sqlite3 support for Etherpad
...
The official Etherpad Docker image has no support for sqlite3 databases.
2021-02-18 17:39:36 +01:00
Slavi Pantaleev
1789620901
Merge branch 'master' into synapse-workers
2021-02-18 18:24:43 +02:00
Slavi Pantaleev
d6c4d41c2b
Define instanceId property on workers
...
This give us the possibility to run multiple instances of
workers that that don't expose a port.
Right now, we don't support that, but in the future we could
run multiple `federation_sender` or `pusher` workers, without
them fighting over naming (previously, they'd all be named
something like `matrix-synapse-worker-pusher-0`, because
they'd all define `port` as `0`).
2021-02-18 18:19:51 +02:00
rakshazi
996f732f98
Update synapse-admin (0.6.1 -> 0.7.0)
2021-02-18 12:05:21 +00:00
Cody Neiman
c4e1209452
Merge branch 'master' into add-mx-puppet-groupme-gh
2021-02-17 13:52:37 -05:00
Slavi Pantaleev
d33483b8ce
Document that Synapse pusher worker instances are shardable
...
Related to:
- https://github.com/matrix-org/synapse/pull/9407
- https://github.com/matrix-org/synapse/pull/7855
2021-02-16 17:45:41 +02:00
Slavi Pantaleev
daae74b074
Merge branch 'master' into synapse-workers
2021-02-16 17:31:40 +02:00
Slavi Pantaleev
521160c12f
Upgrade Synapse (v1.26.0 -> v1.27.0)
2021-02-16 17:30:48 +02:00
Slavi Pantaleev
865d71e35a
Upgrade Element (1.7.20 -> 1.7.21)
2021-02-16 13:44:28 +02:00
Marc Leuser
fd3d48bb6d
trust the reverse proxy by default
2021-02-15 10:50:45 +01:00
Marc Leuser
1434c371bd
safer port binding of etherpad docker container
...
don't bind to any host port if nginx_proxy is used
only bind to localhost if it's not used
2021-02-15 10:46:23 +01:00
Slavi Pantaleev
61e427d690
Do not let people enable more than 1 federation_sender worker
2021-02-15 11:37:03 +02:00
Slavi Pantaleev
85a05f38e8
Allow Synapse worker list to be generated dynamically
...
This leads to much easier management and potential safety
features (validation). In the future, we could try to avoid port
conflicts as well, but it didn't seem worth the effort to do it now.
Our port ranges seem large enough.
This can also pave the way for a "presets" feature
(similar to `matrix_nginx_proxy_ssl_presets`) which makes it even easier
for people to configure worker counts.
2021-02-15 11:25:35 +02:00
Slavi Pantaleev
43059bb040
Fix metrics listeners for Synapse workers
...
`::` leads to errors like:
> socket.gaierror: [Errno -9] Address family for hostname not supported
2021-02-15 11:19:07 +02:00
Slavi Pantaleev
453a4ec2d8
Relocate tasks related to Synapse workers
2021-02-15 11:18:47 +02:00
Cody Neiman
e510481e84
Merge branch 'master' into add-mx-puppet-groupme-gh
2021-02-14 13:41:16 -05:00
Slavi Pantaleev
5cfeae806b
Merge branch 'master' into synapse-workers
2021-02-14 13:00:57 +02:00
Slavi Pantaleev
894679750e
Merge pull request #862 from s-thom/nginx-additional
...
Add additional domains for Let's Encrypt certificates to be obtained
2021-02-14 11:05:25 +02:00
Slavi Pantaleev
a8e9f35708
Touch up documentation a bit
2021-02-14 11:05:05 +02:00
Slavi Pantaleev
7d39e5153a
Upgrade Postgres minor versions
2021-02-14 09:12:29 +02:00
Cody Neiman
dc5e7eed3f
Fix mx-puppet-groupme port typo
2021-02-13 11:20:35 -05:00
Cody Neiman
2b3c143487
Update mx-puppet-groupme docker image
2021-02-13 11:10:53 -05:00
Cody Neiman
5a70a56ff0
Initial implementation
2021-02-12 23:13:30 -05:00
Slavi Pantaleev
8434af10de
Do not fail on unrelated validation tasks when Grafana not enabled
2021-02-12 15:45:19 +02:00
Slavi Pantaleev
66d5b0e5b9
Do not fail on unrelated validation tasks when Prometheus not enabled
...
These validation tasks should only run when Prometheus is enabled.
2021-02-12 15:41:15 +02:00
Slavi Pantaleev
2ac2b02cb4
Merge pull request #838 from Peetz0r/stats
...
Prometheus and Grafana on stats.<domain>
2021-02-12 14:03:17 +02:00
Slavi Pantaleev
c8ab200cb1
Break dependency between matrix-prometheus and (matrix-prometheus-node-exporter, matrix-synapse)
2021-02-12 11:59:24 +02:00
Slavi Pantaleev
6842102e00
Split install/uninstall tasks in matrix-prometheus
2021-02-12 11:59:24 +02:00
Slavi Pantaleev
18e31526a8
Rename some variables
2021-02-12 11:59:24 +02:00
Slavi Pantaleev
85a260daaf
Make --tags=setup-prometheus not break, relying on matrix-base facts
2021-02-12 11:59:24 +02:00
Slavi Pantaleev
df3dd1c824
Use --read-only FS for metrics-related containers
...
It seems like it doesn't cause any issues for any of these services.
2021-02-12 11:59:24 +02:00
Slavi Pantaleev
3ce9712388
Fix Grafana dashboard/datasource label
2021-02-12 11:59:24 +02:00
Slavi Pantaleev
f0cd294628
Fix matrix-prometheus-node-exporter failure to start
...
The quotes around "host" for both `--pid` and `--net` were
causing trouble for me:
> docker: --pid: invalid PID mode.
and:
> docker: Error response from daemon: network "host" not found.
I've also changed the `-v` call to `--mount` for consistency with the
rest of the playbook.
2021-02-12 11:59:24 +02:00
efraimbart
b7e68cb779
Fix wrong docker image being pulled
...
Changed `matrix_mautrix_signal_docker_image_force_pull` to `matrix_mautrix_signal_daemon_docker_image_force_pull` when force pulling the daemon
2021-02-11 22:56:37 -05:00
Peetz0r
fde222a041
Update Prometheus Node Exporter 1.0.1 => 1.1.0
2021-02-10 23:11:17 +01:00
Peetz0r
3a77261dc6
Update Grafana 7.3.7 => 7.4.0
2021-02-10 23:11:02 +01:00
Peetz0r
144a5e6198
Register docker network info and use it for prometheus-node-exporter
...
Using the hardcoded IP did break while I was
messing with IPv6 stuff on the other branch
2021-02-10 22:54:42 +01:00
Peetz0r
76d7e84be5
Make prometheus-node-exporter a bit more capable
...
By running it in a more privileged container with access to the host network stack and such
2021-02-10 22:54:14 +01:00
Peetz0r
989100b1c1
Grafana nginx proxy config
2021-02-10 22:54:14 +01:00
Peetz0r
eb5aa93e8a
Grafana
...
Also includes the dashboards for Synapse and for Node Exporter.
Again has only been tested on debian amd64 so far, but the grafana docker image is available for arm64 and arm32. Nice.
2021-02-10 22:54:14 +01:00
Peetz0r
e525970b39
Prometheus Node Exporter
...
Basic system stats, to show stuff the synapse metrics
can't show such as resource usage by bridges, etc
Seems to work fine as well.
This too has only been tested on debian amd64 so far
2021-02-10 22:54:14 +01:00
Peetz0r
13ef9e85cf
Prometheus
...
Initial attempt. Seems to work fine.
Only tested on debian amd64 so far
2021-02-10 22:54:14 +01:00
Slavi Pantaleev
7e8e95a09a
Make S3-mounting path configurable
...
This will make data migration easier.
2021-02-09 22:05:07 +02:00
Yan
385b6c623e
Fixes: a66a604e
("Selfbuild appservice-slack bridge")
2021-02-09 00:02:48 +01:00
Stuart Thomson
064b2e533c
Add variable for extra domains to get LE certs for
...
I felt that adding another variable was probably going to be the easiest way to do this. I may end up adding another variable to enable this feature, for consistency with some of the other things.
2021-02-06 20:02:39 +13:00
Paul Tötterman
9ad67d7cdf
Upgrade Element (1.7.19 -> 1.7.20)
...
https://github.com/vector-im/element-web/releases/tag/v1.7.20
https://hub.docker.com/layers/vectorim/element-web/v1.7.20/images/sha256-44cae3a532d86c16940deb70866b522ba6acc8c5d7adf3c661cfc8b06f1de681?context=explore
2021-02-04 16:26:56 +02:00
Aaron Raimist
5cb976c321
Upgrade Element (1.7.18 -> 1.7.19)
2021-02-03 10:07:43 -06:00
Julian Foad
d1f28d17bb
Allow psql args to be given to matrix-postgres-cli
...
This passes any arguments given to 'matrix-postgres-cli' to the 'psql' command.
Examples:
$ # start an interactive shell connected to a given db
$ sudo matrix-postgres-cli -d synapse
$ # run a query, non-interactively
$ sudo matrix-postgres-cli -d synapse -c 'SELECT group_id FROM groups;'
2021-02-03 12:59:21 +00:00
Slavi Pantaleev
c4a05b760a
Make mautrix bridges not overwrite their config
...
If they do, our next playbook runs would simply revert it
and report "changed" for that task.
There's no benefit to letting the bridge spew a new config file.
This does not apply to the mautrix whatsapp bridge, because that one
is written in Go (not Python) and takes different flags. There's no
equivalent flag there.
2021-02-03 13:23:18 +02:00
Slavi Pantaleev
889b299bc2
Merge pull request #804 from pushytoxin/matrix-etherpad
...
Self-hosted Etherpad
2021-01-31 09:55:46 +02:00
Slavi Pantaleev
7804060eee
Use Etherpad 1.8.7, not :latest
2021-01-31 09:47:47 +02:00
Slavi Pantaleev
98f9619279
Merge pull request #843 from thomwiggers/update-irc
...
Update IRC bridge to 0.23.0
2021-01-31 09:26:56 +02:00
o8F0LY
0a0c9a4efc
Add double quotes to avoid synatx errors
2021-01-30 22:54:51 +01:00
Thom Wiggers
8de739132a
Update IRC bridge to 0.23.0
2021-01-30 12:47:56 +01:00
Peetz0r
e0e459ac0c
Fixed missing quotes
2021-01-30 11:58:24 +01:00
Slavi Pantaleev
efbffa26bf
Fix typo
2021-01-30 11:37:08 +02:00
Peetz0r
473936065d
Use Debian Buster Docker repo on Debian Bullseye
...
Future maintainer: check on https://docs.docker.com/engine/install/debian/ if Docker for
Debian 11 is released, then undo this commit
2021-01-30 09:02:41 +01:00
Béla Becker
2edc9cb83c
Name the Synapse database on state compression import
...
Fixes:
https://github.com/spantaleev/matrix-docker-ansible-deploy/issues/833
2021-01-28 17:54:02 +01:00
Béla Becker
b7261dc098
Etherpad role: Etherpad needs Dimension
...
The default scalar.vector.im integrations manager doesn't support custom
URL's for etherpad, therefore Dimension needs to be enabled.
2021-01-28 15:11:22 +01:00
Slavi Pantaleev
3ea90ca436
Upgrade Element (1.7.17 -> 1.7.18)
2021-01-28 09:23:23 +02:00
Slavi Pantaleev
e7f3f7c431
Enable /devices endpoint for generic workers
2021-01-27 22:18:47 +02:00
Slavi Pantaleev
26b287bd17
Upgrade certbot (1.10.1 -> 1.11.0)
2021-01-27 21:51:46 +02:00
Slavi Pantaleev
1cd2a218de
Merge branch 'master' into synapse-workers
2021-01-27 21:41:54 +02:00
Slavi Pantaleev
c6feb0b99e
Upgrade Synapse (v1.25.0 -> v1.26.0)
2021-01-27 21:41:47 +02:00
Slavi Pantaleev
39c2d72d17
Merge branch 'master' into synapse-workers
2021-01-27 17:12:16 +02:00
Slavi Pantaleev
008049f2a9
Fix mautrix-telegram registration file mistake
...
Regression since f6097fbba1
2021-01-27 17:11:46 +02:00
Slavi Pantaleev
a49dab76f8
Merge branch 'master' into synapse-workers
2021-01-27 15:49:16 +02:00
Slavi Pantaleev
e3290d8bcb
Remove |to_json causing trouble
...
Fixes a regression introduced in f6097fbba1
, which was cauing Synapse
to die with this error message:
> ValueError: sender_localpart needs characters which are not URL encoded.
2021-01-27 15:48:35 +02:00
Slavi Pantaleev
a31c9603fa
Merge branch 'master' into synapse-workers
2021-01-27 15:43:56 +02:00
Slavi Pantaleev
f6097fbba1
E2BE not working for mautrix bridges
...
Fixes https://github.com/spantaleev/matrix-docker-ansible-deploy/issues/806
2021-01-27 15:43:33 +02:00
Slavi Pantaleev
07f1ea24ee
Make it possible to override the welcome.html.j2 template used for Element
2021-01-27 12:36:57 +02:00
Slavi Pantaleev
d98a1ceadd
Merge branch 'master' into synapse-workers
2021-01-27 10:27:17 +02:00
Slavi Pantaleev
512f42aa76
Do not report docker kill/rm attempts as errors
...
These are just defensive cleanup tasks that we run.
In the good case, there's nothing to kill or remove, so they trigger an
error like this:
> Error response from daemon: Cannot kill container: something: No such container: something
and:
> Error: No such container: something
People often ask us if this is a problem, so instead of always having to
answer with "no, this is to be expected", we'd rather eliminate it now
and make logs cleaner.
In the event that:
- a container is really stuck and needs cleanup using kill/rm
- and cleanup fails, and we fail to report it because of error
suppression (`2>/dev/null`)
.. we'd still get an error when launching ("container name already in use .."),
so it shouldn't be too hard to investigate.
2021-01-27 10:22:46 +02:00
Slavi Pantaleev
869727a402
Add comment to mautrix-facebook bridge regarding alembic migrations
2021-01-27 10:17:48 +02:00
Slavi Pantaleev
a9af36841d
Merge branch 'master' into synapse-workers
2021-01-27 09:34:29 +02:00
Slavi Pantaleev
346f8b3475
Fix typo
2021-01-26 10:13:08 +02:00
Slavi Pantaleev
26542308b3
Use |to_json in more places in matrix-appservice-discord config
...
I don't think this was causing an issue, but it might
if the bot token has a more special value in the future.
Related to https://github.com/spantaleev/matrix-docker-ansible-deploy/issues/828
2021-01-26 10:00:07 +02:00
Béla Becker
42f338016b
Etherpad matrix-nginx-proxy configuration
2021-01-26 05:04:47 +01:00
Béla Becker
7bc9be95cb
Add map directive to the base of nginx.conf
...
This needs to be added for WebSocket upgrades to work properly (see doc:
http://nginx.org/en/docs/http/websocket.html )
2021-01-26 05:04:47 +01:00
Béla Becker
38bf1eda70
Etherpad Jitsi integration
2021-01-26 05:04:47 +01:00
Béla Becker
4b451ff782
Etherpad role
2021-01-26 05:04:47 +01:00
Slavi Pantaleev
a535226210
Stop/disable unnecessary worker services before deleting them
2021-01-25 15:20:37 +02:00
Slavi Pantaleev
dd24942c03
Use |to_json for mautrix-telegram config
...
Fixes https://github.com/spantaleev/matrix-docker-ansible-deploy/issues/824
2021-01-25 15:15:27 +02:00
Slavi Pantaleev
778b66876c
Merge branch 'master' into synapse-workers
2021-01-25 14:56:55 +02:00
Slavi Pantaleev
70dcdd41a7
Simplify matrix-remove-all
...
We don't have instantiated services anymore, nor
/etc/systemd/system/matrix-synapse.service.wants/ stuff.
2021-01-25 14:02:30 +02:00
Slavi Pantaleev
d3ecc6f017
Fix bridges failing to upload media when Synapse workers are enabled
2021-01-25 13:55:08 +02:00
Slavi Pantaleev
66cdc7bf5a
Clean up worker.yaml generation a bit and make it more flexible
2021-01-25 13:02:01 +02:00
Slavi Pantaleev
1462409b34
Fix worker listening addresses
...
Not specifying bind addresses for the worker resulted in this warning:
> synapse.app - 47 - WARNING - None - Failed to listen on 0.0.0.0, continuing because listening on [::]
Additionally, metrics listening only on 127.0.0.1 seems like a no-op.
Only having it accessible from within the container is likely not what
we intend. Changed that to all interfaces as well.
Whether it actually gets exposed or not depends on the systemd service
and `matrix_synapse_workers_container_host_bind_address`.
2021-01-25 12:29:47 +02:00
Slavi Pantaleev
01747c8cc4
Prevent Synapse warning about enabling metric listeners with enable_metrics: false
...
> synapse.app.generic_worker - 606 - WARNING - None - Metrics listener configured, but enable_metrics is not True!
2021-01-25 12:24:12 +02:00
Slavi Pantaleev
70796703d3
Run Synapse workers in their own containers
...
This switches the `docker exec` method of spawning
Synapse workers inside the `matrix-synapse` container with
dedicated containers for each worker.
We also have dedicated systemd services for each worker,
so this are now:
- more consistent with everything else (we don't use systemd
instantiated services anywhere)
- we don't need the "parse systemd instance name into worker name +
port" part
- we don't need to keep track of PIDs manually
- we don't need jq (less depenendencies)
- workers dying would be restarted by systemd correctly, like any other
service
- `docker ps` shows each worker separately and we can observe resource
usage
2021-01-25 12:14:46 +02:00
Slavi Pantaleev
6fc214480c
Fix Signal role using incorrect database string variable
...
Fixes https://github.com/spantaleev/matrix-docker-ansible-deploy/issues/823
2021-01-25 10:42:23 +02:00
Slavi Pantaleev
da50fb27a0
Whitelist /_matrix/key requests for going to generic workers on the federation port
2021-01-25 09:46:50 +02:00
Slavi Pantaleev
4d62a75f6f
Get matrix-corporal to play nicely with a Synapse worker setup
...
We do this by creating one more layer of indirection.
First we reach some generic vhost handling matrix.DOMAIN.
A bunch of override rules are added there (capturing traffic to send to
ma1sd, etc). nginx-status and similar generic things also live there.
We then proxy to the homeserver on some other vhost (only Synapse being
available right now, but repointing this to Dendrite or other will be
possible in the future).
Then that homeserver-specific vhost does its thing to proxy to the
homeserver. It may or may not use workers, etc.
Without matrix-corporal, the flow is now:
1. matrix.DOMAIN (matrix-nginx-proxy/matrix-domain.conf)
2. matrix-nginx-proxy/matrix-synapse.conf
3. matrix-synapse
With matrix-corporal enabled, it becomes:
1. matrix.DOMAIN (matrix-nginx-proxy/matrix-domain.conf)
2. matrix-corporal
3. matrix-nginx-proxy/matrix-synapse.conf
4. matrix-synapse
(matrix-corporal gets injected at step 2).
2021-01-25 09:46:41 +02:00
Slavi Pantaleev
c05d3d09bd
Disable systemd services while stopping them
...
This removes some `multi-target.wants` symlinks as well, etc.
But despite systemd saying:
> Removed symlink /etc/systemd/system/matrix-synapse.service.wants/matrix-synapse-worker@appservice:0.service
.. I still see such symlinks tehre for me for some reason, so keeping the
code (below) to find & delete them still seems like a good idea.
2021-01-25 08:58:23 +02:00
Slavi Pantaleev
63301b0ef1
Improvements around Synapse worker/metrics ports exposure
...
There was a `matrix_nginx_proxy_enabled|default(False)` check, but:
- it didn't seem to work reliably for some reason (hmm)
- referring to a `matrix_nginx_proxy_*` variable from within the
`matrix-synapse` role is not ideal
- exposing always happened on `127.0.0.1`, which may not be good enough
for some rarer setups (where the own webserver is external to the host)
2021-01-25 08:25:43 +02:00
Slavi Pantaleev
f66a6b066b
Be more specific with the Redis version being used
2021-01-25 01:34:58 +02:00
Slavi Pantaleev
5ca68210cd
Do not handle /_matrix/federation on client-server port, nor /_matrix/client stuff on federation port
...
I guess it didn't hurt to do it until now, but it's not great serving
federation APIs on the client-server API port, etc.
matrix-corporal doesn't work yet (still something to be solved in the
future), but its firewalling operations will also be sabotaged
by Client-Server APIs being served on the federation port (it's a way to get around its firewalling).
2021-01-24 22:22:57 +02:00
Slavi Pantaleev
cc5cf0d725
Load roles/matrix-synapse/vars/workers.yml earlier to not break --tags=setup-nginx-proxy
...
If we load it at runtime, during matrix-synapse role execution,
it's good enough for matrix-synapse and all roles after that,
but.. it breaks when someone uses `--tags=setup-nginx-proxy` alone.
The downside of including this vars file like this in `setup.yml`
is that the variables contained in it cannot be overriden by the user
(in their inventory's `vars.yml`).
... but it's not like overriding these variables was possible anyway
when including them at runtime.
2021-01-24 20:19:55 +02:00
Slavi Pantaleev
92ee3d78a0
Fix matrix-remove-all for when Synapse workers are enabled
2021-01-24 19:42:32 +02:00
Slavi Pantaleev
8fa913dca7
Fix Ansible warning
2021-01-24 19:11:35 +02:00
Marcel Partap
edc21f15e5
Restrict publishing worker (metrics) ports to localhost
2021-01-24 08:53:09 +01:00
Marcel Partap
183adec3d8
Merge remote-tracking branch 'origin/master' into synapse-workers
2021-01-23 15:04:11 +01:00
Marcel Partap
c8f051a42d
Track workers endpoint list in repo instead of regenerating on user side
2021-01-23 14:44:36 +01:00
Marcel Partap
f2c7d79238
Drop probably incorrect comment from synapse homeserver.yaml.j2
2021-01-23 14:44:36 +01:00
Slavi Pantaleev
a56cb34850
Notify people if /matrix/postgres/data-auto-upgrade-backup exists
2021-01-23 14:14:45 +02:00
Slavi Pantaleev
a2422c458a
Notify of remaining matrix-postgres local data in a better way
2021-01-23 14:04:51 +02:00
Slavi Pantaleev
1cd251ed78
Don't delete Docker images which may have been pulled by another
...
Some people run Coturn or Jitsi, etc., by themselves and disable it
in the playbook.
Because the playbook is trying to be nice and clean up after itself,
it was deleting these Docker images.
However, people wish to pull and use them separately and would rather
they don't get deleted.
We could make this configurable for the sake of this special case, but
it's simpler to just avoid deleting these images.
It's not like this "cleaning things up" thing works anyway.
As time goes on, the playbook gets updated with newer image tags
and we leave so many images behind. If one doesn't run
`docker system prune -a` manually once in a while, they'd get swamped
with images anyway. Whether we leave a few images behind due to the lack
of this cleanup now is pretty much irrelevant.
2021-01-23 14:01:31 +02:00
Slavi Pantaleev
f085362149
Fix some Postgres CLI scripts to target the correct database
...
Fixes a regression introduced in 95346f3117
.
Fixes https://github.com/spantaleev/matrix-docker-ansible-deploy/issues/814
Using `matrix_synapse_` variables in the `matrix-postgres` role is not
ideal, but.. this script belongs neither here, nor there.
We'll have it be like that for now.
2021-01-23 11:38:34 +02:00
Slavi Pantaleev
3051655d21
Ensure matrix_appservice_irc_docker_src_files_path created when self-building
...
The git module will create it anyway, but that would likely use `root:root`.
2021-01-22 22:42:40 +02:00
Panagiotis Georgiadis
f10e3fef0d
Merge branch 'master' into irc
2021-01-22 20:30:24 +00:00
Panagiotis Georgiadis
e502ee33da
Selfbuild appservice-irc bridge
2021-01-22 21:28:53 +01:00
Slavi Pantaleev
f9968b6981
Fix matrix_postgres_connection_password length check
2021-01-22 21:22:58 +02:00
Slavi Pantaleev
2997a7fc3e
Make mx-puppet-* bridges not log to files
...
We log everything in systemd/journald for every service already,
so there's no need for double-logging, bridges rotating log files
manually and other such nonsense.
2021-01-22 19:22:26 +02:00
Slavi Pantaleev
f3dd346724
Try to tighten Signal bridge security
2021-01-22 18:56:08 +02:00
Slavi Pantaleev
8ec975e3c8
Use matrix:matrix for Signal bridge (not root)
2021-01-22 18:52:20 +02:00
Slavi Pantaleev
37909aa7a9
Create signald/{avatars,attachments,data} and rename config dir
2021-01-22 18:40:51 +02:00
Slavi Pantaleev
88addd71fc
Fix Postgres imports going to the matrix DB by default
...
Well, they still do go to that DB by default,
but our docs give a better command to users, which would do the right
thing.
2021-01-22 17:39:08 +02:00
Slavi Pantaleev
bef0702fea
Wait some more when starting Postgres during setup on ARM
2021-01-22 16:21:30 +02:00
Slavi Pantaleev
f9c1d62435
Fix Postgres database (-alpine) failing to start on ARM32
2021-01-22 13:52:55 +02:00
Slavi Pantaleev
95346f3117
Reorganize Postgres access (breaking change)
...
In short, this makes Synapse a 2nd class citizen,
preparing for a future where it's just one-of-many homeserver software
options.
We also no longer have a default Postgres superuser password,
which improves security.
The changelog explains more as to why this was done
and how to proceed from here.
2021-01-22 13:26:12 +02:00
throwawayay
a30ef0cc29
Update element-web (1.7.16 -> 1.7.17)
2021-01-20 08:35:07 -05:00
Slavi Pantaleev
024a23ed17
Upgrade mautrix-facebook to the new Postgres-only version
...
I had intentionally held it back in 39ea3496a4
until:
- it received more testing (there were a few bugs during the
migration, but now it seems OK)
- this migration guide was written
2021-01-20 10:12:51 +02:00
pushytoxin
d51ea25219
When validating LE certs, do not wait for a random time
...
While administering we will occasionally invoke this script interactively with the "non-interactive" switch still there, yet still sit at the desk waiting for 300 seconds for this timer to run out.
The systemd-timer already uses a 3h randomized delay for automatic renewals, which serves this purpose well.
2021-01-19 18:41:45 +01:00
Slavi Pantaleev
39ea3496a4
Downgrade/lock mautrix-facebook to pre-mobile times
...
The `mobile` branch got merged to `master`, which ends up becoming
`:latest`. It's a "rewrite" of the bridge's backend and only
supports a Postgres database.
We'd like to go back (well, forward) to `:latest`, but that will take
a little longer, because:
- we need to handle and document things for people still on SQLite
(especially those with external Postgres, who are likely on SQLite for
bridges)
- I'd rather test the new builds (and migration) a bit before
releasing it to others and possibly breaking their bridge
Brave ones who are already using the bridge with Postgres
can jump on `:latest` and report their experience.
2021-01-19 18:44:15 +02:00
Slavi Pantaleev
c9d96d8135
Fix mautrix-telegram paths creation bug
2021-01-19 09:15:34 +02:00
Slavi Pantaleev
56c54d5cc7
Upgrade matrix-corporal (2.0.1 -> 2.1.0)
2021-01-18 18:23:17 +02:00
Slavi Pantaleev
c1008fde44
Upgrade matrix-coturn (4.5.1.3 -> 4.5.2)
2021-01-18 00:41:47 +02:00
Slavi Pantaleev
cf06f84608
Upgrade matrix-corporal (2.0.0 -> 2.0.1)
2021-01-17 22:05:26 +02:00
Slavi Pantaleev
d95cbe38d7
Rename configuration setting
2021-01-17 18:29:26 +02:00
Slavi Pantaleev
28d86e3aaa
Initial work on support for matrix-corporal v2
2021-01-16 23:47:14 +02:00
Slavi Pantaleev
8549926395
Attempt to fix mautrix-whatsapp DB migration user table conflict
...
Discussed in https://github.com/spantaleev/matrix-docker-ansible-deploy/issues/791
2021-01-15 17:13:47 +02:00
Slavi Pantaleev
1692a28fe4
Work around annoying Docker warning about undefined $HOME
...
> WARNING: Error loading config file: .dockercfg: $HOME is not defined
.. which appeared in Docker 20.10.
2021-01-15 00:23:01 +02:00
Slavi Pantaleev
26f0bbfdef
Fix self-building for matrix-ma1sd on non-version tag/branch
...
Building `master` or something like this was failing.
2021-01-14 23:57:38 +02:00
Slavi Pantaleev
9e936e45ad
Use BuildKit for ma1sd Docker building
...
Newer versions (`master`) use things like `--platform=...`,
which are not supported unless we enable the new BuildKit building
backend.
2021-01-14 23:48:30 +02:00
Slavi Pantaleev
e1690722f7
Replace cronjobs with systemd timers
...
Fixes https://github.com/spantaleev/matrix-docker-ansible-deploy/issues/756
Related to https://github.com/spantaleev/matrix-docker-ansible-deploy/issues/737
I feel like timers are somewhat more complicated and dirty (compared to
cronjobs), but they come with these benefits:
- log output goes to journald
- on newer systemd distros, you can see when the timer fired, when it
will fire, etc.
- we don't need to rely on cron (reducing our dependencies to just
systemd + Docker)
Cronjobs work well, but it's one more dependency that needs to be
installed. We were even asking people to install it manually
(in `docs/prerequisites.md`), which could have gone unnoticed.
Once in a while someone says "my SSL certificates didn't renew"
and it's likely because they forgot to install a cron daemon.
Switching to systemd timers means that installation is simpler
and more unified.
2021-01-14 23:35:50 +02:00
Slavi Pantaleev
05ca9357a8
Add .service suffix to systemd units list
...
We'll be adding `.timer` units later on, so it's good to be
more explicit.
2021-01-14 23:02:10 +02:00
Slavi Pantaleev
653d1d7924
Revert "Don't self-build ma1sd every time unless git sources changed"
...
This reverts commit 2a25b63bb6
.
Looking at other roles, we trigger building regardless of this.
It's better to always trigger it, because it's less fragile.
If the build fails and we only trigger it on "git changes"
then we won't trigger it for a while. That's not good.
Triggering it each and every time may seem like a waste,
but it supposedly runs quickly due to Docker caching.
2021-01-14 22:20:51 +02:00
Slavi Pantaleev
6f5aaad48d
Split install/uninstall tasks in matrix-coturn
2021-01-14 22:11:38 +02:00
Slavi Pantaleev
57ea43d8b0
Remove unused variable
...
This variable has been useless since 2019-01-08.
We probably don't need to check for its usage anymore,
given how much time has passed since then, but ..
2021-01-14 17:47:13 +02:00
Slavi Pantaleev
7a90eb6d4f
Relocate some validation tasks
2021-01-14 17:00:46 +02:00
Slavi Pantaleev
67dc5237c5
Merge pull request #794 from drpaneas/appservice_slack_rebuild
...
Selfbuild appservice-slack bridge
2021-01-14 10:47:31 +02:00
Slavi Pantaleev
862a6276a0
Do not pull appservice-slack when self-building
2021-01-14 10:47:23 +02:00
Slavi Pantaleev
b15da29ebb
Bump Synapse to v1.25.0 for ARM
2021-01-14 10:41:47 +02:00
Panagiotis Georgiadis
a66a604e53
Selfbuild appservice-slack bridge
2021-01-14 01:29:11 +01:00
Slavi Pantaleev
2a25b63bb6
Don't self-build ma1sd every time unless git sources changed
2021-01-13 20:14:47 +02:00
Slavi Pantaleev
a5a44a9d3f
Merge pull request #786 from drpaneas/rebuild_telegram
...
Local rebuild for Telegram
2021-01-13 18:01:15 +02:00
Slavi Pantaleev
52fa7e576b
Fix path typo
2021-01-13 18:00:32 +02:00
Slavi Pantaleev
5fa30cdfcb
Ensure matrix_mautrix_facebook_docker_src_files_path created
...
Before we potentially clone to that path, we'd better make sure it exists.
We also simplify `when` statements a bit.
Given that we're in `setup_install.yml`, we know that the bridge is enabled,
so there's no need to check for that.
2021-01-13 17:59:46 +02:00
Slavi Pantaleev
568cb3d86f
Upgrade matrix-mailer (4.93-r0 -> 4.93-r1)
...
This is a bit misleading, because the old Docker image
was tagged as `4.93.1`. There hasn't been a `4.93.1` version yet though.
Fixes https://github.com/spantaleev/matrix-docker-ansible-deploy/issues/792
2021-01-13 17:37:31 +02:00
Slavi Pantaleev
24100342e1
Tell people that federation_ip_range_blacklist is gone
...
Related to d5945c6e78
2021-01-13 13:47:51 +02:00
Slavi Pantaleev
d5945c6e78
Upgrade Synapse (v1.24.0 -> v1.25.0) for amd64
2021-01-13 13:02:49 +02:00
Panagiotis Georgiadis
999fd2596f
Local rebuild for Telegram
2021-01-12 19:29:50 +01:00
Slavi Pantaleev
0b260a133f
Add matrix-aux role to help with managing auxiliary files/directories
2021-01-11 22:32:52 +02:00
Will
5b0761bf40
Create list_tokens.yml
2021-01-09 08:52:02 -08:00
Will
1468010194
Update main.yml
2021-01-09 08:50:34 -08:00
Marcel Partap
cd8100544b
Merge remote-tracking branch 'origin/master' into synapse-workers
...
Sync with upstream
2021-01-08 20:58:50 +01:00
Slavi Pantaleev
f7ae050eaf
Remove useless quotes around ssl_ciphers value
...
Not sure if it breaks with them or not, but no other directive
uses quotes and the nginx docs show examples without quotes,
so we're being consistent with all of that.
2021-01-08 21:22:44 +02:00
Slavi Pantaleev
5822ba0c01
Use a more natural if statement
2021-01-08 21:21:33 +02:00
Slavi Pantaleev
de6ecd8818
Update inaccurate comments
2021-01-08 21:15:14 +02:00
Agustin Ferrario
5156c63a76
Clean up code
...
Code was clean up and simplified to make it simpler and easier to
maintain. No features were modified.
2021-01-08 18:35:27 +01:00
Agustin Ferrario
25d423e6b6
Fix errors per spantaleev suggestions
...
The different configurations are now all lower case, for consistent
naming.
`matrix_nginx_proxy_ssl_config` is now called
`matrix_nginx_proxy_ssl_preset`. The different options for "modern",
"intermediate" and "old" are stored in the main.yml file, instead of
being hardcoded in the configuration files. This will improve the
maintainability of the code.
The "custom" preset was removed. Now if one of the variables is set, it
will use it instead of the preset. This will allow to mix and match more
easily, for example using all the intermediate options but only
supporting TLSv1.2. This will also provide better backward
compatibility.
2021-01-08 11:32:10 +01:00
Agustin Ferrario
3cb71e7e84
Merge branch 'master' of https://github.com/spantaleev/matrix-docker-ansible-deploy
2021-01-03 13:18:21 +01:00
Slavi Pantaleev
6cce5383bc
Fix Ansible 2.9.6 check
...
Fixup for https://github.com/spantaleev/matrix-docker-ansible-deploy/pull/769
2021-01-03 08:55:30 +02:00
Slavi Pantaleev
2c09111a3a
Actually enforce that we run on Ansible >= 2.7.1
...
Related to 6e652e10ad
2021-01-03 08:54:17 +02:00
Slavi Pantaleev
8710883064
Merge pull request #743 from pushytoxin/docker_network
...
Drop the old workaround for an Ansible bug that has been fixed three years ago
2021-01-03 08:49:09 +02:00
Slavi Pantaleev
cd2d2f594a
Merge pull request #686 from laszabine/signal
...
Added a role for the bridge mautrix-signal
2021-01-03 08:25:01 +02:00
Slavi Pantaleev
3b524ee815
Make mautrix-signal bridge not log to files
...
We try to only use console logging (going to journald) for everything,
instead of logging things twice (or more).
2021-01-03 08:20:43 +02:00
Slavi Pantaleev
274f23f668
Make matrix-mautrix-signal-daemon.service depend on docker.service
2021-01-03 08:16:49 +02:00
Slavi Pantaleev
da2a6682b3
Get rid of matrix_mautrix_signal_configuration_permissions
...
While it's kind of nice having it, it's also somewhat raw
and unnecessary.
Having a good default and not even mentioning it seems better
for most users.
People who need a more exposed bridge (rare) can use
override the default configuration using
`matrix_mautrix_signal_configuration_extension_yaml`.
2021-01-03 08:06:32 +02:00
Slavi Pantaleev
df8d9cfd34
Remove some TODOs
...
The answer to these is: it's good to have them in both places.
The role defines the obvious things it depends on (not knowing
what setup it will find itself into), and then
`group_vars/matrix_servers` "extends" it based on everything else it
knows (the homeserver being Synapse, whether or not the internal
Postgres server is being used, etc.)
2021-01-03 07:46:55 +02:00
Slavi Pantaleev
4805637181
Add support for custom ma1sd view sesion templates
2021-01-03 07:36:09 +02:00
Slavi Pantaleev
f84c69c164
Relocate custom ma1sd threepid email templates to config/
...
We used to store them in data/, but that seems inappropriate,
since it's just static configuration that the playbook can recreate.
2021-01-03 07:35:13 +02:00
Slavi Pantaleev
b5812b539b
Rename ma1sd custom email template variable
...
Keeps up with a1f64f5159 (diff-0ccf69eb4d59a7645eb4d0a0b077e693948edb33ad06df043bba3fb30122879b)
2021-01-03 00:58:31 +02:00
Slavi Pantaleev
fb83eccf99
Relocate SQL template file
2021-01-03 00:58:31 +02:00
Sabine Laszakovits
84cac25c11
added config data_dir (else in ~, which isn't set)
2021-01-02 19:01:21 +01:00
Sabine Laszakovits
56af2b1a8c
small fixes
2021-01-02 00:56:45 +01:00
Sabine Laszakovits
89f7f3c3b8
added log level configuration
2021-01-02 00:55:55 +01:00
Sabine Laszakovits
ffb837d4bc
made the bridge use the default postgres db
2021-01-02 00:39:11 +01:00
Sabine Laszakovits
a06c58c753
Merge branch 'master' into signal
2021-01-01 21:05:00 +01:00
Slavi Pantaleev
1ed991e25c
Merge pull request #769 from aaronraimist/check-for-buggy-ansible
...
Check for buggy version of Ansible that Ubuntu 20.04 provides
2020-12-29 11:19:37 +02:00
Slavi Pantaleev
86da489b9b
Never fail when stopping systemd service during (SQLite -> Postgres) migration
...
We need to suppress systemd service-stopping requests in certain rare
cases like https://github.com/spantaleev/matrix-docker-ansible-deploy/issues/771
That issue seems to describe a case, where a migration from mxisd to
ma1sd was happening (DB files had just been moved), and then we were
attemping to stop `matrix-ma1sd.service` so we could import that database into
Postgres. However, there's neither `matrix-mxisd.service`, nor
`matrix-ma1sd.service` after `migrate_mxisd.yml` had just run, so
stopping `matrix-ma1sd.service` was failing.
2020-12-29 10:31:20 +02:00
Aaron Raimist
8827a49e21
Check equality properly
2020-12-26 20:20:00 -06:00
Aaron Raimist
3dd0517f04
Check for buggy version of Ansible that Ubuntu 20.04 provides
2020-12-26 20:13:49 -06:00
Slavi Pantaleev
a2a4218e95
Make mautrix-python-based bridges E2EE happier
...
Fixes a problem like this:
> File "/usr/lib/python3.8/site-packages/mautrix/bridge/e2ee.py", line 79, in __init__
> raise RuntimeError("Unsupported database scheme")
mautrix-python's e2ee.py module expects to find `postgres://` instead of
`postgresql://`.
2020-12-23 15:39:12 +02:00
Slavi Pantaleev
80c72615c7
Fixup all Dimension boolean fields after pgloader import
...
This is 8b6174786b
done right. There were many more fields
that we had to account for.
2020-12-23 14:12:11 +02:00
Slavi Pantaleev
21662af3be
Archive database only after additional_psql_statements_list had executed
2020-12-23 14:12:11 +02:00
Stuart Mumford
019a4d7dcd
Use role relative paths for things
2020-12-23 11:34:48 +00:00
Slavi Pantaleev
be0c599565
Feed more slashes to mautrix bridges when using SQLite
...
This makes the `sqlite://` URI match what we were using before
and what the config expects.
2020-12-23 13:33:25 +02:00
Slavi Pantaleev
8b6174786b
Fixup Dimension database schema a bit after pgloader import
2020-12-23 12:57:43 +02:00
Slavi Pantaleev
c5f8b1f61b
Fix mautrix-whatsapp Postgres connection string to not use SSL by default
2020-12-23 11:40:22 +02:00
Slavi Pantaleev
f19b29846d
Merge pull request #740 from jdreichmann/postgres-per-default
...
postgres: create databases for all services
2020-12-23 11:00:41 +02:00
Slavi Pantaleev
ad1425eee4
Add pgloader self-building support (for ARM)
2020-12-23 09:08:54 +02:00
Slavi Pantaleev
8675dedbdb
Add support for automatic (nedb -> Postgres) migration to matrix-appservice-slack
2020-12-22 19:56:52 +02:00
Slavi Pantaleev
9b95e1937c
Auto-restart matrix-appservice-irc after (nedb -> Postgres) migration
2020-12-22 19:34:08 +02:00
Slavi Pantaleev
715bdf2c64
Add support for automatic (nedb -> Postgres) migration to mx-appservice-irc
2020-12-22 19:32:43 +02:00
Slavi Pantaleev
15f4cc924d
Rename variables (_database_db_name -> _database_name)
2020-12-22 17:10:02 +02:00
Slavi Pantaleev
ab6563ce4e
Add support for automatic (Postgres -> SQLite) migration to mx-puppet-twitter
2020-12-22 17:09:08 +02:00
Slavi Pantaleev
69cc2145d2
Add support for automatic (Postgres -> SQLite) migration to mx-puppet-steam
2020-12-22 16:51:59 +02:00
Slavi Pantaleev
262a25f997
Add support for automatic (Postgres -> SQLite) migration to mx-puppet-slack
2020-12-22 16:39:21 +02:00
Slavi Pantaleev
e49eb078a2
Add support for automatic (Postgres -> SQLite) migration to mx-puppet-skype
2020-12-22 16:29:47 +02:00
Dan Arnfield
c3b63c6c97
Update element-web (1.7.15 -> 1.7.16)
2020-12-22 08:29:37 -06:00
Dan Arnfield
10e0fa17ad
Update nginx (1.19.5 -> 1.19.6)
2020-12-22 08:23:37 -06:00
Slavi Pantaleev
d135cd9cd3
Ensure mx-puppet-discord directories are created before attempting migration
...
Our old (base-path -> data-path) SQLite migration can't work otherwise.
It's probably not necessary to keep it anymore, but since we still do,
at least we should take care to ensure it works.
2020-12-22 13:44:36 +02:00
Slavi Pantaleev
44c9f4daca
Add support for automatic (Postgres -> SQLite) migration to mx-puppet-instagram
2020-12-22 13:30:52 +02:00
Slavi Pantaleev
e64758c119
Add missing restart task
...
Should have been part of 149872e00c
2020-12-22 13:24:53 +02:00
Slavi Pantaleev
149872e00c
Add support for automatic (Postgres -> SQLite) migration to mx-puppet-discord
2020-12-22 11:10:10 +02:00
Slavi Pantaleev
9b4bf73587
Fix undefined variable reference
2020-12-22 11:08:07 +02:00
Slavi Pantaleev
6488e11d69
Relocate some tasks
2020-12-22 10:52:36 +02:00
Slavi Pantaleev
ca066217d1
Merge pull request #757 from 0x46616c6b/disable-nginx-logging-option
...
add option to disable nginx access log
2020-12-21 22:30:25 +02:00
louis
dcd4716636
add option to disable nginx access log
2020-12-21 21:26:49 +01:00
Slavi Pantaleev
d0ee86e0a5
Fix matrix_corporal_docker_image_name_prefix referencing matrix_synapse_ stuff
2020-12-21 15:44:14 +02:00
Agustin Ferrario
a06feba281
Merge branch 'master' of https://github.com/spantaleev/matrix-docker-ansible-deploy
2020-12-18 10:22:43 +01:00
Slavi Pantaleev
8748f3d443
Move python{,3}-docker installation to another task
...
This also adds support for installing python3-docker (not python-docker)
in systems that run Python 3.
2020-12-17 11:49:56 +02:00
Slavi Pantaleev
349fbb6434
Do not hardcode armhf for Raspbian
...
Raspbian doesn't seem to support arm64, so this is somewhat pointless
right now.
However, they might in the future. Doing this should also unify us
some more with `setup_debian.yml` with the ultimate goal of
eliminating `setup_raspbian.yml`.
2020-12-17 11:47:34 +02:00
Slavi Pantaleev
a09ed58892
Ensure gnupg installed on Raspbian
...
It's likely installed by default, but it doesn't hurt to specify it.
It also makes us more the same with `setup_debian.yml`.
2020-12-17 11:45:32 +02:00
Slavi Pantaleev
f545de53f7
Do not hardcode "ubuntu" for the Docker APT key URL
...
Well, `ubuntu` or `debian`, the same key is served right now,
so it doesn't really matter.
This seems cleaner and less prone to breakage though.
2020-12-17 11:39:18 +02:00
Slavi Pantaleev
55f252a6ed
Do not hardcode amd64 in setup_debian.yml
...
Until now, we've only supported non-amd64 on Raspbian.
Seems like there are now people running Debian/Ubuntu on ARM,
so we were forcing them into amd64 Docker packages.
I've gotten a report that this change fixes support
for Ubuntu Server 20.04 on RPi 4B.
2020-12-17 11:37:30 +02:00
Slavi Pantaleev
ed159cc742
Move matrix_architecture to matrix-base
...
We were only defining this in `group_vars/matrix_servers`, which is
inconsistent with how we normally do things.
2020-12-17 11:33:18 +02:00
Agustin Ferrario
2082242499
Add matrix_nginx_proxy_ssl_config
...
A new variable called `matrix_nginx_proxy_ssl_config` is created for
configuring how the nginx proxy configures SSL. Also a new configuration
validation option and other auxiliary variables are created.
A new variable configuration called `matrix_nginx_proxy_ssl_config` is
created. This allow to set the SSL configuration easily using the
default options proposed by Mozilla. The default configuration is set to
"Intermediate", removing the weak ciphers used in the old
configurations.
The new variable can also be set to "Custom" for a more granular control.
This allows to set another three variables called:
- `matrix_nginx_proxy_ssl_protocols`,
- `matrix_nginx_proxy_ssl_prefer_server_ciphers`
- `matrix_nginx_proxy_ssl_ciphers`
Also a new task is added to validate the SSL configuration variable.
2020-12-16 10:35:37 +01:00
Slavi Pantaleev
0f4649a45c
Merge branch 'master' into postgres-per-default
2020-12-16 03:35:39 +02:00
Slavi Pantaleev
a4b8baee49
Fix inability to send (Matrix -> Discord) messages via appservice-discord
...
Revert "Correct inabillity for appservice-discord to connect"
This reverts commit 673e19f830
.
While certain things do work even with such a local URL, sending
messages leads to an error like this:
> [DiscordBot] verbose: DiscordAPIError: Invalid Form Body
> avatar_url: Not a well formed URL.
Fixes https://github.com/Half-Shot/matrix-appservice-discord/issues/649
The sample configuration file for appservice-discord
c29cfc72f5/config/config.sample.yaml (L8)
explicitly says that we need a public URL.
2020-12-16 03:35:13 +02:00
Slavi Pantaleev
a197968b7f
Make matrix-registration use Postgres by default
...
Now that 0.7.2 is out, the Docker image supports Postgres
and we can do the (SQLite -> Postgres) migration.
I've also found out that we needed to fix up the `tokens.ex_date` column
data type a bit to prevent matrix-registration from raising exceptions
when comparing `datetime.now()` with `ex_date` coming from the database.
Example:
> File "/usr/local/lib/python3.8/site-packages/matrix_registration/tokens.py", line 58, in valid
> expired = self.ex_date < datetime.now()
> TypeError: can't compare offset-naive and offset-aware datetimes
2020-12-15 23:19:56 +02:00
Slavi Pantaleev
1bd5c240e5
Add support for executing additional DB migration statements
...
In cases where pgloader is not enough and we need to do some additional
migration work after it, we can now use
`additional_psql_statements_list` and
`additional_psql_statements_db_name`.
This is to be used when migrating `matrix-registration`'s data at the
very least.
2020-12-15 23:18:29 +02:00
Slavi Pantaleev
3289298ac7
Merge branch 'master' into postgres-per-default
2020-12-15 22:02:52 +02:00
Slavi Pantaleev
69f71f48a6
Upgrade matrix-registration (v0.7.1 -> 0.7.2) and use official image
...
This switches us to a container image maintained by the
matrix-registration developer.
0.7.2 also supports a `base_url` configuration option we can use to
make it easier to reverse-proxy at a different base URL.
We still keep some workarounds, because of this issue:
https://github.com/ZerataX/matrix-registration/issues/47
2020-12-15 22:02:06 +02:00
Slavi Pantaleev
e2ba46bf01
Fix Jinja2 syntax error (else if -> elif)
2020-12-14 22:40:37 +02:00
Slavi Pantaleev
dd797ba6a7
Fix Postgres database importing/upgrading conflicts
...
We were running into conflicts, because having initialized
the roles (users) and databases, trying to import leads to
errors (role XXX already exists, etc.).
We were previously ignoring the Synapse database (`homeserver`)
when upgrading/importing, because that one gets created by default
whenever the container starts.
For our additional databases, it's a similar situation now.
It's not created by default as soon as Postgres starts with an empty
database, but rather we create it as part of running the playbook.
So we either need to skip those role/database creation statements
while upgrading/importing, or to avoid creating the additional database
and rely on the import for that. I've gone for the former, because
it's already similar to what we were doing and it's simpler
(it lets `setup_postgres.yml` be the same in all scenarios).
2020-12-14 22:28:20 +02:00
Slavi Pantaleev
2a502db239
Add (SQLite + Postgres) support and automatic migration to matrix-dimension
2020-12-14 21:01:47 +02:00
Slavi Pantaleev
0790a7b2a8
Add support for matrix_dimension_systemd_{required,wanted}_services_list
...
We were referencing them from `group_vars/matrix_servers` since
recently, but there were no such variables and they weren't being put to
use.
2020-12-14 20:31:07 +02:00
Slavi Pantaleev
374f43735a
Separate matrix-dimension install/uninstall tasks
2020-12-14 20:05:31 +02:00
Slavi Pantaleev
8d74593878
Prepare matrix-registation for (SQLite + Postgres) support
...
Auto-migration and everything seems to work. It's just that
matrix-registration cannot load the Python modules required
for talking to a Postgres database.
Tracked here: https://github.com/ZerataX/matrix-registration/issues/44
Until this gets fixed, we'll continue default to 'sqlite'.
2020-12-14 18:58:37 +02:00
Slavi Pantaleev
516ccb2b2b
Separate matrix-registration install/uninstall tasks
2020-12-14 18:12:14 +02:00
transcaffeine
13d8a9b39c
hint supported automatic migration nedb->postgres
2020-12-14 16:33:40 +01:00
Slavi Pantaleev
af3ea67bba
Add (SQLite + Postgres) support and automatic migration to matrix-ma1sd
2020-12-14 17:16:25 +02:00
Slavi Pantaleev
0ca48f3532
Separate matrix-ma1sd install/uninstall tasks
2020-12-14 16:57:51 +02:00
Slavi Pantaleev
7248eb3c11
Fix syntax error in roles/matrix-bridge-appservice-irc/defaults/main.yml
2020-12-14 16:25:44 +02:00
Slavi Pantaleev
cba973d6b5
Enable automatic (SQLite -> Postgres) migration for matrix-appservice-discord
2020-12-14 16:25:22 +02:00
Slavi Pantaleev
13f84e2ad5
Enable automatic (SQLite -> Postgres) migration for matrix-mautrix-whatsapp
2020-12-14 16:21:01 +02:00
Slavi Pantaleev
86a8091768
Enable automatic (SQLite -> Postgres) migration for matrix-mautrix-telegram
2020-12-14 16:19:54 +02:00
Slavi Pantaleev
3ba8520266
Enable automatic (SQLite -> Postgres) migration for matrix-mautrix-hangouts
2020-12-14 16:18:38 +02:00
Slavi Pantaleev
bbc08722c5
Enable automatic (SQLite -> Postgres) migration for matrix-mautrix-facebook
2020-12-14 16:14:23 +02:00
Slavi Pantaleev
c1431b28f0
Make use of matrix_postgres_db_migration_request.caller
2020-12-14 16:13:57 +02:00
Slavi Pantaleev
ac37091d01
Enable automatic (SQLite -> Postgres) migration for matrix-reminder-bot
2020-12-14 16:03:40 +02:00
Slavi Pantaleev
dc7850e83c
Fix wording and variable names a bit
2020-12-14 16:03:40 +02:00
Slavi Pantaleev
bc376c2fb2
Add database migration utility to matrix-postgres role
2020-12-14 16:03:40 +02:00
transcaffeine
54da61f81b
add postgres support mx-appservice-[slack|irc] with fallback to nedb in role and migration notice
2020-12-14 14:08:35 +01:00
Slavi Pantaleev
e3a0c9adda
Add (Postgres + SQLite) support to matrix-reminder-bot
...
This has been tested and appears to work.
2020-12-14 15:02:11 +02:00
Slavi Pantaleev
dde1c9f899
Fix indentation causing YAML syntax error
2020-12-14 14:53:35 +02:00
Slavi Pantaleev
aa828ff9f6
Separate matrix-reminder-bot install/uninstall tasks
2020-12-14 14:50:04 +02:00
Slavi Pantaleev
b9a04a7f95
Rename some remaining matrix_*_postgres_*
vars back to matrix_*_database_*
...
Looks like there are some that I missed in 087dbe4ddc
2020-12-14 14:42:18 +02:00
transcaffeine
5d70bc1376
add postgres support for mx-puppet-* with fallback to sqlite in role and migration notice
2020-12-14 13:22:58 +01:00
Slavi Pantaleev
087dbe4ddc
Rename matrix_*_postgres_*
back to matrix_*_database_*
...
I was thinking that it makes sense to be more specific,
and using `_postgres_` also separated these variables
from the `_database_` variables that ended up in bridge configuration.
However, @jdreichmann makes a good point
(https://github.com/spantaleev/matrix-docker-ansible-deploy/pull/740#discussion_r542281102 )
that we don't need to be so specific and can allow for other engines (like MySQL) to use these variables.
2020-12-14 13:02:47 +02:00
Slavi Pantaleev
ce21ea3640
Add (Postgres + SQLite) support to matrix-mautrix-hangouts bridge
...
I don't use this bridge, so this is completely untested.
2020-12-14 12:34:59 +02:00
Slavi Pantaleev
43d6ff2af8
Fix sqlite usage for mautrix-facebook/mautrix-telegram
...
Regression since 2d99ade72f
and 9bf8ce878e
, respectively.
When SQLite is to be used, these bridges expect an `sqlite://`
connection string, and not a plain file name (path), like Appservice
Discord and mautrix-whatsapp do.
2020-12-14 12:30:10 +02:00
Slavi Pantaleev
6c77eae969
Add (Postgres + SQLite) support to matrix-mautrix-whatsapp bridge
...
I don't use this bridge, so this is completely untested.
2020-12-14 12:24:37 +02:00
Slavi Pantaleev
9bf8ce878e
Add (Postgres + SQLite) support to matrix-mautrix-telegram bridge
...
I don't use this bridge, so this is completely untested.
2020-12-14 12:06:28 +02:00
Slavi Pantaleev
a3406a182b
Move some things around
2020-12-14 12:04:47 +02:00
Slavi Pantaleev
2d99ade72f
Add (Postgres + SQLite) support to matrix-mautrix-facebook bridge
2020-12-14 11:50:42 +02:00
Slavi Pantaleev
5dba0c038b
Make --tags=import-generic-sqlite-db commands not pass a sensitive connection string around
...
Instead of passing the connection string, we can now pass a name of a
variable, which contains a connection string.
Both are supported for having extra flexibility.
2020-12-14 11:47:00 +02:00
Slavi Pantaleev
d91aa5a060
Do not introduce sub-variables exposing implementation details
2020-12-14 10:52:07 +02:00
Slavi Pantaleev
f1e85f7112
Don't mention Postgres roles, just say users
2020-12-14 10:04:37 +02:00
Slavi Pantaleev
4617984b9f
Add (SQLite -> Postgres) migration instructions
2020-12-14 02:24:32 +02:00
Slavi Pantaleev
cb969c6ca2
Add --tags=import-generic-sqlite-db (pgloader import)
...
This can be used by various bridges, etc., to import an SQLite
(or some other supported) database into Postgres.
2020-12-14 02:23:29 +02:00
Slavi Pantaleev
c66c084027
Merge branch 'master' into postgres-per-default
2020-12-14 01:51:15 +02:00
Slavi Pantaleev
6e1dfb62f0
Rename some doc files and commands related to importing
...
Since we'll likely have generic SQLite database importing
via [pgloader](https://pgloader.io/ ) for migrating bridge
databases from SQLite to Postgres, we'd rather avoid
calling the "import Synapse SQLite database" command
as just `--tags=import-sqlite-db`.
Similarly, for the media store, we'd like to mention that it's
related to Synapse as well.
We'd like to be more explicit, so as to be less confusing,
especially in light of other homeserver implementations
coming in the future.
2020-12-14 01:51:00 +02:00
Slavi Pantaleev
b87b754372
Fail if appservice-discord wants Postgres, but has leftover SQLite data
2020-12-14 01:36:15 +02:00
Slavi Pantaleev
183d2a10db
Ensure matrix-postgres.service is started before creating additional users/databases
2020-12-14 00:59:59 +02:00
Slavi Pantaleev
a374d309c8
Make appservice-discord support both SQLite and Postgres
...
People can toggle between them now. The playbook also defaults
to using SQLite if an external Postgres server is used.
Ideally, we'd be able to create databases/users in external Postgres
servers as well, but our initialization logic (and `docker run` command,
etc.) hardcode too many things right now.
2020-12-14 00:52:25 +02:00
Slavi Pantaleev
46a4034d3e
Use "password" for additional Postgres databases, not "pass"
...
Being more explicit sounds better.
2020-12-14 00:43:03 +02:00
Slavi Pantaleev
3a037a5993
Ensure additional databases contain all the keys that we expect
2020-12-14 00:39:38 +02:00
Slavi Pantaleev
da4cb2f639
Do not use the postgresql_user/postgresql_db modules
...
While these modules are really nice and helpful, we can't use them
for at least 2 reasons:
- for us, Postgres runs in a container on a private Docker network
(`--network=matrix`) without usually being exposed to the host.
These modules execute on the host so they won't be able to reach it.
- these modules require `psycopg2`, so we need to install it before
using it. This might or might not be its own can of worms.
2020-12-14 00:31:38 +02:00
Slavi Pantaleev
bbc09d013b
Do not execute additional databases creation code if not necessary
...
The tasks in `create_additional_databases.yml` will likely
ensure `matrix-postgres.service` is started, etc.
If no additional databases are defined, we'd rather not execute that
file and all these tasks that it may do in the future.
2020-12-13 23:46:05 +02:00
Slavi Pantaleev
c765ceb270
Prevent weird loop error
...
> Invalid data passed to 'loop', it requires a list, got this instead: matrix_postgres_additional_databases. Hint: If you passed a list/dict of just one element, try adding wantlist=True to your lookup invocation or use q/query instead of lookup.
Well, or working around it, as I've done in this commit (which seems
more sane than `wantlist=True` stuff).
2020-12-13 22:56:56 +02:00
Slavi Pantaleev
e2952f16f7
Determine matrix-postgres IP address without relying on jq
...
To avoid needing to have `jq` installed on the machine, we could:
- try to run jq in a Docker container using some small image providing
that
- better yet, avoid `jq` altogether
2020-12-13 22:45:48 +02:00
Slavi Pantaleev
f47e8a97e6
Make use of matrix_host_command_docker instead of hardcoding
2020-12-13 22:38:35 +02:00
Slavi Pantaleev
0641106370
Allow username of additional Postgres databases to be different
...
We'll most likely use one that matches the database name, but
it's better to have it configurable.
2020-12-13 22:37:04 +02:00
Slavi Pantaleev
527d5f57d5
Relocate Postgres additional database creation logic
...
Moving it above the "uninstalling" set of tasks is better.
Extracting it out to another file at the same time, for readability,
especially given that it will probably have to become more complex in
the future (potentially installing `jq`, etc.)
2020-12-13 22:37:04 +02:00
Slavi Pantaleev
dac0d3a682
Add default matrix_postgres_additional_databases
2020-12-13 21:07:16 +02:00
Slavi Pantaleev
77a5c7cf3c
Merge branch 'master' into postgres-per-default
2020-12-13 21:04:15 +02:00
Slavi Pantaleev
47613e5a27
Remove synapse-janitor support
...
Fixes https://github.com/spantaleev/matrix-docker-ansible-deploy/issues/746
2020-12-11 23:24:42 +02:00
Slavi Pantaleev
86988ae180
Switch matrix-registration to v0.7.1
...
Now that a new release has been made, we no longer need to use
`latest` / `master`.
Related to 0a9109771d
and https://github.com/ZerataX/matrix-registration/issues/43
2020-12-11 22:52:42 +02:00
Slavi Pantaleev
0a9109771d
Use latest/master version of matrix-registration
...
v0.7.0 is broken right now, because it calls
`/_matrix/client/r0/admin/register`, which is now at
`/_synapse/admin/v1/register`.
This has been fixed here: 6b26255fea
.. but it's not part of any release.
Switching to `master` (`docker.io/devture/zeratax-matrix-registration:latest`) until it gets resolved.
Reported upstream here: https://github.com/ZerataX/matrix-registration/issues/43
2020-12-11 22:22:07 +02:00
Aaron Raimist
3c2a644e5c
Upgrade synapse-admin (v0.5.0 -> 0.6.1)
2020-12-10 16:28:48 -06:00
Slavi Pantaleev
7593d969e3
Make matrix-mailer not occupy matrix_server_fqn_matrix
...
Starting with Docker 20.10, `--hostname` seems to have the side-effect
of making Docker's internal DNS server resolve said hostname to the IP
address of the container.
Because we were giving the mailer service a hostname of `matrix.DOMAIN`,
all requests destined for `matrix.DOMAIN` originating from other
services on the container network were resolving to `matrix-mailer`.
This is obviously wrong.
Initially reported here: https://github.com/spantaleev/matrix-docker-ansible-deploy/pull/748
We normally try to not use the public hostname (and IP address) on the
container network and try to make services talk to one another locally,
but it sometimes could happen.
With this, we use a `matrix-mailer` hostname for the matrix-mailer
container. My testing shows that it doesn't cause any trouble with
email deliverability.
2020-12-10 23:51:11 +02:00
transcaffeine
d9f4914e0d
WIP: postgres: create databases for all services
...
If a service is enabled, a database for it is created in postgres with a uniqque password. The service can then use this database for data storage instead of relying on sqlite.
2020-12-10 18:26:22 +01:00
Slavi Pantaleev
d08b27784f
Fix systemd services autostart problem with Docker 20.10
...
The Docker 19.04 -> 20.10 upgrade contains the following change
in `/usr/lib/systemd/system/docker.service`:
```
-BindsTo=containerd.service
-After=network-online.target firewalld.service containerd.service
+After=network-online.target firewalld.service containerd.service multi-user.target
-Requires=docker.socket
+Requires=docker.socket containerd.service
Wants=network-online.target
```
The `multi-user.target` requirement in `After` seems to be in conflict
with our `WantedBy=multi-user.target` and `After=docker.service` /
`Requires=docker.service` definitions, causing the following error on
startup for all of our systemd services:
> Job matrix-synapse.service/start deleted to break ordering cycle starting with multi-user.target/start
A workaround which appears to work is to add `DefaultDependencies=no`
to all of our services.
2020-12-10 11:43:20 +02:00
John Goerzen
673e19f830
Correct inabillity for appservice-discord to connect
...
After recently updating my matrix-docker-ansible-deploy installation, matrix-appservice-discord would refuse to start, logging ECONNREFUSED to https://matrix.[mydomain]:443 , which was resolving to 172.18.0.2 due to the `--hostname` in mailer grabbing that hostname.
Curious why the IRC bridge didn't have this issue, I looked into it, and it was connecting to `http://matrix-synapse:8008 `. Correcting this one to that URL resolved the issue.
2020-12-09 21:20:06 -06:00
Slavi Pantaleev
245b749946
Upgrade Synapse for ARM (v1.23.0 -> v1.24.0)
...
Continuation of aa86e0dac6
, now that ARM images are out.
2020-12-09 20:54:18 +02:00
Slavi Pantaleev
aa86e0dac6
Upgrade Synapse (v1.23.0 -> v1.24.0)
...
Because the ARM images are not pushed yet, we hold back to v1.23.0
for now.
2020-12-09 13:31:10 +02:00
benkuly
ad92c61fdd
updated matrix-sms-bridge
2020-12-09 09:45:44 +01:00
Slavi Pantaleev
c07c927d9f
Automatically enable openid listeners when ma1sd enabled
...
ma1sd requires the openid endpoints for certain functionality.
Example: 90b2b5301c/src/main/java/io/kamax/mxisd/auth/AccountManager.java (L67-L99)
If federation is disabled, we still need to expose these openid APIs on the
federation port.
Previously, we were doing similar magic for Dimension.
As per its documentation, when running unfederated, one is to enable
the openid listener as well. As per their recommendation, people
are advised to do enable it on the Client-Server API port
and use the `federationUrl` variable to override where the federation
port is (making federation requests go to the Client-Server API).
Because ma1sd always uses the federation port (unless you do some
DNS overwriting magic using its configuration -- which we'd rather not
do), it's better if we just default to putting the `openid` listener
where it belongs - on the federation port.
With this commit, we retain the "automatically enable openid APIs" thing
we've been doing for Dimension, but move it to the federation port instead.
We also now do the same thing when ma1sd is enabled.
2020-12-08 16:59:20 +02:00
Slavi Pantaleev
8c02f7b79b
Upgrade services
2020-12-07 15:18:03 +02:00
Slavi Pantaleev
d556aa943f
Update docker-ce.repo to not hardcode $releasever=7
...
This keeps it in line with https://download.docker.com/linux/centos/docker-ce.repo
Whether or not Docker works well on CentOS 8 for our purposes
hasn't been verified yet.
Related to https://github.com/spantaleev/matrix-docker-ansible-deploy/issues/300
2020-12-07 07:20:47 +02:00
Slavi Pantaleev
7372480e95
Properly serialize some ma1sd configuration values
...
We've had a report of the `connection` value getting cut off,
supposedly because it contains something that breaks off the string.
Using `|to_json` takes care of it.
2020-12-06 23:59:58 +02:00
Hardy Erlinger
ec2a9d4852
Remove the recording button from the Jitsi UI if recording is disabled.
2020-12-06 13:50:45 +01:00
Béla Becker
6f9b4bd9ac
Drop workaround for old Ansible docker_network bug
2020-12-05 19:02:10 +01:00
Béla Becker
6921ec4b8a
Revert "Work around buggy docker_network sometimes failing to work"
...
The docker_network bug was fixed two years ago
This reverts commit 36658addcd
.
2020-12-05 19:02:10 +01:00
Slavi Pantaleev
a5ae7e9ef0
Add self-building support to matrix-corporal
2020-12-04 01:48:08 +02:00
Slavi Pantaleev
b3d91ed488
Fix passing of matrix_appservice_discord_auth_usePrivilegedIntents
2020-12-04 01:06:42 +02:00
Slavi Pantaleev
05cecb5261
Merge branch 'discord-v1.0'
...
This may be a bit premature, because the bridge didn't work for me
the last time I tried it (RC3).
Some bugs have been fixed to make our config compatible with v1.0.0
though, so it may work for some people (especially those starting
fresh).
I'm not for shipping potentially broken things, but given that we were
using `docker.io/halfshot/matrix-appservice-discord:latest` and that
points to v1.0.0 already (with no other tag we can use), our setup was
already broken in any case.
Now, at least it has some chance of running.
2020-12-03 15:17:30 +02:00
Slavi Pantaleev
edd40811a5
Update matrix-appservice-discord to v1.0.0 final
2020-12-03 15:16:26 +02:00
Marcel Partap
b6b95fe742
synapse workers-doc-to-yaml script: compatibility++ with non-gnu awk
2020-12-02 23:22:02 +01:00
Marcel Partap
3156d96619
synapse workers-doc-to-yaml.awk: escape slash for non-gnu awk versions
2020-12-02 00:29:20 +01:00
Marcel Partap
e892ac464f
synapse workers: untangle config template and specify bind address
...
.. to mitigate log noise - WARNING:
Failed to listen on 0.0.0.0, continuing because listening on [::]
2020-12-01 23:49:23 +01:00
Marcel Partap
f201bca519
synapse workers: define and expose METRICS port for each worker
...
As seen on TV:
https://github.com/matrix-org/synapse/blob/master/docs/metrics-howto.md#monitoring-workers
2020-12-01 22:49:15 +01:00
Marcel Partap
af08f18779
synapse workers default config: disable user_dir worker for now
...
(until https://github.com/matrix-org/synapse/issues/8787 is resolved)
2020-12-01 22:22:04 +01:00
Marcel Partap
414b812a29
synapse role workers setup: make configs clean action remote compatible
...
Many people probably didn't even know this - that ansible can be
quite a bit picky about what it will be willing to work with remotely.
Thanks @maxklenk !
2020-12-01 22:20:27 +01:00
Marcel Partap
d5932ca393
synapse role workers setup: execute the endpoint extraction locally
...
Thanks @maxklenk !
2020-12-01 22:18:42 +01:00
Marcel Partap
851c25c47f
matrix-synapse nginx template: fix invalid jinja comment syntax
2020-12-01 21:55:07 +01:00
Marcel Partap
b73ac965ac
Merge remote-tracking branch 'origin/master' into synapse-workers
2020-12-01 21:24:26 +01:00
Slavi Pantaleev
04da1bddf7
Update matrix-mautrix-facebook config a bit
...
This also disables presence if it's disabled for Synapse.
2020-12-01 11:55:18 +02:00
Slavi Pantaleev
90078dd296
Add matrix_services_autostart_enabled variable for preventing services autostart
...
Some people requested that `--tags=start` not set up service autostart.
One can now do `--tags=start --extra-vars="matrix_services_autostart_enabled=false"`
to just start services ones and not set up autostarting.
2020-11-30 20:58:21 +02:00
Slavi Pantaleev
e0d7d5f0ca
Disable Jitsi recording/transcriptions by default
...
It's not like it worked anyway, because we don't have the necessary
services installed for transcription (Jigasi), nor recording (Jibri).
Disabling these, should hopefully disable their related elements
in the Jitsi Web UI.
Fixes https://github.com/spantaleev/matrix-docker-ansible-deploy/issues/726
2020-11-28 22:31:00 +02:00
Slavi Pantaleev
be5263f397
Move self-building git repository URLs to variables (stop hardcoding)
2020-11-28 21:34:14 +02:00
Slavi Pantaleev
b354155d7c
Make JVB websockets reverse-proxying work
2020-11-27 17:57:15 +02:00
Slavi Pantaleev
fa76128fd8
Update Jitsi to build 5142
...
This supersedes/fixes-up this Pull Request:
https://github.com/spantaleev/matrix-docker-ansible-deploy/pull/719
The Jitsi Web and JVB containers now (in build 5142) always
start by bulding their own default configuration
(`config.js` and `sip-communicator.properties`, respectively).
The fact that we were generating these files ourselves was no longer of use,
because our configuration was thrown away in favor of the one created
by the containers on startup.
With this commit, we're completely redoing things. We no longer
generate these configuration files. We try to pass the proper
environment variables, so that Jitsi services can generate the
configuration files themselves.
Besides that, we try to use the "custom configuration" mechanism
provided by Jitsi Web and Jitsi JVB (`custom-config.js` and
`custom-sip-communicator.properties`, respectively), so that
we and our users can inject additional configuration.
Some configuration options we had are gone now. Others are no longer
controllable via variables and need to be injected using
the `_config_extension` variables that we provide.
The validation logic that is part of the role should take care
to inform people about how to upgrade (if they're using some custom
configuration, which needs special care now). Most users should not
have to do anything special though.
2020-11-27 17:57:15 +02:00
benkuly
f93a4f6474
updated matrix-sms-bridge
2020-11-27 16:01:24 +01:00
Slavi Pantaleev
d702e74079
Fix matrix-nginx-proxy static files mounting when SSL retrieval is none
...
Fixup for 12867e9f18
.
This shouldn't have been caught in the `if`.
Related to https://github.com/spantaleev/matrix-docker-ansible-deploy/issues/734
2020-11-26 18:40:15 +02:00
Slavi Pantaleev
12867e9f18
Do not try to mount /matrix/ssl when matrix_ssl_retrieval_method is 'none'
...
Since the switch from `-v` to `--mount` (in 1fca917ad1
),
we've regressed when `matrix_ssl_retrieval_method == 'none'`.
In such a case, we don't create `/matrix/ssl` directories at all
and shouldn't be trying to mount them into the `matrix-nginx-proxy`
container.
Previously, with `-v`, Docker would auto-create them, effectively hiding
our mistake. Now that `--mount` doesn't do such auto-creation magic,
the `matrix-nginx-proxy` container was failing to start.
Fixes https://github.com/spantaleev/matrix-docker-ansible-deploy/issues/734
2020-11-26 09:55:26 +02:00
Slavi Pantaleev
796c752b60
Ensure Postgres passwords are not longer than 99 characters
...
Complements https://github.com/spantaleev/matrix-docker-ansible-deploy/pull/732
2020-11-26 09:51:48 +02:00
Slavi Pantaleev
47db2d5363
Merge pull request #730 from benkuly/master
...
updates matrix-sms-bridge (changed SMS provider)
2020-11-25 16:36:11 +02:00
Slavi Pantaleev
75f9fde7a4
Remove some more -v usage
...
Continuation of 1fca917ad1
.
Fixes https://github.com/spantaleev/matrix-docker-ansible-deploy/issues/722
2020-11-25 10:49:59 +02:00
Slavi Pantaleev
1fca917ad1
Replace some -v instances with --mount
...
`-v` magically creates the source destination as a directory,
if it doesn't exist already. We'd like to avoid this magic
and the potential breakage that it might cause.
We'd rather fail while Docker tries to find things to `--mount`
than have it automatically create directories and fail anyway,
while having contaminated the filesystem.
There's a lot more `-v` instances remaining to be fixed later on.
This is just some start.
Things like `matrix_synapse_container_additional_volumes` and
`matrix_nginx_proxy_container_additional_volumes` were not changed to
use `--mount`, as options for each one are passed differently
(`ro` is `ro`, but `rw` doesn't exist and `slave` is `bind-propagation=slave`).
To avoid breaking people's custom volume mounts, we keep it as it is for now.
A deficiency with `--mount` is that it lacks the `z` option (SELinux
ownership changes), and some of our `-v` instances use that. I'm not
sure how supported SELinux is for us right now, but it might be,
and breaking that would not be a good idea.
2020-11-24 10:26:05 +02:00
Slavi Pantaleev
27c9014cb8
Improve uninstallation instructions
...
Also switches to using `docker system prune -a` for a less invasive
cleanup of Docker images and related resources.
2020-11-24 09:38:17 +02:00
Slavi Pantaleev
3e2355282b
Upgrade Postgres minor versions
...
Fixes https://github.com/spantaleev/matrix-docker-ansible-deploy/issues/727
2020-11-24 09:06:19 +02:00
Aaron Raimist
c9d2ef7981
Upgrade Element (1.7.13 -> 1.7.14)
2020-11-23 23:05:54 -06:00
benkuly
ff9a4e90c4
updated matrix-sms-bridge
2020-11-23 13:43:04 +01:00
benkuly
3a2e058f2e
updated version of matrix-sms-bridge
2020-11-23 13:07:08 +01:00
benkuly
f1ceb49ae2
fixed wrong path of truststore
2020-11-23 12:52:16 +01:00
benkuly
ad1f0a01ce
fixed systemd service typo
2020-11-23 12:49:28 +01:00
benkuly
76b0b9dc34
fixed application.yml loading
2020-11-23 12:48:08 +01:00
benkuly
2fb42dd7f1
fixed typo in truststore path
2020-11-23 12:38:17 +01:00
benkuly
75600aa357
Merge remote-tracking branch 'github/master'
2020-11-23 12:31:14 +01:00
benkuly
4713e5d5f7
updated matrix-sms-bridge to 0.5.0
2020-11-23 12:30:39 +01:00
Slavi Pantaleev
6c85b84c1e
Fix self-building for synapse-admin
2020-11-18 18:36:03 +02:00
Slavi Pantaleev
b627d93cdc
Update homeserver.yaml to keep up with Synapse v1.23.0
...
Related to #724 (Github Pull Request)
2020-11-18 16:57:50 +02:00
transcaffeine
c58a7e03c7
synapse: update to 1.23.0
2020-11-18 14:16:46 +01:00
Slavi Pantaleev
41fa00edb4
Revert "Update jitsi web to stable-5142"
...
This reverts commit 078592454c
due to reports of breakage both in the support chat room
and in here https://github.com/spantaleev/matrix-docker-ansible-deploy/pull/719
2020-11-18 12:54:43 +02:00
transcaffeine
f7d7190bd0
update mautrix-telegram to 0.9.0
2020-11-17 21:20:12 +01:00
benkuly
8153e25d2d
updated matrix-sms-bridge image
2020-11-16 13:59:03 +01:00
benkuly
787a9ef8ad
updated matrix-sms-bridge image
2020-11-16 11:51:11 +01:00
benkuly
775b1ca7af
updated matrix-sms-bridge image version
2020-11-15 12:12:44 +01:00
Slavi Pantaleev
ccabc82d4c
Use more fully-qualified container images
...
This is both for consistency with 93cc71cb69976c
and for making things more obvious.
2020-11-14 23:01:11 +02:00
Slavi Pantaleev
5eed874199
Improve self-building experience (avoid conflict with pullable images)
...
Fixes https://github.com/spantaleev/matrix-docker-ansible-deploy/issues/716
This patch makes us use more fully-qualified container image names
(either prefixed with docker.io/ or with localhost/).
The latter happens when self-building is enabled.
We've recently had issues where if an image was removed manually
and the service was restarted (making `docker run` fetch it from Docker Hub, etc.),
we'd end up with a pulled image, even though we're aiming for a self-built one.
Re-running the playbook would then not do a rebuild, because:
- the image with that name already exists (even though it's something
else)
- we sometimes had conditional logic where we'd build only if the git
repo changed
By explicitly changing the name of the images (prefixing with localhost/),
we avoid such confusion and the possibility that we'd automatically pul something
which is not what we expect.
Also, I've removed that condition where building would happen on git
changes only. We now always build (unless an image with that name
already exists). We just force-build when the git repo changes.
2020-11-14 23:00:49 +02:00
João Marques
078592454c
Update jitsi web to stable-5142
...
Changelog https://github.com/jitsi/jitsi-meet/releases/tag/stable%2Fjitsi-meet_5142
2020-11-13 18:13:45 +00:00
benkuly
c985e17f18
updated matrix-sms-bridge
2020-11-13 08:44:21 +01:00
Slavi Pantaleev
6dbb90258e
Mention and recommend enabling usePrivilegedIntents
2020-11-13 08:23:40 +02:00
Slavi Pantaleev
fe7bed5df3
Upgrade appservice-discord
2020-11-12 08:21:02 +02:00
Marcel Partap
4678c5d7bd
Merge remote-tracking branch 'origin/master' into synapse-workers
...
Also, replace vague FIXME by a proper NOTE on the complete
story of the user_dir endpoints..
2020-11-11 21:26:08 +01:00
Slavi Pantaleev
4dbec2470f
Fix systemd_path being undefined breakage
...
Regression since #681 (Github Pull Request).
Fixes #715 (Github Issue).
2020-11-11 00:45:02 +02:00
Slavi Pantaleev
4d12a6f8e9
Merge pull request #681 from scottcrossen/slc/ddclient
...
Dynamic DNS
2020-11-10 23:54:21 +02:00
Slavi Pantaleev
1427286cec
Integrate matrix-dynamic-dns with matrix-nginx-proxy without causing a dependency
...
We'd like the roles to be self-contained (as much as possible).
Thus, the `matrix-nginx-proxy` shouldn't reference any variables from
other roles. Instead, we rely on injection via
`group_vars/matrix_servers`.
Related to #681 (Github Pull Request)
2020-11-10 23:49:36 +02:00
Slavi Pantaleev
8782919d85
Ensure matrix_dynamic_dns_domain_configurations contains configurations
...
If `matrix_dynamic_dns_enabled`, we'd like to ensure there's at least
one configuration defined.
Related to #681 (Github Pull Request)
2020-11-10 23:49:36 +02:00
Slavi Pantaleev
97a7c8b0f0
Fix matrix_dynamic_dns_domain_configurations validation check
...
- `item` was undefined
- `'key' in configurations == ''` was doing the wrong thing
Related to #681 (Github Pull Request)
2020-11-10 23:49:36 +02:00
Slavi Pantaleev
fef44b93d3
Define the matrix_dynamic_dns_domain_configurations variable in the role
...
Having it unset in the role itself (while referencign it) is a little strange.
Now people can look at the `roles/matrix-dynamic-dns/defaults/main.yml`
file and figure out everything that's necessary to run the role.
Related to #681 (Github Pull Request)
2020-11-10 23:49:36 +02:00
Marcel Partap
f3d2797d9c
synapse workers: make awk script invocation handle paths with spaces
...
(quoting ftw)
2020-11-10 22:40:48 +01:00
Marcel Partap
b05d298ae4
synapse workers nginx rule: add client_max_body_size on media endpoints
...
so transfer limits are properly set in accord to the relevant setting
https://github.com/spantaleev/matrix-docker-ansible-deploy/pull/456#issuecomment-719996778
2020-11-10 21:43:33 +01:00
Marcel Partap
1e971312e8
synapse workers: handle auth fallback endpoint on main process only
...
(allegedly breaks with SSO enabled)
2020-11-10 21:23:19 +01:00
Marcel Partap
e5072c20d9
synapse workers/nginx: handle media_repository worker endpoints on federation port
...
to prevent "404 on the federation port for the path `/_matrix/media`,
if a remote server is trying to get the media object on federation
port, see https://github.com/matrix-org/synapse/issues/8695 "
https://github.com/matrix-org/synapse/pull/8701
2020-11-10 20:35:39 +01:00
Aaron Raimist
31619e0968
Upgrade Element (1.7.12 -> 1.7.13)
2020-11-10 11:27:15 -06:00
Slavi Pantaleev
235299939d
Upgrade nginx (1.19.3 -> 1.19.4)
2020-11-10 09:30:00 +02:00
Scott Crossen
59bb6b2971
responded to reviewer comments
2020-11-09 13:32:58 -08:00
Scott Crossen
e894befd87
Updates to reviewer comments
2020-11-07 17:53:13 -08:00
Slavi Pantaleev
350c39d745
Update comment
2020-11-02 11:13:25 +02:00
Slavi Pantaleev
ef68d3d296
Add support for reverse-proxying /_synapse/oidc
...
This broke in 63a49bb2dc
.
Proxying the OpenID Connect endpoints is now possible,
but needs to be enabled explicitly now.
Supersedes #702 (Github Pull Request).
This patch builds up on the idea from that Pull Request,
but does things in a cleaner way.
2020-11-02 11:10:03 +02:00
Slavi Pantaleev
5c91e56898
Upgrade Synapse (v1.22.0 -> v1.22.1)
2020-10-30 19:35:55 +02:00
Aaron Raimist
c33d007306
Switch to the new vectorim/element-web Docker image
2020-10-29 11:46:58 -05:00
Marcel Partap
cce90b187a
synapse workers: fix undefined variable cases when removing workers
2020-10-28 23:09:21 +01:00
Sabine
aabefe21f4
fixed yaml
2020-10-28 21:58:59 +01:00
Sabine
468cc39465
added a workaround for postgres's issue with initdb
2020-10-28 21:56:13 +01:00
Slavi Pantaleev
c1c6eaefff
Upgrade Element (1.7.10 -> 1.7.12)
2020-10-28 17:34:39 +02:00
Slavi Pantaleev
9a46647010
Make https://matrix.DOMAIN/ redirect to https://element.DOMAIN/
...
Fixes #696 (Github Issue)
2020-10-28 10:39:12 +02:00
Slavi Pantaleev
4700e80389
Raise standalone default Matrix Client API client_max_body_size
...
We do this to match Synapse's new default "max_upload_size" (50MB).
This `matrix_nginx_proxy_proxy_matrix_client_api_client_max_body_size_mb`
default value only affects standalone usage of the `matrix-nginx-proxy`
role. When the role is used in the context of the playbook,
the value is dynamically assigned from `group_vars/matrix_servers`.
Somewhat related to #692 (Github Issue).
2020-10-28 10:02:47 +02:00
Marcel Partap
e078e29ef8
synapse workers: fix self name in workers-doc-to-yaml.awk script
2020-10-28 08:39:31 +01:00
Slavi Pantaleev
ef07aa8e5d
Prevent certain nginx location blocks from being ignored
...
The regex introduced in 63a49bb2dc
seems to take precedence
over the bare location blocks, causing a regression.
> It is important to understand that, by default, Nginx will serve regular expression matches in preference to prefix matches.
> However, it evaluates prefix locations first, allowing for the administer to override this tendency by specifying locations using the = and ^~ modifiers.
Source: https://www.digitalocean.com/community/tutorials/understanding-nginx-server-and-location-block-selection-algorithms
2020-10-28 09:38:04 +02:00
Marcel Partap
2d1b9f2dbf
synapse workers: reworkings + get endpoints from upstream docs via awk
...
(yes, a bit awkward and brittle… xD)
2020-10-28 07:13:19 +01:00
Slavi Pantaleev
70f0b97a0a
Upgrade Synapse (v1.21.2 -> v1.22.0)
2020-10-27 14:24:02 +02:00
Slavi Pantaleev
63a49bb2dc
Do not expose /_synapse/admin publicly by default
...
Fixes #685 (Github Issue).
2020-10-26 10:36:38 +02:00
Sabine Laszakovits
dd50ee19ab
fixed bridge permissions
2020-10-25 21:42:40 +01:00
Sabine Laszakovits
2211e678f3
fixed comments that were copied over from mautrix-telegram role
2020-10-25 21:01:25 +01:00
Sabine Laszakovits
e59aa07b86
more cleanup
2020-10-25 20:47:10 +01:00
Sabine Laszakovits
c36e1355cf
cleanup
2020-10-25 20:46:57 +01:00
Sabine Laszakovits
8ebc39dea0
fixed dependencies of bridge service (not ideal, but correct)
2020-10-25 20:46:32 +01:00
Sabine Laszakovits
9b890e9ced
moved some settings from role to group_vars
2020-10-25 20:45:24 +01:00
Sabine Laszakovits
ff1d7921a0
moved registration.yaml contents to template
2020-10-25 20:16:24 +01:00
Sabine
7a54e11090
started moving settings to group_vars
2020-10-24 12:15:03 +02:00
Marcel Partap
87bd64ce9e
Merge remote-tracking branch 'origin/master' into synapse-workers
2020-10-23 23:45:07 +02:00
Marcel Partap
a4125d5446
synapse workers: polishing, cleansing and installation of jq dependency
2020-10-23 20:49:53 +02:00
Sabine
69efcb5c21
added mautrix-signal role
2020-10-22 23:29:34 +02:00
Marcel Partap
501efee07e
synapse workers: supply systemd with actual worker PIDs (requires jq)
...
also, worker.yaml.j2:
- hone worker_name
- remove worker_pid_file entry (would only be used if worker_daemonize
set to true; also, synapse only knows about the container namespace
and thus can not provide the required host-view PID)
2020-10-22 20:53:41 +02:00
Slavi Pantaleev
24c6d7e81f
Upgrade Element (1.7.9 -> 1.7.10)
2020-10-20 19:06:16 +03:00
Scott Crossen
94dcceb7b9
removed intentional delay
2020-10-19 11:26:37 -07:00
Scott Crossen
efeb651789
Removed typo
2020-10-19 11:25:01 -07:00
Scott Crossen
e7d79a95dc
removed platform-specific stuff
2020-10-19 10:46:02 -07:00
Scott Crossen
19721be8b1
removed dhcp option
2020-10-18 21:05:32 -07:00
Scott Crossen
de1511b4bb
Fixed valdiation
2020-10-16 21:31:07 -07:00
Scott Crossen
806f98447c
Removed directory creation
2020-10-16 21:26:58 -07:00
Scott Crossen
51cca4c312
Added containerization
2020-10-16 21:21:58 -07:00
Tobias Küchel
1cf5b1d80f
e2ee_backup: rename variables to be consistent with naming scheme
2020-10-16 09:24:50 +02:00
Tobias Küchel
5158fa4df9
e2ee_backup_methods: rather leave the default empty, so that the system default may apply
2020-10-16 08:50:16 +02:00
Tobias Küchel
8f7e21892d
fix indentation, updated to proposed changes from Slavi: no more ifdef
2020-10-16 08:47:37 +02:00
Tobias Küchel
4cfa112755
update default backup_methods as proposed by the system anyway
2020-10-16 08:44:04 +02:00
Tobias Küchel
6599204334
fix commata not being set when secure_backup_required false
2020-10-16 08:20:22 +02:00
Tobias Küchel
48f929dc91
add variables for secure_backup_required and secure_backup_setup_methods
2020-10-16 00:32:00 +02:00
Slavi Pantaleev
f7ecc7a2a5
Upgrade Synapse (v1.21.1 -> v1.21.2)
2020-10-15 17:42:52 +03:00
jgbresson
640166e4c3
Upgrade Element (1.7.8 -> 1.7.9)
2020-10-15 00:09:54 -04:00
Dan Arnfield
b65bfc38ce
Update nginx (1.19.2 -> 1.19.3)
2020-10-14 06:23:33 -05:00
Scott Crossen
53bc7a77e1
fixed EOF issues
2020-10-13 16:47:09 -07:00
Scott Crossen
fa5d85426b
Renamed systemd descriptions for all bridges
2020-10-13 16:40:30 -07:00
Scott Crossen
1f988969a5
Added role for dynamic dns
2020-10-13 16:26:57 -07:00
Slavi Pantaleev
5abd511368
Upgrade Synapse (v1.21.0 -> v1.21.1)
2020-10-13 13:08:25 +03:00
Slavi Pantaleev
d250727e8b
Upgrade certbot (1.7.0 -> 1.9.0)
2020-10-13 09:44:32 +03:00
Aaron Raimist
78529cbd47
Upgrade Synapse (v1.20.1 -> v1.21.0)
2020-10-12 23:59:34 -05:00
Marcel Partap
d2e61af224
Add worker_name to synapse worker config template
...
& restrict federation listener; frontend_proxy / user_dir don't need it
2020-10-11 21:52:08 +02:00
Marcel Partap
36e9be6092
matrix_synapse_workers_{avail,enabled}_list: sort non-generic workers
...
.. alphabetically and put those not documented as multi-instance
capable on ports ending on zero.
2020-10-11 21:44:42 +02:00
Marcel Partap
e9241f5fb9
Improve synapse-workers systemd service template
...
Is the PID magic gonna work? or will it need an ExecStartPost hack..
2020-10-11 21:09:19 +02:00
Marcel Partap
40024e9b81
Prevent workers failing if their config doesn't exist
...
- cherry-pick "Ensure worker config exists in systemd service (#7528 )"
from synapse d74cdc1a42e8b487d74c214b1d0ca575429d546a:
"check that the worker config file exists instead of silently failing."
2020-10-11 21:09:19 +02:00
Marcel Partap
93a8ea7e4a
Merge remote-tracking branch 'master' into feature/add-worker-support
2020-10-11 20:59:05 +02:00
Fanch
1a9cafa3a3
add run-docker-prune command
2020-10-10 04:11:26 +02:00
Slavi Pantaleev
6a72e3fa54
Try to make importing SQLite from older Synapse version work
...
If the SQLite database was from an older version of Synapse, it appears
that Synapse would try to run migrations on it first, before importing.
This was failing, because the file wasn't writable.
Hopefully, this fixes the problem.
2020-10-07 08:54:46 +03:00
Slavi Pantaleev
23daec748c
Require Ansible v2.7 or newer (because of items2dict and dict2items)
...
Interestingly, no one has reported this failure before #662 (Github
Issue).
It doesn't make sense to keep saying that we support such old Ansible
versions, when we're not even testing on anything close to those.
Time is also passing and such versions are getting more and more
ancient. It's time we bumped our requirements to something that is more
likely to work.
2020-10-02 11:53:19 +03:00
Slavi Pantaleev
07fa8404bf
Upgrade matrix-corporal (1.10.1 -> 1.11.0)
2020-10-01 18:30:30 +03:00
Slavi Pantaleev
9e8c14bf65
Merge pull request #660 from clemsos/master
...
Element web : update welcome page template
2020-10-01 09:44:48 +03:00
Dan Arnfield
3a3383fada
Add support for postgres 13
2020-09-30 16:50:59 -05:00
Slavi Pantaleev
43c5f3ec6e
Do not create /home/matrix when creating the matrix user
2020-09-29 18:14:37 +03:00
Clement Renaud
ac3ba1d919
element web : update welcome page template
2020-09-29 12:33:47 +02:00
Slavi Pantaleev
7eb8192a51
Comlain about version requirement on Ansible v1
...
I don't believe Ansible v1 would even go as far as executing this
sanity check, but.. Adding an extra defensive check for completeness.
2020-09-29 12:37:39 +03:00
Slavi Pantaleev
3d702fe03b
Avoid set_fact with error message to prevent confusion
2020-09-29 12:23:39 +03:00
Slavi Pantaleev
3818d82852
Upgrade Element (1.7.7 -> 1.7.8)
2020-09-28 22:20:36 +03:00
Slavi Pantaleev
263727095d
Merge pull request #657 from cnvandijk/feature-client-well-known
...
Client well known compatibility
2020-09-28 09:19:25 +03:00
Slavi Pantaleev
3e2f0a4240
Upgrade matrix-synapse-admin (0.4.1 -> 0.5.0)
...
Related to #658 (Github Issue).
2020-09-28 09:11:05 +03:00
Chris van Dijk
b9c8d059d0
Support both the im.vector.riot and io.element variants in client .well-known
...
According to the docs, "e2ee" is already under "io.element":
https://github.com/vector-im/element-web/blob/develop/docs/e2ee.md#disabling-encryption-by-default
however "jitsi" is still under "im.vector.riot":
https://github.com/vector-im/element-web/blob/develop/docs/jitsi.md#configuring-element-to-use-your-self-hosted-jitsi-server
For now let's just maintain backward and forward compatibility for both
settings since the client version is out of the control of this
playbook.
2020-09-26 16:57:02 +00:00
Chris van Dijk
f6b0f0a477
Rename matrix_riot_jitsi_preferredDomain and matrix_riot_e2ee_default to Element
2020-09-26 16:24:09 +00:00
Slavi Pantaleev
9fba46e694
Merge pull request #655 from aaronraimist/element-showLabs
...
Allow configuration of Element's bug_report_endpoint_url and showLabsSettings
2020-09-25 12:02:29 +03:00
Aaron Raimist
dc2def914e
Allow configuration of Element's bug_report_endpoint_url and showLabsSettings
...
showLabsSettings is the new enableLabs I guess. enableLabs doesn't seem to do anything anymore. It had been deprecated for a while.
This PR also removes @riot-bot:matrix.org as the default welcome_user_id since it doesn't exist anymore.
2020-09-24 18:37:31 -05:00
Slavi Pantaleev
e68450f094
Upgrade Synapse (v1.20.0 -> v1.20.1)
2020-09-24 18:43:54 +03:00
Slavi Pantaleev
329fef048f
Upgrade matrix-corporal (1.10.0 -> 1.10.1)
2020-09-22 19:43:23 +03:00
Slavi Pantaleev
32ac4706cb
Upgrade matrix-corporal (1.9.0 -> 1.10.0)
2020-09-22 19:28:27 +03:00
Slavi Pantaleev
dd217137b6
Upgrade Synapse (v1.19.3 -> v1.20.0)
2020-09-22 19:28:07 +03:00
Slavi Pantaleev
65e22a6888
Upgrade Synapse (v1.19.2 -> v1.19.3)
2020-09-18 17:37:04 +03:00
Slavi Pantaleev
6db3a46f88
Merge pull request #650 from dwiegreffe/master
...
New docker image appservice-slack
2020-09-18 14:31:39 +03:00
Daniel Wiegreffe
b3926e7cca
Update main.yml
2020-09-18 13:26:07 +02:00
Max Klenk
fc2edcbecf
fix media routing
2020-09-18 10:45:01 +02:00
Max Klenk
132daba1af
fix worker routes
2020-09-18 10:18:32 +02:00
Slavi Pantaleev
e10e3e354d
Upgrade Synapse (v1.19.1 -> v1.19.2)
2020-09-16 16:35:17 +03:00
Dan Arnfield
faa96ca0c3
Update element (1.7.5 -> 1.7.7)
2020-09-15 06:15:30 -05:00
Daniel Wiegreffe
8f41041f6d
replacement of the docker image for appservice-slack to the officially maintained image
2020-09-15 09:11:56 +02:00
Scott Crossen
b24333dd0f
Use the same naming convention as the other mx-puppet suite.
2020-09-14 11:11:30 -07:00
Slavi Pantaleev
6e8a39119b
Update matrix-reminder-bot (0.1.0 -> 0.2.0)
2020-09-14 10:19:47 +03:00
0hlov3
c19abe4a76
Changes matrix_dimension_integrations_ui_url from /riot to /element https://dimension.t2bot.io/
2020-09-13 04:19:19 +02:00
Max Klenk
1e68d8b2e5
allow to pass arguments to the postgres process
2020-09-11 14:29:10 +02:00
Max Klenk
880025324a
fix redis config if no password is set
2020-09-11 10:35:50 +02:00
Max Klenk
4fdfc0a34f
add missing ratelimiting options required for load testing
2020-09-11 09:46:20 +02:00
Max Klenk
9a3d84b931
Merge branch 'master' into feature/add-worker-support
2020-09-10 13:57:11 +02:00
Max Klenk
a25a429a52
add redis support
2020-09-10 13:39:00 +02:00
Slavi Pantaleev
5bb2c43502
Add support for enabling Jitsi lobby
...
Related to #643 (Github Issue)
2020-09-10 09:08:45 +03:00
Slavi Pantaleev
2a1ec38e3a
Stop using Ansible's cron module
...
This is mainly to address SSL renewal not working for us due to:
- https://github.com/ansible/ansible/issues/71213
- https://github.com/ansible/ansible/pull/71207
Using the cron module was hacky anyway. We shouldn't need an extra
level of buggy abstraction to manage a cronjob file.
2020-09-06 10:49:19 +03:00
Slavi Pantaleev
bed16fd065
Upgrade Element (1.7.4 -> 1.7.5)
2020-09-01 20:51:51 +03:00
Slavi Pantaleev
6def66940f
Fix broken cover photo for matrix-registration
2020-09-01 18:17:04 +03:00
Slavi Pantaleev
da38a7869f
Add matrix-registration support
2020-09-01 13:46:05 +03:00
Slavi Pantaleev
a456e3a9e7
Surface certain messages at the end of playbook execution
...
Fixes #106 (Github Issue).
2020-09-01 13:12:35 +03:00
Slavi Pantaleev
e3dca2f66f
Try to avoid Docker logs growing too much for one-off containers
...
We recently had a report of the Postgres backup container's log file
growing the size of /var/lib/docker until it ran out of disk space.
Trying to prevent similar problems in the future.
2020-09-01 09:03:48 +03:00
Max Klenk
06bc430c7c
refactor to use new workers and routes they serve
2020-08-28 13:53:39 +02:00
Max Klenk
53ccc783b7
remove duplicated key
2020-08-27 15:26:46 +02:00
Max Klenk
59d1fb76b6
only apply worker redirects if workers are enabled
2020-08-27 15:25:32 +02:00
Max Klenk
567d0318b0
Merge branch 'synapse-workers' into feature/add-worker-support
2020-08-27 15:22:12 +02:00
Slavi Pantaleev
3c285bc6f5
Install lsb-release on Debian distros if unavailable
...
Certain more-minimal Debian installations may not have
lsb-release installed, which makes the playbook fail.
We need lsb-release on Debian, so that ansible_lsb
could tell us if this is Debian or Raspbian.
2020-08-27 13:58:35 +03:00
Slavi Pantaleev
6e9600ffec
Upgrade Synapse (v1.19.0 -> v1.19.1)
2020-08-27 12:59:11 +03:00
Slavi Pantaleev
daf13107a0
Add support for rust-synapse-compress-state
2020-08-21 13:53:39 +03:00
Slavi Pantaleev
b4a549b772
Upgrade Element (1.7.3 -> 1.7.4)
2020-08-17 17:03:19 +03:00
Slavi Pantaleev
9952ec6c16
Upgrade Synapse (v1.18.0 -> v1.19.0)
2020-08-17 17:02:40 +03:00
Slavi Pantaleev
fc1655cd4b
Merge pull request #633 from thedanbob/certbot-1.7.0
...
Update certbot (1.6.0 -> 1.7.0)
2020-08-17 16:47:12 +03:00
Slavi Pantaleev
5abbeb75c9
Merge pull request #632 from thedanbob/nginx-1.19.2
...
Update nginx (1.19.1 -> 1.19.2)
2020-08-17 16:44:37 +03:00
Dan Arnfield
c8754f422a
Update certbot (1.6.0 -> 1.7.0)
2020-08-16 15:01:13 -05:00
Dan Arnfield
8d373409b8
Update nginx (1.19.1 -> 1.19.2)
2020-08-16 14:59:48 -05:00
Dan Arnfield
20eea648a5
Update postgres versions (12.3 -> 12.4, etc)
2020-08-16 14:41:40 -05:00
Justin Croonenberghs
31e2a1f06b
Undo ill-advised change
...
In #628 I proposed a CORS change that turns out not to be the root of the issue. Caffeine-addled diagnosis leads to sloppy thinking, and this change should be reverted. In fact, if left it will cause problems for new installations.
2020-08-09 14:20:37 -05:00
Justin Croonenberghs
c5d18733d2
Update CORS for ma1sd
...
Even with the v2 updates listed in #503 and partially addressed in #614 , this is still needed to enable identity services to function with Element Desktop/Web. Testing on multiple clients with a clean config has confirmed this, at least for my installation.
2020-08-08 23:19:07 -05:00
Slavi Pantaleev
e6dd0fbaee
Upgrade Element (1.7.2 -> 1.7.3)
2020-08-06 19:25:52 +03:00
merklaw
fa6d85636f
Add note about installing 'docker' Python package if Docker installation is disabled
2020-08-05 17:35:25 +02:00
merklaw
87df15441c
Add note about installilng 'docker' Python package if Docker installation is disabled
2020-08-05 17:31:16 +02:00
Slavi Pantaleev
4b0a462aef
Merge pull request #620 from NachvollCiba/synapse-admin_selfbuild
...
Allow self-build images for Synapse-Admin
2020-08-04 17:23:30 +03:00
Dennis Ciba
b22b593d83
Changed setup of synapse-admin to allow for self-build images
2020-08-04 15:42:00 +02:00
Slavi Pantaleev
54195b22c7
Allow framing Jitsi
...
Hopefully fixes a regression caused by b106a9592e
.
Related to #597 (Github Pull Request).
2020-08-04 16:08:11 +03:00
benkuly
7755e5efd4
Update sms-bridge (0.3.1 -> 0.3.2)
2020-07-30 16:25:07 +03:00
Slavi Pantaleev
f78a5d4ee8
Upgrade Synapse (v1.17.0 -> v1.18.0)
2020-07-30 14:21:44 +03:00
Slavi Pantaleev
a7382924fc
Merge pull request #614 from vractal/enable-ma1sd-hashing
...
Enable ma1sd hashing by default
2020-07-30 09:30:06 +03:00
Slavi Pantaleev
68b2f2c33c
Merge pull request #613 from vractal/fix-gpg-dep
...
Replace gpg dependency for gnupg for debian compatibility
2020-07-30 09:29:25 +03:00
vractal
627c225101
Enable ma1sd hashing by default
2020-07-29 12:38:07 -04:00
Benjamin Fichtner
6539f2a156
Make ansible check mode runs silent, for all tasks which can't be idempotent
2020-07-29 13:23:15 +02:00
vractal
9b61fef271
Replace gpg dependency for gnupg for better debian compatibility
2020-07-28 15:26:16 -04:00
Slavi Pantaleev
3dcef4faa9
Merge pull request #609 from jdreichmann/newTelegramBridgeVersion
...
Bump version of mautrix-telegram to 0.8.2
2020-07-28 20:59:51 +03:00
Slavi Pantaleev
be5ca5258b
Upgrade Element (1.7.1 -> 1.7.2)
2020-07-28 19:04:11 +03:00
Johanna Dorothea Reichmann
2004143f14
Bump version of mautrix-telegram to 0.8.2
...
fixes matrix users unable to delete messages
2020-07-27 15:53:33 +02:00
Slavi Pantaleev
ae002d8ae4
Fix synapse-admin uninstallation
2020-07-26 18:09:29 +03:00
Slavi Pantaleev
3f8e5b4363
Allow framing Dimension
...
Fix regression since 2a50b8b6bb
(#597 ).
Dimension is intended to be embedded in various clients,
be it the Element service that we host (at element.DOMAIN),
some other Element (element-desktop running locally), etc.
2020-07-25 07:08:32 +03:00
Tommy Kelly
d76d91a33e
Update jitsi-web version
...
Changelog here https://github.com/jitsi/jitsi-meet/releases/tag/stable%2Fjitsi-meet_4857
2020-07-24 13:23:29 +03:00
Slavi Pantaleev
2a50b8b6bb
Merge pull request #597 from TwoTwenty/nginx-proxy-headers
...
Nginx proxy headers
2020-07-24 12:53:50 +03:00
Dan Arnfield
7a3491a32a
Fix capability names for synapse-admin
2020-07-22 21:18:15 -05:00
TwoTwenty
b106a9592e
Update matrix-jitsi.conf.j2
2020-07-22 10:39:24 -07:00
TwoTwenty
c97e7c5a3e
Update matrix-dimension.conf.j2
2020-07-22 10:39:07 -07:00
TwoTwenty
18ba885ca2
Update matrix-client-element.conf.j2
2020-07-22 10:38:50 -07:00
Slavi Pantaleev
31b79553e0
Make matrix-reminder-bot default to in-container networking
2020-07-22 16:37:14 +03:00
Slavi Pantaleev
46135fb30c
Add trailing-slash redirect for /synapse-admin
2020-07-22 13:15:05 +03:00
Slavi Pantaleev
b2ae669566
Add synapse-admin support
...
Fixes #562 (Github Issue)
2020-07-22 08:10:26 +03:00
Slavi Pantaleev
78b1ef9a5f
Add support for matrix-reminder-bot
2020-07-20 14:13:08 +03:00
hungrymonkey
d093b9b148
Added gpg as base dependency for Debian 10
...
AWS Debian marketplace image does not have gpg preinstalled
https://aws.amazon.com/marketplace/pp/B0859NK4HC?ref=cns_srchrow
TASK [matrix-base : Ensure Docker's APT key is trusted] *******************************************************************************************************************************************************
fatal: [matrix.domain.com]: FAILED! => {"changed": false, "msg": "Failed to find required executable gpg in paths: /usr/local/sbin:/usr/local/bin:/usr/sbin:/usr/bin:/sbin:/bin"}
Closes #590
2020-07-18 07:56:30 -07:00
Slavi Pantaleev
b872053a50
Merge pull request #588 from mattcen/fix-ma1sd-image-build
...
Fix issues building ma1sd Docker image
2020-07-17 11:48:50 +03:00
Slavi Pantaleev
28855d1bb4
Document matrix_ma1sd_docker_src_files_path naming
2020-07-17 11:47:15 +03:00
Slavi Pantaleev
ab188018f3
Move when statement to block
...
The when statement is supposed to be on the block, not on the individual task.
It affects all tasks within the block (they're all to be executed when ma1sd is enabled and self-building is requested0.
2020-07-17 11:44:26 +03:00
Slavi Pantaleev
c6ab1c6a90
Riot is now Element
...
Fixes #586 (Github Issue)
2020-07-17 11:31:20 +03:00
Matt Cengia
fede58fe96
Correctly tag self-built ma1sd Docker image
2020-07-17 17:12:16 +10:00
Slavi Pantaleev
de0efe96e7
Fix incorrect when statement
2020-07-17 08:59:00 +03:00
Slavi Pantaleev
298d277c6c
Upgrade riot-web (1.7.0 -> 1.7.1)
2020-07-17 08:56:08 +03:00
Matt Cengia
b0e984136f
Fix issues building ma1sd Docker image
...
The tag format used in the `ma1sd` repo have change. Versions no longer
start with 'v', and when building for non-amd64, we also need to strip
off the '-$arch' bit from the Docker image name.
Further, when building the .jar file, `ma1sd` currently names the .jar
based on the project's directory, which we call 'docker-src'. This means
other parts of the `ma1sd` build can't find the .jar file. Remedy this
by ensuring that the dir is called `docker-src/ma1sd`.
2020-07-17 13:57:47 +10:00
Dan Arnfield
c47a55d170
Update nginx (1.19.0 -> 1.19.1) and certbot (1.5.0 -> 1.6.0)
2020-07-16 06:34:14 -05:00
Slavi Pantaleev
820dc6d7fa
Fix translation issue (Riot.im -> Element)
2020-07-15 14:46:39 +03:00
Slavi Pantaleev
7c55e94cff
Upgrade riot-web (1.6.7 -> 1.7.0)
2020-07-15 14:28:23 +03:00
benkuly
a1e248e0e1
updated matrix-sms-bridge ( #581 )
...
* updated matrix sms bridge container
* remove force pull
* updated matrix-sms-bridge container
* updated matrix-sms-bridge container
* updated version of matrix-sms-bridge
* updates matrix-sms-bridge
2020-07-14 14:02:34 +03:00
Slavi Pantaleev
b50cfe8d18
Upgrade mautrix-telegram (0.7.2 -> 0.8.1)
2020-07-14 10:37:07 +03:00
Slavi Pantaleev
200f912c04
Upgrade Synapse (v1.16.1 -> v1.17.0)
...
Fixes #579 (Github Issue).
2020-07-13 14:08:50 +03:00
shadow
ddfc945fcf
Remove unused validate_config.yml, since it causes ansible warnings
2020-07-11 00:40:12 +03:00
Slavi Pantaleev
eff55e4d00
Upgrade Synapse (v1.16.0 -> v1.16.1)
2020-07-10 14:33:18 +03:00
benkuly
3553d3d513
updated version of matrix-sms-bridge
2020-07-08 18:15:18 +03:00
benkuly
8e1a418a45
updated matrix-sms-bridge container
2020-07-08 18:15:18 +03:00
benkuly
bd3223cdd4
updated matrix-sms-bridge container
2020-07-08 18:15:18 +03:00
benkuly
226d5a9c64
remove force pull
2020-07-08 18:15:18 +03:00
benkuly
c5f9e02103
updated matrix sms bridge container
2020-07-08 18:15:18 +03:00
Slavi Pantaleev
928982cffe
Upgrade Synapse (v1.15.2 -> v1.16.0)
2020-07-08 14:08:46 +03:00
Slavi Pantaleev
18ab677a96
Remove useless file
2020-07-08 00:22:47 +03:00
Slavi Pantaleev
227f1a28e3
Allow matrix_user_uid/matrix_user_gid to be specified manually
2020-07-06 11:05:34 +03:00
Panagiotis Vasilopoulos
baed917a13
Fixed repository link for mx-puppet-steam
...
- https://github.com/icewind1991/mx-puppet-steam is the link that's referenced by the documentation.
- The previous link, https://github.com/matrix-steam/mx-puppet-steam , is invalid/inaccessible to the public.
2020-07-05 23:28:03 +03:00
shadow
6293f1bdb0
Run all API self checks in check_mode
2020-07-04 15:24:33 +02:00
Slavi Pantaleev
f758ee90cb
Add |to_json to some values
2020-07-04 09:31:52 +03:00
Justin Croonenberghs
35c2655fa4
Removed troublesome #s
2020-07-03 19:01:03 -05:00
Justin Croonenberghs
1f21f0c09a
Add variables for reCAPTCHA validation
2020-07-03 18:33:25 -05:00
Slavi Pantaleev
b08ee2f2fa
Move Jitsi container image tag to a variable
...
Related to #554 (Github Pull Request).
2020-07-03 13:10:59 +03:00
Slavi Pantaleev
3710e04e10
Merge pull request #557 from izissise/mx-puppet-steam
...
Add mx-puppet-steam
2020-07-03 12:05:41 +03:00
Slavi Pantaleev
d5eb7eb949
Merge pull request #560 from aaronraimist/synapse-1.15.2
...
Upgrade Synapse (1.15.1 -> 1.15.2)
2020-07-02 18:41:51 +03:00
Aaron Raimist
78382b0ce4
Upgrade Synapse (1.15.1 -> 1.15.2)
2020-07-02 10:38:25 -05:00
Hugues Morisset
57f498217a
Add mx-puppet-steam
2020-07-01 21:01:00 +02:00
Hugues Morisset
eb0df37247
Mx-puppet-discord Use official docker image
...
https://github.com/matrix-discord/mx-puppet-discord/issues/80
Thanks Sorunome for setting up the automated build
2020-07-01 13:33:01 +02:00
Hugues Morisset
42e7f5e9bc
Add mx-puppet-discord
2020-07-01 13:31:31 +02:00
Slavi Pantaleev
744667b270
Merge branch 'master' into mx-puppet-twitter
2020-06-30 17:37:19 +03:00
Slavi Pantaleev
31f9e7bbea
Merge pull request #551 from jdreichmann/feat-mx-puppet-instagram
...
Add mx-puppet-instagram
2020-06-30 17:33:37 +03:00
Slavi Pantaleev
8b59402f79
Upgrade Coturn (4.5.1.2 -> 4.5.1.3)
...
4.5.1.3 fixes a security vulnerability:
https://github.com/coturn/coturn/security/advisories/GHSA-c8r8-8vp5-6gcm
2020-06-30 14:28:41 +03:00
Slavi Pantaleev
f41c5e89e5
Upgrade riot-web (1.6.6 -> 1.6.7)
2020-06-29 18:41:06 +03:00
Tulir Asokan
5b960bcfb5
Make sender_localpart configurable for mx-puppet-twitter
2020-06-29 18:04:40 +03:00
Tulir Asokan
13186a1ddc
Add mx-puppet-twitter
...
Signed-off-by: Tulir Asokan <tulir@maunium.net>
2020-06-29 15:28:43 +03:00
Slavi Pantaleev
de545f9c5f
Update docs on self-building and remove useless variable
...
`matrix_container_images_self_build` was not really doing anything
anymore. It previously was influencing `matrix_*_self_build` variables,
but it's no longer the case since some time ago.
Individual `matrix_*_self_build` variables are still available.
People that would like to toggle self-building for a specific component
ought to use those.
These variables are also controlled automatically (via
`group_vars/matrix_servers`) depending on `matrix_architecture`.
In other words, self-building is being done automatically for
all components when they don't have a prebuilt image for the specified
architecture. Some components only support `amd64`, while others also
have images for other architectures.
2020-06-29 14:58:03 +03:00
Slavi Pantaleev
635f385971
Use pre-built arm64 image for ma1sd
...
ma1sd 2.4.0 announced experimental support for arm64.
We're making use of those arm64 images instead of self-building.
2020-06-29 14:53:23 +03:00
Slavi Pantaleev
f30d5e0950
Merge pull request #554 from teutat3s/jitsi-update-4627-1
...
Update Jitsi to stable-4627-1
2020-06-29 09:12:47 +03:00
teutat3s
784cb3e325
Update Jitsi to stable-4627-1
2020-06-28 22:00:08 +02:00
teutat3s
4cf59098ad
Update ma1sd to v2.4.0
2020-06-28 21:47:19 +02:00
Slavi Pantaleev
19b9a1b16c
Expose mautrix-hangouts port if matrix-nginx-proxy is disabled
2020-06-28 09:01:48 +03:00
jdreichmann
0fea35cdd2
mx-puppet-instagram: add role
2020-06-27 15:23:21 +02:00
Slavi Pantaleev
a081979d39
Merge pull request #548 from pcorace/master
...
Add variables to fine tune jitsi
2020-06-27 08:01:54 +03:00
Pablo
69570de8a9
Rename variables
2020-06-25 11:20:40 -03:00
Slavi Pantaleev
5c5f1c6ab9
Add support for telling Riot to not default to E2EE
...
Related to https://github.com/vector-im/riot-web/pull/13914
2020-06-24 11:39:51 +03:00
Pablo
c341608480
Add variables to fine tune jitsi
2020-06-23 19:22:52 -03:00
Slavi Pantaleev
d2a0ec6aa9
Upgrade riot-web (1.6.5 -> 1.6.6)
2020-06-23 18:03:58 +03:00
Slavi Pantaleev
105b3524bb
Upgrade riot-web (1.6.4 -> 1.6.5)
2020-06-16 19:22:45 +03:00
Slavi Pantaleev
10bc85962e
Upgrade Synapse (1.15.0 -> 1.15.1)
2020-06-16 13:55:27 +03:00
Slavi Pantaleev
7729511a84
Make vars.yml snapshotting optional and more configurable
...
Certain people organize their inventory in a different way
and we'd like to accommodate them.
Related to #542 (Github Issue).
2020-06-14 10:01:22 +03:00
Slavi Pantaleev
67ab7e7a1b
Preserve vars.yml on the server for easily restoring
...
Fixes #542 (Github Issues).
2020-06-13 07:52:01 +03:00
benkuly
d49ee51035
remove force pull matrix-sms-bridge docker image
2020-06-12 10:23:51 +02:00
benkuly
a0661a6012
updated sms bridge docker image
2020-06-12 08:37:08 +02:00
benkuly
11e53c4fbc
add default region
2020-06-11 15:37:46 +02:00
benkuly
99639d7d7a
Merge remote-tracking branch 'github/master'
2020-06-11 15:36:02 +02:00
Slavi Pantaleev
6538ae34f5
Upgrade Synapse (v1.14 -> v1.15)
...
Fixes #539 (Github Issue).
2020-06-11 16:02:01 +03:00
Hugues Morisset
d4938333e6
Fix missing conf for double puppeting in mx-puppet-slack
2020-06-11 11:10:13 +02:00
Slavi Pantaleev
440569c47b
Update mautrix-facebook configuration
2020-06-10 09:20:06 +03:00
Slavi Pantaleev
10b3ceff72
Make Matrix federation port configurable
...
Fixes #523 (Github Issue).
2020-06-09 08:29:03 +03:00
Slavi Pantaleev
65e5020596
Proxy other /_synapse endpoints to the client API
...
Besides /_synapse/admin, there are other things like
/_synapse/oidc, etc.
We should just proxy everything.
Fixes #534 (Github Issue).
2020-06-09 08:12:58 +03:00
Slavi Pantaleev
ab32f6adf6
Add self-building support to matrix-mailer (exim-relay)
2020-06-08 09:52:34 +03:00
Slavi Pantaleev
1f414a44ff
Upgrade matrix-mailer
2020-06-08 09:37:28 +03:00
Slavi Pantaleev
0113852504
Upgrade matrix-synapse-shared-secret-auth (1.0.1 -> 1.0.2)
...
There's no change in the source code. Just a release bump for packaing
reasons. It doesn't matter much for us here, but let's be on the latest
tag anyway.
2020-06-08 09:29:55 +03:00
dasTholo
331c77a651
Add Docker Network for matrix-mautrix-telegram-db for Telegram Bridge with Postgress
...
Postgres setup like
matrix_mautrix_telegram_configuration_extension_yaml: |
appservice:
database: "postgres://XXX:XXX@matrix-postgres:5432/mxtg"
will fail without the right Dockernetwork
2020-06-06 12:42:25 +02:00
benkuly
77fd23149b
added gammu hard reset for sms modem
2020-06-06 08:28:08 +02:00
Slavi Pantaleev
e4edfd5b12
Remove now-unnecessary /dev/null hacks from riot-web
...
`/etc/nginx/conf.d/default.conf` was previously causing
some issues when used with our `--user`.
It's not the case anymore, so we can remove it.
Fixes #369 (Github Issue).
2020-06-06 08:47:56 +03:00
Slavi Pantaleev
88a4a3ab55
Update components
2020-06-06 08:25:27 +03:00
Slavi Pantaleev
b0b744dede
Add periodic reconnection configuration to mautrix-facebook bridge
2020-06-05 15:21:41 +03:00
Slavi Pantaleev
c838bd2f46
Merge pull request #514 from benkuly/master
...
added matrix-sms-bridge
2020-06-05 14:52:41 +03:00
benkuly
f68e47d3c4
renamed role matrix-sms-bridge to matrix-bridge-sms
2020-06-05 12:25:41 +02:00
Slavi Pantaleev
0fce642179
Upgrade riot-web (1.6.2 -> 1.6.3)
2020-06-04 19:52:55 +03:00
benkuly
85c6befc04
removed unused delivery report
2020-06-03 20:02:37 +02:00
benkuly
b60a4ac643
mount as slave
2020-06-03 14:25:23 +02:00
benkuly
3a3b95abfc
added dev volume to find serial by id
2020-06-03 13:13:25 +02:00
benkuly
41b1925b2a
remove dev mount
2020-06-03 13:07:36 +02:00
benkuly
0967bc3cd9
added missing z flag
2020-06-03 12:03:44 +02:00
Slavi Pantaleev
c00a7c2fe9
Update mautrix-facebook configuration (invitation, backfilling support)
2020-06-03 09:35:31 +03:00
Slavi Pantaleev
5da31ba579
Move configuration templates outside of defaults/main.yml files
2020-06-03 09:33:28 +03:00
benkuly
26846a5f6c
try privileged way
2020-06-02 22:04:52 +02:00
benkuly
2fd8216fbc
try to fix device reconnect issues
2020-06-02 18:27:33 +02:00
benkuly
cd17928805
revert remove of frequency
2020-06-02 14:56:22 +02:00
benkuly
f383b152da
removed gammu reset frequency
...
because the tty port will change
2020-06-02 14:49:55 +02:00
benkuly
0b7d6744bf
added more docs and timeout value
2020-06-02 08:39:30 +02:00
Slavi Pantaleev
f56a9a0f5f
Merge pull request #524 from cnvandijk/fix-executable-path
...
Remove hardcoded paths to commands on the host machine
2020-05-28 15:39:25 +03:00
Slavi Pantaleev
8bae39050e
Update settings for Synapse v1.14.0
2020-05-28 15:23:05 +03:00
tctovsli
45ba01510d
Synapse v.1.14.0
2020-05-28 14:04:37 +02:00
Chris van Dijk
74df10633a
Remove hardcoded command paths in playbook cron usage
2020-05-27 23:14:58 +02:00
Chris van Dijk
6e3b877dc2
Remove hardcoded command paths in playbook shell usage
2020-05-27 23:14:56 +02:00
Chris van Dijk
6334f6c1ea
Remove hardcoded command paths in systemd unit files
...
Depending on the distro, common commands like sleep and chown may either
be located in /bin or /usr/bin.
Systemd added path lookup to ExecStart in v239, allowing only the
command name to be put in unit files and not the full path as
historically required. At least Ubuntu 18.04 LTS is however still on
v237 so we should maintain portability for a while longer.
2020-05-27 23:14:54 +02:00
Ugurtan
5ace3f4a1c
fix for importing sqllite database
...
the current version fails the import, because the volume for the media is missing. It still fails if you have the optional shared secret password provider is enabled, so that might need another mount. Commenting out the password provider in the hoimeserver.yaml during the run works as well.
2020-05-27 18:13:36 +02:00
benkuly
e4f128a1ba
fixed wrong gammu path
2020-05-26 18:19:22 +02:00
benkuly
3d63ee6d13
add group dialout to container
2020-05-26 18:12:26 +02:00
Slavi Pantaleev
a353217cf3
Add delivery_receipts option for matrix-bridge-mautrix-facebook
2020-05-26 09:49:12 +03:00
benkuly
a7fd27c43c
removed jinja command
2020-05-25 19:36:19 +02:00
benkuly
ecf3116c4a
fixed wrong gammu config dest
2020-05-25 19:34:40 +02:00
benkuly
f8663512de
fixed wrong paths
2020-05-25 19:31:03 +02:00
benkuly
805708e089
fix wrong used paath for gammu config file
2020-05-25 19:21:07 +02:00
benkuly
73b71a34c8
try to fix gammu-smsdrc is not a file
2020-05-25 19:19:30 +02:00
benkuly
1f570b3251
revert last change
2020-05-25 19:09:08 +02:00
benkuly
469554b836
try to use other mount option
...
to prevent docker from using dir instead of file
2020-05-25 19:04:56 +02:00
benkuly
eb8e3572fd
fixed wrong behaviour of gammu
2020-05-25 15:37:46 +02:00
benkuly
f0ff8112c7
database admin username must be neo4j
2020-05-23 20:51:07 +02:00
benkuly
fe54690ea1
fixed missing registration var
2020-05-23 15:32:16 +02:00
benkuly
63705f94f1
removed templates
2020-05-23 15:30:31 +02:00
benkuly
c802009b5c
fixed wrong var name
2020-05-23 15:12:56 +02:00
benkuly
be101a3114
added missing service to service list
2020-05-23 14:16:44 +02:00
benkuly
9ed80e754b
added missing variable
2020-05-23 13:54:07 +02:00
benkuly
1ffa4a326c
matrix-sms-bridge:
...
added docs, added seperate service for database, pr comments
2020-05-23 13:14:24 +02:00
Slavi Pantaleev
4c4f208613
Upgrade mautrix-telegram (0.7.0 -> 0.7.2)
2020-05-22 19:54:30 +03:00
Slavi Pantaleev
5c7e5c57bd
Upgrade riot-web (1.6.1 -> 1.6.2)
2020-05-22 18:08:17 +03:00
benkuly
4913ca4bb2
matri-sms-bridge:
...
better path handling, fixed some mistakes
2020-05-22 13:59:38 +02:00
benkuly
2d75fca257
added matrix-sms-bridge
2020-05-22 13:50:59 +02:00
Slavi Pantaleev
3198ed0dc9
Add missing matrix_mx_puppet_slack_container_http_host_bind_port variable
2020-05-22 11:12:06 +03:00
Slavi Pantaleev
4111e42070
Merge pull request #513 from joao-p-marques/fix/mx-puppet-bridge
...
Fix/mx puppet bridge
2020-05-22 10:53:37 +03:00
joao-p-marques
afd6d7e45a
change var name to correct one
2020-05-21 23:40:54 +01:00
joao-p-marques
c1bb4f680e
enable oauth
2020-05-21 23:40:38 +01:00
Dan Arnfield
ee3944bcdb
Update postgres (12.2 -> 12.3, etc)
2020-05-21 11:40:40 -05:00
Slavi Pantaleev
8fb3ce6f6d
Upgrade Synapse (v1.12.4 -> v1.13.0)
2020-05-19 21:35:32 +03:00
Slavi Pantaleev
a3259bbd77
Add |to_json to some variables
2020-05-19 21:15:23 +03:00
louis
a03e95b7eb
enable by default v2 api prefix for ma1sd
2020-05-19 17:06:11 +02:00
Slavi Pantaleev
7a2dbdc2d7
Update components
2020-05-19 15:06:35 +03:00
Slavi Pantaleev
ba23779b05
Fix incorrect Jitsi container image tags
...
Related to #508 (Github Pull Request).
2020-05-17 21:23:18 +03:00
teutat3s
47001258b5
Ensure prosody plugin path created / permissions
2020-05-17 14:19:58 +02:00
teutat3s
fbd8f3ec9b
Jitsi prosody: add volume /prosody-plugins-custom
2020-05-16 15:12:51 +02:00
teutat3s
c2df3d7bbf
Update jitsi containers to 4548-1
2020-05-16 15:00:44 +02:00
Marcel Partap
93f4111654
Prevent 404s when Riot tries to retrieve domain-specific config.json
...
Riot unconditionally asks for a config.${document.domain}.json, c.f.
https://github.com/vector-im/riot-web/blame/develop/src/vector/getconfig.ts#L24
2020-05-13 18:34:14 +02:00
Dan Arnfield
787f12e70d
Fix typo in validation
2020-05-08 13:56:31 -05:00
Slavi Pantaleev
dd527d5968
Ensure correct dimension.db file ownership
...
This is mostly here to guard against problems happening
due to server migration and doing `chown -R matrix:matrix /matrix`.
Normally, the file is owned by `1000:1000`, as expected.
If ownership changes, Dimension could still start, but it will fail the
first time it tries to write to the database. Explicitly chowning
before startup guards against this.
Related to #485 and #486 (Github Pull Requests).
Also related to ccc7aaf0ce
.
2020-05-06 11:28:09 +03:00
Slavi Pantaleev
ae1b1be3f4
Do not use matrix:matrix for Dimension configuration
...
Dimension runs as the `node` user in the container (`1000:1000`).
It doesn't seem like we have a way around it. Thus, its configuration
must also be readable by that user (or group, in this case).
2020-05-06 11:20:14 +03:00
Slavi Pantaleev
c1c8b8e62c
Warn about matrix_user_uid/matrix_user_gid
...
We don't really need to fail in such a spectactular way,
but it's probably good to do. It will only happen for people
who are defining their own user/group id, which is rare.
It seems like a good idea to tell them that this doesn't work
as they expect anymore and to ask them to remove these variables,
which otherwise give them a fake sense of hope.
Related to #486 (Github Pull Request).
2020-05-06 10:17:19 +03:00
Slavi Pantaleev
36c61b5b4e
Introduce a separate group variable (matrix_user_groupname)
...
Related to #485 (Github Pull Request).
2020-05-06 10:02:47 +03:00
Slavi Pantaleev
ccc7aaf0ce
Fix "Migrating to a new server" flow due to dynamic user/group creation
2020-05-06 09:55:40 +03:00
Slavi Pantaleev
6032affc20
Merge pull request #486 from FanchTheSystem/avoid_fixed_uid_and_gid
...
Remove default UID/GID
2020-05-06 09:46:49 +03:00
Slavi Pantaleev
8fea6f5130
Make sure matrix_user_uid and matrix_user_gid are always set
...
If one runs the playbook with `--tags=setup-all`, it would have been
fine.
But running with a specific tag (e.g. `--tags=setup-riot-web`) would
have made that initialization be skipped, and the `matrix-riot-web` role
would fail, due to missing variables.
2020-05-06 09:43:30 +03:00
Slavi Pantaleev
4359571d38
Upgrade riot-web to v1.6.0
2020-05-05 14:02:14 +03:00
Fanch
a1c5a197a9
remove default UID/GID
2020-05-04 21:43:54 +02:00
Dan Arnfield
e750c6c6ff
Update coturn (4.5.1.1 -> 4.5.1.2)
2020-05-04 09:46:45 -05:00
Horvath Gergely
d6266a8c47
fix skype bridge being rebuilt when upstream changed
2020-05-01 21:34:42 +02:00
Chris van Dijk
7585bcc4ac
Allow the matrix user username and groupname to be configured separately
...
No migration steps should be required.
2020-05-01 19:59:32 +02:00
Chris van Dijk
cf0e56e92b
Consistent usage of matrix username and groupname, not uid and gid
...
This should be a no-op, no migration necessary.
2020-05-01 19:39:17 +02:00
Chris van Dijk
741064a178
Fix group ownership of Dimension base path and config
...
Ansible will migrate the ownership of the base path and config path, but
manual intervention will be required in order to migrate the ownership
of files in those directories (i.e. dimension.db).
Stop the services:
(local)$ ansible-playbook -i inventory/hosts setup.yml --tags=stop
Fix the permissions on the server:
(server)# chown -Rv "{{ matrix_user_username }}:{{ matrix_user_username }}" "{{ matrix_dimension_base_path }}"
which would typically look like:
(server)# chown -Rv matrix:matrix /matrix/dimension/
Reconfigure Dimension and start the services:
(local)$ ansible-playbook -i inventory/hosts setup.yml --tags=setup-dimension,start
2020-05-01 19:28:30 +02:00
Slavi Pantaleev
0e26810162
Merge pull request #478 from cnvandijk/feature-jitsi-ldap-auth
...
Add support for Jitsi LDAP authentication
2020-04-30 10:09:48 +03:00
Chris van Dijk
9d6614e80f
Add support for Jitsi LDAP authentication
2020-04-29 17:57:38 +02:00
Slavi Pantaleev
669780976f
Update mappings configuration example
2020-04-29 09:29:03 +03:00
John Goerzen
a2df0016eb
Update matrix-appservice-irc to 0.16.0
...
Note the potential breaking change
Resolves #474
2020-04-28 11:43:52 -05:00
GuillauG
29f606bac7
Add 'permalinkPrefix' and 'default_theme' for configuring riot web ( #472 )
...
* add permalinkPrefix to riot-web config
* add feature to change default theme of riot-web via its config file
* remove matrix_riot_web_change_default_theme and provide sane default
2020-04-28 13:10:33 +03:00
teutat3s
37d427c05c
Update Jitsi docker images to stable 4416
2020-04-28 03:52:43 +02:00
Slavi Pantaleev
438652c732
Switch Slack image to a working tag
...
We've had reports of the `:latest` tag not working anymore,
leading to an error as described here:
https://github.com/spantaleev/matrix-docker-ansible-deploy/issues/341
2020-04-27 10:49:06 +03:00
Slavi Pantaleev
9cc0c5955d
Use |quote in some command calls
2020-04-24 09:59:30 +03:00
Aaron Raimist
23bfaa72ec
Upgrade Synapse (1.12.3 -> 1.12.4)
2020-04-23 13:30:50 -05:00
Rodrigo Belem
033dfcb26f
Remove duplicated whitelist entry in skype main.yml
2020-04-23 09:06:08 -04:00
Rodrigo Belem
4149e03b69
Initial mx-puppet-slack bridge role
2020-04-23 09:06:08 -04:00
Slavi Pantaleev
272888d917
Merge pull request #462 from cnvandijk/feature-dimension-unfederated
...
Add support for running dimension in an unfederated environment
2020-04-22 22:47:14 +03:00
Slavi Pantaleev
0af5a8c4cc
Simplify mx-puppet-skype blacklists a bit
...
Related to #466 (Github Pull Request).
2020-04-22 22:42:24 +03:00
Rodrigo Belem
b08a49d94d
Allow skype more configurations for relay and provisioning
2020-04-22 15:26:31 -04:00
Chris van Dijk
3f4bc9b881
Move config supprt for unfederated dimension into group_vars
2020-04-22 19:23:56 +02:00
Slavi Pantaleev
9991d545dd
Add note about synapse-janitor and require explicit confirmation for usage
...
Fixes #465 (Github Issue).
Related to https://github.com/xwiki-labs/synapse_scripts/pull/12 .
2020-04-21 21:48:06 +03:00
Slavi Pantaleev
554da8338a
Merge pull request #463 from hooger/architecture
...
Architecture
2020-04-20 16:45:59 +03:00
Marcel Partap
46984a4f99
Nginx conf: more testing less b0rk
2020-04-19 21:42:34 +02:00
Christoph Johannes Kleine
765c046beb
add missing ; to matrix-synapse.conf.j2
2020-04-19 19:50:42 +02:00
Marcel Partap
5f63d287b7
Move synapse worker ports up 10k
2020-04-19 19:05:03 +02:00
Marcel Partap
e4763c21bc
nginx config: route traffic to workers on matrix-synapse
...
FIXME: horrid duplication in template file
2020-04-19 19:05:03 +02:00
Marcel Partap
66a4073512
Publish synapse worker ports, need to be accessible to nginx
2020-04-19 19:05:03 +02:00
Marcel Partap
cf452fdf0a
Fix corner-cases found through testing (aka ansible is nuts)
2020-04-19 19:05:03 +02:00
Marcel Partap
a14b9c09ad
Add to synapse nginx template conditional URL rewrites for workers
...
· 😅 How to keep this in sync with the matrix-synapse documentation?
· regex location matching is expensive
· nginx syntax limit: one location only per block / statement
· thus, lots of duplicate statements in this file
2020-04-19 19:05:03 +02:00
Marcel Partap
353bc7c362
Add initial support for synapse workers
...
· needs documentation; no checks yet for port clashes or typos in worker name
· according to https://github.com/matrix-org/synapse/wiki/Workers-setup-with-nginx#results
about 90% of requests go to the synchrotron endpoint
· thus, the synchrotron worker is especially suited to be load-balanced
· most of the other workers are documented to support only a single instance
· https://github.com/matrix-org/synapse/blob/master/docs/workers.md
2020-04-19 19:05:03 +02:00
Dan Arnfield
e2de6a1569
Update nginx (1.17.9 -> 1.17.10)
2020-04-19 08:38:53 -05:00
Horvath Gergely
bd61598faf
add experimental(?) architecture support for arm32 and arm64
...
the changes are necessary because certbot images are tagged, so docker does not recognize the necessary architecture
2020-04-18 22:55:19 +02:00
Chris van Dijk
da2e90dcc1
Remove check for "Fail if Matrix Federation is disabled"
...
This playbook now suports running dimension in both a federated and an
unfederated environment.
2020-04-18 19:01:45 +02:00
Chris van Dijk
3ddb8cd148
Add support for running dimension in an unfederated environment
...
This config change follows:
https://github.com/turt2live/matrix-dimension/blob/master/docs/unfederated.md
2020-04-18 19:00:20 +02:00
Horvath Gergely
203a319881
force build docker image if git master changes
2020-04-18 12:56:36 +02:00
Slavi Pantaleev
c13c29f48e
Fix |to_nice_yaml breaking formatting
...
Well, actually 8cd9cde
won't work, unless we put the
`|to_nice_yaml` thing on a new line.
We can, but that takes more lines and makes things look uglier.
Using `|to_json` seems good enough.
The whole file is parsed as YAML later on and merged with the
`_extension` variable before being dumped as YAML again in the end.
2020-04-18 11:06:53 +03:00
Slavi Pantaleev
8cd9cdead0
Improve consistency
2020-04-18 11:05:47 +03:00
Slavi Pantaleev
27cae3d90c
Merge pull request #461 from lampholder/toml/allowed_local_3pids
...
Expose allowed local 3pids as a configurable option
2020-04-18 11:05:01 +03:00
Tom
e54428b160
Expose allowed local 3pids as a configurable option
2020-04-18 00:11:30 +01:00
Slavi Pantaleev
43201c9e22
Upgrade matrix-corporal (1.8.0 -> 1.9.0)
2020-04-17 22:26:55 +03:00
Slavi Pantaleev
9a43cc02e0
Only install docker-python if matrix_docker_installation_enabled
...
Should help with #300 (Github Issue).
2020-04-17 09:45:35 +03:00
Slavi Pantaleev
4d260c0dd5
Add encryption configuration defaults to Mautrix bridges
...
Related to #451 (Github Issue).
2020-04-17 09:44:48 +03:00
Chris van Dijk
88c1fbf6aa
Fix hardcoded values in postgres script matrix-change-user-admin-status
2020-04-17 00:54:38 +02:00
Chris van Dijk
d83236ea0e
Fix inconsistent whitespace
2020-04-17 00:53:26 +02:00
Rodrigo Belem
cc8fc55ac6
Upstream set mx-puppet-skype default port to 8438
2020-04-15 15:13:56 -04:00
Slavi Pantaleev
69338d045a
Simplify if conditions
2020-04-12 01:09:22 +03:00
John Goerzen
ddc44996e3
Fix to avoid putting an incorrect empty jitsi.preferredDomain when no local jitsi
2020-04-11 17:07:30 -05:00
Slavi Pantaleev
7035af87d8
Add support for Jitsi discovery for Riot via /.well-known/matrix/client
...
This will not work yet, as no version of Riot currently supports it.
It's expected to land in riot-web v1.5.16 via matrix-org/matrix-react-sdk#4348 .
2020-04-09 09:58:35 +03:00
Slavi Pantaleev
c1a66d3422
Put mx-puppet-skype configs in ./config directory, not ./data
2020-04-09 09:44:10 +03:00
Slavi Pantaleev
59d05ad72c
Merge pull request #441 from Jozian/skype
...
Initial mx-puppet-skype bridge role
2020-04-09 09:24:11 +03:00
Slavi Pantaleev
67a5ef97ba
Fix missing "stun:" prefix for jitsi/web STUN server URLs
...
Hopefully fixes an error like this (which I haven't been able to
reproduce, but..):
> [modules/xmpp/strophe.util.js] <Object.i.Strophe.log>: Strophe: Error: Failed to construct 'RTCPeerConnection': 'matrix.DOMAIN' is not one of the supported URL schemes 'stun', 'turn' or 'turns'.
2020-04-09 09:16:10 +03:00
Rodrigo Belem
1107207147
Initial mx-puppet-skype bridge role
2020-04-08 19:25:21 -04:00
Slavi Pantaleev
61fffa169c
Use Jitsi STUN servers instead of Google ones
...
These are some new defaults that we switch to, to follow upstream
changes:
- https://github.com/jitsi/docker-jitsi-meet/commit/264df04
- 3121494d4b
2020-04-08 19:08:15 +03:00
Slavi Pantaleev
14786071af
Pass JVB_AUTH_PASSWORD environment variable to make JVB startup happy
...
We define this password in the `sip-communicator.properties`
configuration file, so this is not needed for actually running JVB.
However, it does a (useless) safety check during container startup,
and we need to make that check happy.
2020-04-08 10:23:51 +03:00
Slavi Pantaleev
f798605836
Undefine Jitsi secrets and require their (re-)definition
2020-04-08 09:37:54 +03:00
teutat3s
f9d39f1c0c
update Jitsi, add generate-jitsi-passwords script
2020-04-08 02:07:52 +02:00
Slavi Pantaleev
fab1e23609
Make a few more Jitsi Meet options configurable
2020-04-06 21:35:49 +03:00
Horvath Gergely
17e7bae2cc
make selfbuild be forced on (and only) git master change
2020-04-06 18:42:15 +02:00
Horvath Gergely
3d096a2b13
make selfbuild be forced on (and only) git master change
2020-04-06 18:36:17 +02:00
Alin Trăistaru
604e581a97
add ntpd defaults
2020-04-05 10:00:09 +03:00
Slavi Pantaleev
5cca71e8da
Merge pull request #434 from teutat3s/missing_jitsi_jicofo_auth_url
...
add missing jitsi auth URL conditional
2020-04-04 09:48:39 +03:00
Alin Trăistaru
697e91aa05
jitsi-web: add more defaults
2020-04-04 08:29:37 +03:00
teutat3s
9adddb19e2
fix whitespace
2020-04-04 03:34:49 +02:00
teutat3s
ea072eb38d
add missing jitsi auth URL conditional
2020-04-04 02:23:13 +02:00
teutat3s
4ed0632327
fix jitsi guests mode according to docker-jitsi-meet repo
2020-04-03 18:36:23 +02:00
Slavi Pantaleev
f78fa3f328
Upgrade Synapse (1.12.0 -> 1.12.3)
2020-04-03 14:26:30 +03:00
Slavi Pantaleev
5927ed56b0
Fix matrix_ma1sd_service_stat.stat.exists sometimes being undefined
2020-04-03 13:55:23 +03:00
Slavi Pantaleev
c3efd2966f
Fix mxisd -> ma1sd migration for older versions of Ansible
2020-04-03 13:12:03 +03:00
Slavi Pantaleev
845f5f007b
Make Synapse use ma1sd (if enabled) for threepid registration
2020-04-03 10:08:37 +03:00
Slavi Pantaleev
a0b82d2234
Fix mxisd -> ma1sd data migration (mxisd.db -> ma1sd.db)
2020-04-03 09:54:05 +03:00
Slavi Pantaleev
a4ea2f850b
Provide a friendlier migration message from people using matrix_mxisd_ variables
2020-04-03 09:42:14 +03:00
Slavi Pantaleev
be19511338
Add missing container self-build variables for ma1sd
2020-04-03 09:28:44 +03:00
Slavi Pantaleev
59ccff9bab
Fix mxisd -> ma1sd file copying
...
When the playbook executes on a remote host (as it usually does),
we need to explicitly say `src` is a remote file and not relative
to the playbook.
2020-04-03 09:27:22 +03:00
Marcel Partap
4172345d34
Fix regex matching against old variable names in ma1sd validation task
2020-04-02 17:20:06 +02:00
Marcel Partap
e4ceeccd14
Add mxisd => ma1sd migration task
2020-04-02 17:19:40 +02:00
Marcel Partap
92672f8949
matrix-ma1sd/tasks/validate_config.yml: can ansible process regex in when statements?
2020-04-02 11:31:59 +02:00
Marcel Partap
ed34d0ac39
fix "noeol" ("No newline at end of file" == missing 0A byte at file end)
2020-04-02 11:31:59 +02:00
Marcel Partap
c2d384d2ef
some more mxisd to ma1sd string/URL replacements
2020-04-02 11:31:38 +02:00
Marcel Partap
8c5c2e5eec
Bump ma1sd version to 2.3.0
2020-04-02 11:31:38 +02:00
Marcel Partap
874e2e1fc0
Rename variables (s/mxisd/ma1sd/) and adapt roles
2020-04-02 11:31:38 +02:00
Marcel Partap
9d0803cdf9
Specify up-to-date version 2.2.2 of ma1sd docker image
2020-04-02 11:26:30 +02:00
Marcel Partap
187dedf920
Duplicate matrix-mxisd role for matrix-ma1sd fork
...
(adapting strings and URLs)
2020-04-02 11:26:30 +02:00
Slavi Pantaleev
e1774c648a
Upgrade riot-web (v1.5.14 -> v1.5.15)
2020-04-01 18:11:12 +03:00
Slavi Pantaleev
8bcc9712d0
Make follow_redirects configurable when checking /.well-known/matrix/client
...
Discussed in #101 (Github Issue).
2020-03-31 11:45:32 +03:00
Slavi Pantaleev
ca04ca9ffe
Make it possible to change Jitsi web UI language
...
Fixes #427 (Github Issue).
2020-03-30 17:05:00 +03:00
Slavi Pantaleev
26b73e3a4b
Do not install unnecessary bash-completion
2020-03-30 17:00:20 +03:00
Slavi Pantaleev
edb77cf799
Merge pull request #426 from bnounours/master
...
Fix bad network and bad path to postgres env in docker run
2020-03-30 16:55:02 +03:00
Slavi Pantaleev
067588b262
Upgrade riot-web
2020-03-30 16:54:18 +03:00
Mickaël Cornière
82989b662a
Fix bad network and bad path to postgre env
2020-03-29 23:49:09 +02:00
Slavi Pantaleev
c655a6467a
Fix --tags=start regression
...
Related to #425 (Github Pull Request)
2020-03-29 15:48:46 +03:00
Slavi Pantaleev
ac60115190
Fix git installation bug during synapse-simple-antispam installation
...
Fixes #424 (Github Issue).
2020-03-29 10:11:08 +03:00
Christian Wolf
3f62ff1120
Overcame bug in current systemd
2020-03-28 17:33:35 +01:00
Christian Wolf
51c271905d
Removed bug in enhanced waiting
2020-03-28 13:00:56 +01:00
Christian Wolf
8c9b5ea6dd
Removed a few syntax bugs in Archlinux configuration
2020-03-28 13:00:01 +01:00
Christian Wolf
4bc73ff4bb
Removed autoinstallation of cron due to documentation
2020-03-28 11:57:32 +01:00
Christian Wolf
26bc66117d
Removed redunadant waiting
2020-03-28 11:42:41 +01:00
Christian Wolf
2849f0b1b8
Changed task titles to be consistent
2020-03-28 11:39:35 +01:00
Christian Wolf
d84b2868b7
Added basic changes to make it compatible with Archlinux
2020-03-28 11:39:15 +01:00
Slavi Pantaleev
3860709e19
Ensure matrix-mautrix-hangouts-db container is killed/removed
2020-03-25 18:03:45 +02:00
mooomooo
eebc6e13f8
Made directory variables for /etc/systemd/system , /etc/cron.d , /usr/local/bin
2020-03-24 11:27:58 -07:00
Slavi Pantaleev
0f39cb9987
Fix incorrect server_name for Jitsi
...
Fixes #417 (Github Issue)
2020-03-24 17:57:39 +02:00
Slavi Pantaleev
0e69a51036
Upgrade matrix-corporal (1.7.2 -> 1.8.0)
2020-03-24 16:41:24 +02:00
Slavi Pantaleev
fcb4f2579d
Upgrade matrix-corporal (1.7.1 -> 1.7.2)
2020-03-24 16:15:52 +02:00
Slavi Pantaleev
d605b219a2
Manage Jitsi configuration by ourselves for most components
...
We do this for 2 reasons:
- so we can control things which are not controllable using environment
variables (for example `stunServers` in jitsi/web, since we don't wish
to use the hardcoded Google STUN servers if our own Coturn is enabled)
- so playbook variable changes will properly rebuild the configuration.
When using Jitsi environment variables, the configuration is only built
once (the first time) and never rebuilt again. This is not the
consistent with the rest of the playbook and with how Ansible operates.
We're not perfect at it (yet), because we still let the Jitsi containers
generate some files on their own, but we are closer and it should be
good enough for most things.
Related to #415 (Github Pull Request).
2020-03-24 09:35:21 +02:00
Slavi Pantaleev
cdd9ee1962
Add Jitsi support
2020-03-23 17:19:15 +02:00
Slavi Pantaleev
9032151486
Update Synapse configuration for v1.12.0
...
Some options are no longer required and have sensible default values.
2020-03-23 16:15:03 +02:00
tctovsli
949b5d7a46
Release synapse v.1.12.0
2020-03-23 15:03:40 +01:00
Slavi Pantaleev
027056e027
Fix weird path creation
...
Fixes #403 (Github Issue).
2020-03-18 18:24:30 +02:00
Slavi Pantaleev
b6cf5758cc
Merge pull request #407 from thedanbob/nginx-certbot
...
Update nginx (1.17.8 -> 1.17.9) and certbot (1.2.0 -> 1.3.0)
2020-03-18 13:56:13 +02:00
Slavi Pantaleev
e9d7a6faf7
Merge pull request #406 from thedanbob/postgres-12.2
...
Update postgres (12.1 -> 12.2, etc)
2020-03-18 13:54:58 +02:00
Dan Arnfield
c7440b723a
Update certbot (1.2.0 -> 1.3.0)
2020-03-18 06:54:10 -05:00
Dan Arnfield
4065d74a5f
Update nginx (1.17.8 -> 1.17.9)
2020-03-18 06:53:59 -05:00
Dan Arnfield
e36de7e627
Update postgres (12.1 -> 12.2, etc)
2020-03-18 06:50:51 -05:00
Dan Arnfield
bfd87000cc
Update riot-web (1.5.12 -> 1.5.13)
2020-03-18 06:40:01 -05:00
Slavi Pantaleev
3cee815baf
Fix some typos
2020-03-15 11:34:35 +02:00
Slavi Pantaleev
063e988db2
Make gradle installation fail in a friendlier way on CentOS
2020-03-15 11:26:24 +02:00
Slavi Pantaleev
2b85fde103
Rename some variables for consistency
2020-03-15 10:15:27 +02:00
Slavi Pantaleev
8fe97abe7d
Wire matrix_container_images_self_build to self_build variables via group_vars/matrix_servers
...
This keeps the roles cleaner and more independent of matrix-base,
which may be important for people building their own playbook
out of the individual roles and not using the matrix-base role.
2020-03-15 10:10:41 +02:00
Horvath Gergely
30fd1ab2d6
add forgotten support for variable for matrix-bridge-mautrix-facebook role
2020-03-14 20:40:31 +01:00
Horvath Gergely
976f1a4582
fix riot-web version strip
2020-03-14 19:54:13 +01:00
Horvath Gergely
2d537484d5
introduce variable
2020-03-14 19:16:29 +01:00
Horvath Gergely
a164fe485e
fix wrong variable name
2020-03-14 19:14:39 +01:00
Horvath Gergely
3c8535c3bc
check ansible version for self-building in every role
2020-03-08 19:17:10 +01:00
Horvath Gergely
6232a81caf
check if target distro is Raspbian and install docker accordingly
2020-03-08 19:04:41 +01:00
Horvath Gergely
a5d94eec0b
refactor variable names
2020-03-08 00:28:14 +01:00
Horvath Gergely
310aa685f9
refactor based on Slavi's requests
2020-03-08 00:24:00 +01:00
Horvath Gergely
d53d63ab07
Merge branch 'master' of https://github.com/spantaleev/matrix-docker-ansible-deploy into raspberry-pi
2020-03-07 13:57:44 +01:00
David Gnedt
c55682d099
Update synapse-janitor to support current synapse database schema
2020-03-06 17:48:16 +01:00
Slavi Pantaleev
e8d0b72a7b
Merge pull request #394 from swarnat/customization_welcome
...
Customization welcome
2020-03-06 16:50:54 +02:00
Stefan Warnat
46664c4758
Adjust variable names
2020-03-06 14:31:15 +01:00
Slavi Pantaleev
00596452c2
Update riot-web (1.5.11 -> 1.5.12)
2020-03-05 10:53:35 +02:00
Stefan Warnat
054e6fed0c
rearrange main.yml of riot-web and use same logo URL for both logos
2020-03-03 22:27:39 +01:00
Stefan Warnat
0322a5443a
additional customizations of welcome page
2020-03-03 22:16:52 +01:00
Stefan Warnat
8bc4f56385
Improve customization of welcome page
2020-03-03 19:01:43 +01:00
Slavi Pantaleev
a727e7c497
Upgrade Synapse (v1.11.0 -> v1.11.1)
2020-03-03 17:32:22 +02:00
Slavi Pantaleev
be6c048abe
Remove useless matrix_appservice_webhooks_webhooks_port
...
In relation to #392 (Github Issue)
2020-03-03 12:38:26 +02:00
Slavi Pantaleev
bbe7bff184
Merge pull request #392 from swarnat/fix_webhooks
...
Switch Webhooks Port, which is exposed for external nginx
2020-03-03 12:37:39 +02:00
tctovsli
209e716580
New version of matrix-riot-web
2020-03-03 09:08:37 +01:00
Stefan Warnat
d5e5572f2c
switch Port, which is exposed to same, which is internal used
2020-03-02 18:36:58 +01:00
Slavi Pantaleev
37f3a2d5a8
Add support for themes to riot-web
2020-02-26 08:40:35 +02:00
Julian Foad
3228cfd229
Add custom server name string in Riot config.
...
This adds into the Riot config.json the field
'default_server_config.m.homeserver.server_name'
with, by default, the value of the playbook's 'matrix_domain' variable.
Riot displays this string in its login page and will now say 'Sign in to
your Matrix account on example.org' (the server name) instead of 'Sign
in ... on matrix.example.org' (the server domain-name).
This string can be configured by setting the playbook variable
'matrix_riot_web_default_server_name'
to any string, so we can make Riot say for example 'Sign in ... on Our
Server'.
2020-02-24 14:00:43 +00:00
Julian Foad
7a45c651d2
Use new syntax for default HS/IS in Riot config.
...
This change makes no difference in itself, but is a pre-requisite for
adding the 'server name' config, and the old syntax is deprecated.
2020-02-24 13:55:00 +00:00
Horvath Gergely
6366817930
Merge branch 'master' of https://github.com/spantaleev/matrix-docker-ansible-deploy into raspberry-pi
2020-02-24 08:59:25 +01:00
Horvath Gergely
f56825580d
hangouts-bridge no-proxy warning does not trigger when 'matrix_nginx_proxy_enabled = false' is explicitly set
2020-02-24 08:59:10 +01:00
Aaron Raimist
6ba961bd11
Upgrade riot-web (1.5.9 -> 1.5.10)
2020-02-23 12:35:29 -06:00
Horvath Gergely
610c98d6ab
add riot-web support for raspberry pi
2020-02-21 18:51:56 +01:00
Horvath Gergely
40d0fea06c
add mautrix-hangouts support for raspberry pi
2020-02-21 18:27:26 +01:00
Horvath Gergely
ac118d2f25
Merge branch 'master' of https://github.com/spantaleev/matrix-docker-ansible-deploy into raspberry-pi
2020-02-21 18:09:45 +01:00
Horvath Gergely
f28c7b71d2
build mxisd for rapsberry pi
2020-02-21 18:08:24 +01:00
Slavi Pantaleev
5de8f27122
Upgrade Synapse (v1.10.1 -> v1.11.0)
2020-02-21 12:32:35 +02:00
Horvath Gergely
8c1e00a6cd
add mautrix-facebook support for raspberry pi
2020-02-21 07:56:28 +01:00
Horvath Gergely
5a4e4f6fb9
Merge branch 'master' of https://github.com/spantaleev/matrix-docker-ansible-deploy into raspberry-pi
2020-02-21 07:36:49 +01:00
Horvath Gergely
697f86d06f
minor fix
2020-02-19 22:26:43 +01:00
Horvath Gergely
7c4a86bc6b
add coturn support for raspberry pi
2020-02-19 22:18:17 +01:00
Slavi Pantaleev
6106a80708
Merge pull request #383 from sathiscode/patch-1
...
Fixed appservice webhooks container port mapping
2020-02-19 10:14:44 +02:00
Slavi Pantaleev
8343ff5268
Add missing to_json filter
2020-02-19 10:13:36 +02:00
Sathis
ff59901bc0
Fixed appservice webhooks container port mapping
2020-02-19 13:03:06 +05:30
Horvath Gergely
d8b31afd1a
Merge branch 'master' of https://github.com/spantaleev/matrix-docker-ansible-deploy into raspberry-pi
2020-02-18 21:46:59 +01:00
orange
45e32bdad2
add synapse config enable_group_creation
2020-02-18 18:05:54 +01:00
Horvath Gergely
4b7f0787ca
Merge branch 'master' of https://github.com/spantaleev/matrix-docker-ansible-deploy
2020-02-17 21:52:34 +01:00
Horvath Gergely
a096eafb45
add possibility to install synapse on raspberry pi
2020-02-17 21:48:48 +01:00
Dan Arnfield
96557c6280
Update synapse (1.10.0 -> 1.10.1)
2020-02-17 13:27:05 -06:00
Slavi Pantaleev
47696056d3
Upgrade riot-web (1.5.8 -> 1.5.9)
2020-02-17 16:12:29 +02:00
Horvath Gergely
bbbcc18c70
Merge branch 'master' of https://github.com/spantaleev/matrix-docker-ansible-deploy
2020-02-15 18:30:03 +01:00
Slavi Pantaleev
da98a06553
Merge pull request #377 from thedanbob/certbot-1.2.0
...
Update certbot (1.0.0 -> 1.2.0)
2020-02-12 13:58:32 +01:00
Slavi Pantaleev
2b6c263900
Merge pull request #376 from thedanbob/nginx-1.17.8
...
Update nginx (1.17.7 -> 1.17.8)
2020-02-12 13:58:19 +01:00
Dan Arnfield
bb08022623
Update certbot (1.0.0 -> 1.2.0)
2020-02-12 06:56:25 -06:00
Dan Arnfield
74235df820
Update nginx (1.17.7 -> 1.17.8)
2020-02-12 06:52:11 -06:00
Dan Arnfield
bac7685ce4
Update synapse (1.9.1 -> 1.10.0)
2020-02-12 06:46:52 -06:00
Horvath Gergely
8a0c3146d3
Merge branch 'master' of https://github.com/spantaleev/matrix-docker-ansible-deploy
2020-02-11 20:56:54 +01:00
Daniel Hoffend
b280b05c25
matrix-nginx-proxy: adding additional configuration blocks
2020-02-10 23:42:41 +01:00
Lee Verberne
8fe8cf9113
Fix matrix-appservice-irc database specification
...
This fixes an incorrect indentation in the database specification for
appservice-irc which caused matrix-appservice-irc to refuse to start
with the remarkably unhelpful error message:
```
ERROR:CLI Failed to run bridge.
```
This also updates doc links to the new matrixdotorg repo because the
tedomum repo contains out-of-date documentation.
2020-02-08 11:02:03 +01:00
Slavi Pantaleev
f18037ae42
Disable TLSv1.1 by default
2020-01-30 12:56:20 +02:00
Slavi Pantaleev
f9a67624e1
Upgrade Synapse (1.9.0 -> 1.9.1)
2020-01-28 16:02:09 +02:00
Slavi Pantaleev
b323c975cf
Upgrade riot-web (1.5.7 -> 1.5.8)
2020-01-28 13:01:30 +02:00
Slavi Pantaleev
c9f2bf89b5
Fix incorrect REST Auth module URL
...
Regression since #362 (Github Pull Request).
2020-01-27 12:22:40 +02:00
Slavi Pantaleev
38d4c555d0
Merge pull request #362 from spantaleev/ma1uta-rest-auth-password-provider
...
Switch from kamax-matrix/matrix-synapse-rest-password-provider to ma1uta/matrix-synapse-rest-password-provider
2020-01-26 23:18:39 +02:00
Slavi Pantaleev
0696845f3f
Merge pull request #361 from spantaleev/official-matrix-appservice-irc
...
Switch to upgraded & official matrix-appservice-irc Docker image
2020-01-26 23:18:04 +02:00
Slavi Pantaleev
874d2390dd
Revert "Upgrade Slack bridge to 1.0.2"
...
This reverts commit 61e93744ec
.
Reverting because of:
- https://github.com/spantaleev/matrix-docker-ansible-deploy/issues/341
- https://github.com/matrix-org/matrix-appservice-slack/issues/347
2020-01-26 23:07:12 +02:00
Slavi Pantaleev
c2135d1afe
Switch from kamax-matrix/matrix-synapse-rest-password-provider to ma1uta/matrix-synapse-rest-password-provider
...
Synapse v1.9.0 changed some things which made the REST Auth Password
Provider break.
The ma1uta/matrix-synapse-rest-password-provider implements some
workarounds for now and will likely deliver a proper fix in the future.
Not much has changed between the 2 projects, so this should be a
painless transition.
2020-01-25 10:23:59 +02:00
Slavi Pantaleev
aa05df6a02
Switch to upgraded & official matrix-appservice-irc Docker image
2020-01-25 10:07:08 +02:00
Slavi Pantaleev
77b919aec6
Become compatible with official matrix-appservice-irc Docker image
...
This change allows us to work with both our existing Docker image
(`tedomum/matrix-appservice-irc:latest`) and with the
official Docker image (`matrixdotorg/matrix-appservice-irc`).
The actual change to the official Docker image requires more testing
and will be done separately.
2020-01-25 10:05:47 +02:00
dhose
320d512541
Fix for when if case evaluates to false
2020-01-24 19:46:58 +01:00
Dan Arnfield
bc620895ca
Install python3-docker if ansible is running python 3
2020-01-24 06:59:42 -06:00
Slavi Pantaleev
2c04384e8e
Synchronize config with the one from Synapse 1.9.0
...
Related to #355 .
2020-01-23 15:47:53 +02:00
Paul Tötterman
e9761679eb
Upgrade Synapse to 1.9.0
2020-01-23 15:46:24 +02:00
Slavi Pantaleev
704d2ff861
Merge pull request #351 from prasket/matrix-change-user-admin-status
...
Matrix change user admin status
2020-01-23 10:35:28 +02:00
Dan Arnfield
86eff45e8b
uri.follow_redirects is now a string field
2020-01-22 15:36:54 -06:00
prasket
83e7a8d9e6
corrected hardcoded matrix domain and added code to remove old matrix-make-user-admin script per suggestion.
2020-01-21 18:29:17 -08:00
Slavi Pantaleev
9d3d538a2d
Use C collation for Postgres to appease Synapse
2020-01-21 00:13:47 +02:00
prasket
e99497bb60
created new file with change admin options and removed make admin file. Updated name references as well throughout the project.
2020-01-19 18:39:56 -08:00
Slavi Pantaleev
72f6e56fb8
Upgrade mautrix-telegram (0.6.1 -> 0.7.0)
2020-01-18 14:17:50 +02:00
David Gnedt
73d0bf7170
Fix regex in matrix_appservice_webhooks_registration_yaml
2020-01-15 19:17:05 +01:00
Horvath Gergely
83e5cd7d6f
Merge branch 'master' of https://github.com/spantaleev/matrix-docker-ansible-deploy
2020-01-13 19:38:55 +01:00
Björn Marten
f9d518796b
Correct regex in matrix_appservice_webhooks_registration_yaml
2020-01-13 17:30:39 +01:00
Björn Marten
80e4eb9ab7
Remove file logging completely
2020-01-13 17:30:19 +01:00
Björn Marten
268e1d0c80
Remove appearance section in matrix_appservice_webhooks_configuration_yaml due to not being used
2020-01-13 17:30:01 +01:00
Björn Marten
208d5d0fda
Adjust log level choices to verbose and info
2020-01-13 17:29:46 +01:00
Björn Marten
a8476c1b8e
Mention that the bridge itself expects its own domain and not '/appservice-webhooks'
2020-01-13 17:29:19 +01:00
Björn Marten
654d45a2bf
Adjust message when webhook bridge is activated but nginx-proxy is not
2020-01-13 17:20:50 +01:00
Björn Marten
6b2bf2c38b
Get rid of rewrite terminology
2020-01-13 17:20:50 +01:00
Björn Marten
3a80616185
Change logging behaviour to only stdout with configurable verbosity (default: info)
2020-01-13 17:20:49 +01:00
Björn Marten
9892eac789
Adjust API secret to be a configurable and required variable
2020-01-13 17:20:49 +01:00
Björn Marten
50bf8c8dd7
Add matrix-appservice-webhooks role.
2020-01-13 17:20:49 +01:00
Lyubomir Popov
800dc61335
Upgrade riot-web (1.5.6 -> 1.5.7)
2020-01-13 14:34:15 +00:00
Gergely Horváth
1c314fcf29
first version of raspbian docker setup
2020-01-13 13:38:21 +01:00
Gergely Horváth
05966c8cff
make sure Raspbian is not handled the same as Debian
2020-01-13 12:52:28 +01:00
Slavi Pantaleev
675aaa1215
Fix escaping issues affecting the Whatsapp bridge
...
Regression introduced in 53186ffa1c
2020-01-13 10:56:48 +02:00
Slavi Pantaleev
61e93744ec
Upgrade Slack bridge to 1.0.2
...
NeDB is deprecated, so we should transition away from it in the future.
Still, most of the functionality should work on this new version.
2020-01-12 21:35:03 +02:00
Slavi Pantaleev
bd38861179
Add support for automatic Double Puppeting for all Mautrix bridges
2020-01-12 20:28:36 +02:00
Slavi Pantaleev
53186ffa1c
Sync configuration with upstream for all Mautrix bridges
2020-01-12 19:10:05 +02:00
Slavi Pantaleev
a84a24d9f5
Upgrade nginx (1.17.6 -> 1.17.7)
2020-01-11 17:32:02 +02:00
Slavi Pantaleev
fddd3f922f
Upgrade Synapse to 1.8.0
2020-01-09 15:33:35 +02:00
Marcel Partap
7ead77fdb7
Remove spurious 'mxisd' string from mautrix bridge templates comment
2020-01-08 22:39:21 +01:00
Dan Arnfield
4f3f263420
Update synapse (1.7.2 -> 1.7.3)
2019-12-31 06:28:58 -06:00
Slavi Pantaleev
8b5b075fda
Fix typo
2019-12-31 11:25:09 +02:00
Slavi Pantaleev
0e3e3cdf86
Upgrade Synapse (1.7.1 -> 1.7.2)
2019-12-20 13:20:54 +02:00
Slavi Pantaleev
9a33e5c7ad
Make it possible to control Coturn ports and listen interfaces
...
Related to #330 (Github Issue).
2019-12-20 12:21:43 +02:00
Slavi Pantaleev
89dbe5cfc5
Add the ability to control the certbot HTTP bind port
...
Fixes #330 (Github Issue).
2019-12-19 09:07:24 +02:00
Slavi Pantaleev
b09f5a783b
Upgrade Synapse (1.7.0 -> 1.7.1)
2019-12-18 12:15:52 +02:00
Slavi Pantaleev
a78002f12b
Upgrade certbot (0.40.1 -> 1.0.0)
2019-12-13 14:52:29 +02:00
Slavi Pantaleev
d69ddcfdac
Upgrade Synapse (1.6.1 -> 1.7.0)
2019-12-13 14:52:29 +02:00
Daniel Løvbrøtte Olsen
3f7af3ef3f
Expose self service bridging in matrix_appservice_discord
...
This allows for users to bridge already existing matrix rooms to discord
2019-12-11 14:47:44 +01:00
Slavi Pantaleev
8cd51ad1ab
Merge pull request #322 from aaronraimist/integrations-manager-well-known
...
Implement MSC1957: Integration manager discovery
2019-12-10 11:00:29 +02:00
Aaron Raimist
2ea507e2ea
Don't make it Dimension specific
2019-12-09 22:23:56 -06:00
Slavi Pantaleev
783ed766f0
Upgrade riot-web (1.5.5 -> 1.5.6)
2019-12-09 14:05:04 +02:00
Yuri Moens
0866f98957
Render vhost directives in https server block
2019-12-08 00:58:32 +01:00
Slavi Pantaleev
ca3b158d94
Add support to matrix-nginx-proxy to work in HTTP-only mode
2019-12-06 11:53:15 +02:00
Aaron Raimist
fe932273aa
Implement MSC1957: Integration manager discovery
...
https://github.com/matrix-org/matrix-doc/pull/1957
Yay Riot iOS now supports integration manager discovery!
2019-12-05 17:32:51 -06:00
Aaron Raimist
79d1576648
Allow Synapse manhole to be enabled
...
Can you double check that the way I have this set only exposes it locally? It is important that the manhole is not available to the outside world since it is quite powerful and the password is hard coded.
2019-12-05 00:07:15 -06:00
Slavi Pantaleev
1ec7cd898d
Upgrade matrix-corporal (1.7.0 -> 1.7.1)
2019-12-04 14:52:11 +02:00
Slavi Pantaleev
163a1b4294
Merge pull request #318 from benkuly/master
...
Add telegram relay bot feature to playbook
2019-12-03 12:02:46 +02:00
Slavi Pantaleev
ce1ce03b3d
Upgrade matrix-corporal (1.6.0 -> 1.7.0)
2019-12-03 11:51:01 +02:00
benkuly
e23be75f6d
added vars for bot token in telegram bridge
2019-11-30 08:33:32 +01:00
Slavi Pantaleev
25dc53c34a
Switch riot-web image (bubuntux/riot-web -> vectorim/riot-web)
...
Switching to the official image (vectorim/riot-web) should ensure:
- there's less breakage, as it's maintained by the same team as riot-web
- there's fewer actors we need to trust
- we can upgrade riot-web faster, as newer versions should be released
on Docker hub at the same time riot-web releases are made
2019-11-29 10:11:48 +02:00
Slavi Pantaleev
b55198836a
Upgrade riot-web (1.5.4 -> 1.5.5)
2019-11-28 14:18:49 +02:00
Slavi Pantaleev
b8baf1356e
Upgrade Synapse (1.6.0 -> 1.6.1)
2019-11-28 13:59:42 +02:00
Dan Arnfield
fda16c17f5
Update riot-web (1.5.3 -> 1.5.4)
2019-11-26 08:44:00 -06:00
Slavi Pantaleev
0c51440426
Update Synapse to v1.6.0
2019-11-26 16:28:17 +02:00
Dan Arnfield
24646dc506
Update nginx (1.17.5 -> 1.17.6)
2019-11-21 09:38:59 -06:00
Dan Arnfield
4a60f385d1
Update postgres versions (12.0 -> 12.1, etc)
2019-11-21 09:38:37 -06:00
Slavi Pantaleev
4cc6cdf6f3
Merge pull request #314 from aaronraimist/well-known-client-no-identity
...
Remove identity server section from .well-known/matrix/client if there is no identity server
2019-11-21 11:59:46 +02:00
Aaron Raimist
9ab68a3cb4
Remove identity server section from .well-known/matrix/client if there is no identity server
...
Riot used to be fine with it being blank but now it complains. This creates an ugly looking comma when there is an identity server configured but I guess that's fine.
2019-11-20 16:05:16 -06:00
Slavi Pantaleev
f348370f15
Remove unnecessary update_cache directive / Debian
...
We've just updated it in the task above, so it's unnecessary
2019-11-19 09:22:41 +02:00
Slavi Pantaleev
c88c0e7e87
Remove unnecessary update_cache directive / CentOS
...
We've just updated it in the task above, so it's unnecessary
2019-11-19 09:22:14 +02:00
Dan Arnfield
960088752c
Add matrix_docker_package_name
2019-11-18 11:29:14 -06:00
Dan Arnfield
80cfb2a93e
Add matrix_docker_installation_enabled
2019-11-18 11:20:01 -06:00
Dan Arnfield
3cec6947ed
Refactor base server setup tasks
2019-11-18 11:11:56 -06:00
Hardy Erlinger
eb7391d373
Fix: Restrict a Debian-specific task to Debian OS.
...
Since commit b9753635
the task 'Ensure docker-ce is installed (Debian)' fails with an error on CentOS although it should not even run on this OS.
2019-11-16 14:53:42 +01:00
Dan Arnfield
b975363530
Don't install docker-ce if docker.io is installed
2019-11-15 14:56:42 -06:00
Dan Arnfield
140002ed49
Update certbot (0.38.0 -> 0.40.1)
2019-11-13 15:19:38 -06:00
Slavi Pantaleev
2da40c729a
Do not expose server room directory by default
...
Prompted by: https://matrix.org/blog/2019/11/09/avoiding-unwelcome-visitors-on-private-matrix-servers
This is a bit controversial, because.. the Synapse default remains open,
while the general advice (as per the blog post) is to make it more private.
I'm not sure exactly what kind of server people set up and whether they
want to make the room directory public. Our general goal is to favor
privacy and security when running personal (family & friends) and corporate
homeservers, both of which likely benefit from having a more secure default.
2019-11-10 08:55:46 +02:00
Slavi Pantaleev
50614f1bad
Simplify Prerequisites a bit
...
Don't mention systemd-journald adjustment anymore, because
we've changed log levels to WARNING and Synapse is not chatty by default
anymore.
The "excessive log messages may get dropped on CentOS" issue no longer
applies to most users and we shouldn't bother them with it.
2019-11-10 08:35:17 +02:00
Mike
4edb1eb131
Update init.yml
...
Removed a set_facts that I have used for tracing down the issue
2019-11-09 23:53:04 +01:00
Michael Haak
5b213e6ad0
Replace constructs appending elements with variables to matrix_synapse_container_extra_arguments. Fixes issue https://github.com/spantaleev/matrix-docker-ansible-deploy/issues/304
2019-11-09 23:16:12 +01:00
Aaron Raimist
c600ff758d
Upgrade riot-web (1.5.2 -> 1.5.3)
2019-11-08 09:48:08 -06:00
Slavi Pantaleev
f0e80218b0
Upgrade Synapse (1.5.0 -> 1.5.1)
2019-11-06 12:28:48 +02:00
Dan Arnfield
80265bfec5
Update riot-web (1.5.0 -> 1.5.2)
2019-11-05 13:00:19 -06:00
recklesscoder
5d3b765241
Actually use matrix_synapse_storage_path
...
matrix_synapse_storage_path is already defined in matrix-synapse/defaults/main.yml (with a default of "{{ matrix_synapse_base_path }}/storage"), but was not being used for its presumed purpose in matrix-synapse.service.j2. As a result, if matrix_synapse_storage_path was overridden (in a vars.yml), the synapse service failed to start.
2019-11-02 13:46:02 +01:00
Slavi Pantaleev
721ca9b83f
Add missing publicUrl configuration for Dimension
...
Discussed in #282 (Github Issue).
2019-10-31 15:38:32 +02:00
Dan Arnfield
9b187eca8f
Update nginx (1.17.4 -> 1.17.5)
2019-10-29 11:08:56 -05:00
Dan Arnfield
f0ce0db7dc
Update synapse (1.4.1 -> 1.5.0)
2019-10-29 10:41:46 -05:00
Slavi Pantaleev
e81837a586
Undo some formatting changes
2019-10-22 10:57:16 +03:00
Noah Fleischmann
1df3d53243
Verbose logging should be off per default
2019-10-21 20:47:23 +02:00
Noah Fleischmann
9728bdffee
Undo auto formatting
2019-10-21 20:41:45 +02:00
Noah Fleischmann
852fceb33f
Add documentation
2019-10-21 20:11:00 +02:00
Noah Fleischmann
c3fb7ebf4c
Add variable for mxisd verbose logging
2019-10-21 20:06:57 +02:00
Slavi Pantaleev
3bf7a7a85e
Upgrade riot-web (1.4.2 -> 1.5.0)
2019-10-19 11:08:35 +03:00
Slavi Pantaleev
e0ea708acc
Upgrade Synapse (1.4.0 -> 1.4.1)
2019-10-18 13:31:40 +03:00
Julian Foad
7ce80bc58e
Quote docker args in case inputs contain spaces
2019-10-14 08:59:56 +01:00
Slavi Pantaleev
e32aaacaa7
Make gzipped SQL dumps by default during --upgrade-postgres
2019-10-05 11:42:08 +03:00
Slavi Pantaleev
29526e7bb1
Add support for backing up / importing all Postgres databases/users
2019-10-05 11:42:08 +03:00
Aaron Raimist
5a2c1a44e4
Upgrade riot-web (1.4.1 -> 1.4.2)
2019-10-04 19:21:39 -05:00
Paul Tötterman
aabb16d78b
Fix spelling ngnix -> nginx
2019-10-04 11:07:37 +03:00
Slavi Pantaleev
9c438a3870
Add support for Postgres v12
2019-10-04 08:51:36 +03:00
Dan Arnfield
b59642950e
Update riot-web (1.4.0 -> 1.4.1)
2019-10-03 13:07:48 -05:00
Slavi Pantaleev
f25696489b
Merge pull request #273 from Sporiff/patch-1
...
Bump riot web version 1.3.6 -> 1.4.0
2019-10-03 19:36:10 +03:00
Slavi Pantaleev
19fb96fa57
Merge pull request #275 from aaronraimist/synapse-1.4.0
...
Upgrade Synapse (1.3.1 -> 1.4.0)
2019-10-03 19:35:54 +03:00
Slavi Pantaleev
a37b96d829
Upgrade Synapse to 1.4.0
2019-10-03 19:26:38 +03:00
Slavi Pantaleev
392f8202bd
Make SAML2 configuration match sample config generated using generate command
2019-10-03 19:26:38 +03:00
Slavi Pantaleev
810d0fb0e4
Make it possible to serve static websites from the base domain
2019-10-03 11:24:04 +03:00
Aaron Raimist
413d9ec143
WIP: Upgrade Synapse (1.3.1 -> 1.4.0rc2)
2019-10-02 21:35:44 -05:00
Ciarán Ainsworth
271d32b866
Bump riot web version 1.3.6 -> 1.4.0
2019-09-28 17:13:07 +01:00
Slavi Pantaleev
1dd1f9602f
Merge pull request #271 from thedanbob/certbot-0.38
...
Update certbot (0.37.1 -> 0.38.0)
2019-09-25 16:31:36 +03:00
Dan Arnfield
c12ca8fff0
Update certbot (0.37.1 -> 0.38.0)
2019-09-25 06:17:12 -05:00
Dan Arnfield
2dd9dc4882
Update nginx (1.17.3 -> 1.17.4)
2019-09-25 06:00:44 -05:00
Slavi Pantaleev
3264024055
Update matrix-corporal (1.5.0 -> 1.6.0)
2019-09-24 11:07:09 +03:00
Slavi Pantaleev
73c90e9513
Try to make Synapse config/key generation respect uid/gid
...
Attempt at fixing #268 (Github Issue)
2019-09-23 18:08:36 +03:00
Dan Arnfield
f076bd2474
Update riot-web (1.3.5 -> 1.3.6)
2019-09-20 08:03:02 -05:00
Slavi Pantaleev
39ae7959bd
Upgrade Telegram bridge (0.6.0 -> 0.6.1)
2019-09-20 15:23:34 +03:00
gusttt
25262fa0e1
Disable docker network tasks in check mode to allow running the playbook in check mode (--check --diff)
2019-09-17 22:24:38 +02:00
Aaron Raimist
b930c29bf0
Upgrade riot-web (1.3.3 -> 1.3.5)
2019-09-16 21:36:49 -05:00
Slavi Pantaleev
68ed2ebefa
Add support for Synapse Simple Antispam
...
Fixes #255 (Github Issue).
2019-09-09 08:13:10 +03:00
Slavi Pantaleev
4b1e9a4827
Add support for configuring Synapse spam_checker setting
2019-09-09 08:11:32 +03:00
Slavi Pantaleev
6b8ca70a0b
Upgrade Exim (4.92.1 -> 4.92.2)
2019-09-09 07:22:45 +03:00
Slavi Pantaleev
14e242aec1
Make matrix-mailer exit more gracefully
2019-09-04 10:04:57 +03:00
Slavi Pantaleev
1784bde226
Ensure Postgres data ownership is correct
...
Fixes #257 (Github Issue)
2019-09-02 10:01:31 +03:00
Slavi Pantaleev
a6d51ebe9b
Force-pull Slack Docker image if :latest
2019-08-28 14:00:34 +03:00
Julian Foad
a5eb845a2d
Fix force-pulling of mautrix-whatsapp
2019-08-28 11:52:42 +01:00
Slavi Pantaleev
f2f3d41649
Make matrix-corporal configuration extensible
...
Fixes #70 (Github Issue).
2019-08-25 10:58:30 +03:00
Slavi Pantaleev
2d4e19326d
Add missing when statement
2019-08-25 10:44:01 +03:00
Slavi Pantaleev
0edd7e8089
Make Riot-web configuration extensible
...
Fixes #71 (Github Issue).
2019-08-25 10:37:05 +03:00
Slavi Pantaleev
c4eebc5355
Add information about community-grouping for the Facebook bridge
2019-08-24 12:14:17 +03:00
Slavi Pantaleev
10a9deba4a
Make Synapse configuration extensible
2019-08-22 09:49:22 +03:00
Slavi Pantaleev
b440d5b73c
Remove some fact definitions during runtime
2019-08-22 08:00:02 +03:00
Slavi Pantaleev
65da600426
Merge branch 'master' into master
2019-08-21 07:34:20 +03:00
Slavi Pantaleev
c8a4d59a81
Merge pull request #251 from Munfred/master
...
Add mautrix-hangouts bridge role and documentation
2019-08-21 07:15:14 +03:00
Slavi Pantaleev
2ef8898421
Add comment
2019-08-21 07:14:31 +03:00
Slavi Pantaleev
97fb71d98c
Change privilege level
2019-08-21 07:12:46 +03:00
Slavi Pantaleev
1bcbc4a9ba
Update matrix-corporal (1.4.0 -> 1.5.0)
2019-08-20 11:20:26 +03:00
Slavi Pantaleev
2efcf11ee8
Remove some whitespace
2019-08-20 09:06:14 +03:00
Dan Arnfield
1ce3526bf2
Update riot-web (1.3.2 -> 1.3.3)
2019-08-19 06:46:11 -05:00
Dan Arnfield
42ea3cb0e1
Update synapse (1.3.0 -> 1.3.1)
2019-08-19 06:45:51 -05:00
Slavi Pantaleev
db57618abd
Update nginx and certbot
2019-08-17 10:21:23 +03:00
Slavi Pantaleev
1b2191a0f1
Add new Synapse configuration options (since 1.3.0)
...
Continuation of #246 (Github Pull Request)
2019-08-16 09:57:51 +03:00
Dan Arnfield
7b5e633776
Update synapse (1.2.1 -> 1.3.0)
2019-08-15 06:59:37 -05:00
Slavi Pantaleev
a1afafeb35
Upgrade mxisd (1.4.5 -> 1.4.6)
2019-08-15 09:36:04 +03:00
Slavi Pantaleev
59d807fca7
Ensure auth.clientID is passed as string in Discord configuration
...
Discord client IDs are numeric (e.g. 12345).
Passing them as integers however, causes the Discord bridge's YAML parser
to parse them as integers and its config schema validation will fail.
Fixes #240 (Github Issue)
2019-08-11 16:16:05 +03:00
Dan Arnfield
dc11704c11
Bump postgres versions (11.5, 10.10, 9.6.15)
2019-08-09 06:03:26 -05:00
Slavi Pantaleev
910ffb481c
Update email2matrix (1.0 -> 1.0.1)
2019-08-09 12:10:53 +03:00
Slavi Pantaleev
99f5baa7bb
Fix undefined variable error (matrix_synapse_id_servers_public)
...
This only gets triggered if:
- the Synapse role is used standalone and the default values are used
- the whole playbook is used, with `matrix_mxisd_enabled: false`
2019-08-08 18:30:54 +03:00
Slavi Pantaleev
5b736c416b
Merge pull request #236 from oleg-fiksel/guest-access
...
Added possibility to enable guest access on synapse
2019-08-08 13:18:55 +03:00
Oleg Fiksel
43628ddad6
Added "|to_json" to ensure we really pass a boolean
2019-08-08 12:11:19 +02:00
Oleg Fiksel
f713bbe0f8
Added possibility to enable guest access on synapse
2019-08-08 11:57:35 +02:00
Slavi Pantaleev
3e57a1463a
Serve nginx status page over HTTPS as well
...
Continuation of #234 (Github Pull Request).
I had unintentionally updated the documentation for the feature,
saying the page is available at `https://matrix.DOMAIN/nginx_status `.
Looks like it wasn't the case, going against my expectations.
I'm correcting this with this patch.
The status page is being made available on both HTTP and HTTPS.
Serving over HTTP is likely necessary for services like
Longview
(https://www.linode.com/docs/platform/longview/longview-app-for-nginx/ )
2019-08-07 12:53:53 +03:00
p5t2vspoqqw
c32a3e3204
correct defaults
2019-08-07 10:56:29 +02:00
p5t2vspoqqw
4b8190dc3f
serve status page for matrix.DOMAIN only
2019-08-07 10:54:14 +02:00
p5t2vspoqqw
281f2ee519
Merge branch 'master' of https://github.com/spantaleev/matrix-docker-ansible-deploy
2019-08-07 09:30:24 +02:00
Dan Arnfield
dc71457132
Update riot-web (1.3.0 -> 1.3.2)
2019-08-06 06:36:14 -05:00
microchipster
122c3f1ec0
sync more chats in hangouts, switch to admin mode
2019-08-06 05:27:40 +00:00
microchipster
1e8d593f7a
fix hangout displayname bug
2019-08-06 05:27:40 +00:00
microchipster
75785a0734
fix login url
2019-08-06 05:27:40 +00:00
microchipster
74d9eb1ec0
fix incorrect nginx proxy entry for hangouts bridge
2019-08-06 05:27:40 +00:00
microchipster
754c475338
matrix-hangouts/login instead of just /login
2019-08-06 05:27:40 +00:00
microchipster
95750c1bc7
attempt to inject nginx config for hangouts bridge
2019-08-06 05:27:40 +00:00
microchipster
264704a29e
absorb Munfred changes
2019-08-06 05:27:40 +00:00
Eduardo Beltrame
c1aea7c3fc
Update validate_config.yml
2019-08-06 05:27:40 +00:00
Eduardo Beltrame
85c7e9eb09
Update validate_config.yml
2019-08-06 05:27:40 +00:00
Eduardo Beltrame
0a9ce65d3b
Update validate_config.yml
2019-08-06 05:27:40 +00:00
Eduardo Beltrame
ad682f2180
Update main.yml
2019-08-06 05:27:40 +00:00
Eduardo Beltrame
ef9f6efd12
Update main.yml
2019-08-06 05:27:40 +00:00
Eduardo Beltrame
451d84a981
Update main.yml
2019-08-06 05:27:40 +00:00
Eduardo Beltrame
da6d2e5621
Update main.yml
2019-08-06 05:27:40 +00:00
Eduardo Beltrame
bc1c30168c
remove login block -- wrong file
2019-08-06 05:27:40 +00:00
Eduardo Beltrame
c71cef3f70
Add hangouts /login in the right place
2019-08-06 05:27:40 +00:00
Eduardo Beltrame
b0f203b2ec
Update main.yml
2019-08-06 05:27:40 +00:00
Eduardo Beltrame
ab6e808bc6
fix /login for mautrix-hangouts bridge
2019-08-06 05:27:40 +00:00
Eduardo Beltrame
4528e6402b
add Publicly accessible base URL for the login endpoints.
...
# Auth server config
auth:
# Publicly accessible base URL for the login endpoints.
# The prefix below is not implicitly added. This URL and all subpaths should be proxied
# or otherwise pointed to the appservice's webserver to the path specified below (prefix).
# This path should usually include a trailing slash.
public: http://example.com/login/
# Internal prefix in the appservice web server for the login endpoints.
prefix: /login
2019-08-06 05:27:40 +00:00
Eduardo Beltrame
2d3fc98d18
Update main.yml
2019-08-06 05:27:40 +00:00
microchipster
a16347789d
nginx settings for hangouts bridge login
2019-08-06 05:27:40 +00:00
microchipster
0585889d5a
add hangouts bridge by copying facebook bridge and find-replacing
2019-08-06 05:27:40 +00:00
Slavi Pantaleev
4be35822dd
Add Email2Matrix support
2019-08-05 13:09:49 +03:00
p5t2vspoqqw
51d5741bb3
Merge branch 'master' of https://github.com/spantaleev/matrix-docker-ansible-deploy
2019-08-05 09:34:30 +02:00
Slavi Pantaleev
6fe4bafc2a
Decrease default Synapse logging level
...
Also discussed previously in #213 (Github Pull Request).
shared-secret-auth and rest-auth logging is still at `INFO`
intentionally, as user login events seem more important to keep.
Those modules typically don't spam as much.
2019-08-03 07:48:04 +03:00
Slavi Pantaleev
6fc779dc83
Ensure matrix_ssl_retrieval_method value is valid
...
We recently had someone in the support room who set it to `false`
and the playbook ran without any issues.
This currently seems to yield the same result as 'none', but it's
better to avoid such behavior.
2019-08-02 11:59:10 +03:00
Slavi Pantaleev
c40d28a0dc
Relocate user-store.db/room-store.db when migrating Discord bridge files
...
Refer to 524436ebef
and #230 (Github Issue).
2019-08-01 14:40:12 +03:00
Slavi Pantaleev
524436ebef
Add missing required parameters for Discord bridge
...
Fixes #230 (Github Issue).
Related to https://github.com/Half-Shot/matrix-appservice-discord/issues/510
2019-08-01 14:36:02 +03:00
Slavi Pantaleev
18f6b29372
Bump matrix-mailer / exim release (4.92.1-r0-0 -> 4.92.1-r0-1)
...
It adds support for a new `DISABLE_SENDER_VERIFICATION` environment
variable that can be used to disable verification of sender addresses.
It doesn't matter for us, but we upgrade to keep up with latest.
2019-07-31 10:47:57 +03:00
Slavi Pantaleev
0e3b73a612
Upgrade matrix-mailer / exim (4.92 -> 4.92.1)
2019-07-30 20:56:05 +03:00
Slavi Pantaleev
d543780e42
Use mautrix-telegram Docker image from new official registry
2019-07-28 19:33:02 +03:00
Slavi Pantaleev
53ab66eef8
Use mautrix-whatsapp Docker image from new official registry
2019-07-28 19:31:42 +03:00
Slavi Pantaleev
82bb55ae7a
Use new default port config for mautrix-facebook
2019-07-28 18:42:42 +03:00
Slavi Pantaleev
b0162d6f75
Use mautrix-facebook Docker image from new official registry
2019-07-28 18:40:55 +03:00
kingoftheconnors
177ec295b4
Fixed matrix-appservice-slack docker command problems
2019-07-27 14:25:13 -04:00
kingoftheconnors
49766c5dac
Added Slack role
2019-07-26 21:37:21 -04:00
Dan Arnfield
de6c1c99b2
Fix apt message: docker doesn't support arch 'i386'
2019-07-26 14:43:35 -05:00
Slavi Pantaleev
bd99dd05b4
Upgrade Synapse (1.2.0 -> 1.2.1)
2019-07-26 14:17:31 +03:00
Slavi Pantaleev
255b67a0ce
Update homeserver.yaml with new options from Synapse v1.2.0
...
Related to #223 (Github Pull Request)
2019-07-25 22:03:12 +03:00
Dan Arnfield
0e54515c9d
Update synapse (1.1.0 -> 1.2.0)
2019-07-25 08:42:33 -05:00
Dan Arnfield
9296dfd094
Update nginx (1.17.1 -> 1.17.2)
2019-07-24 06:21:37 -05:00
Lyubomir Popov
5e104e6667
Upgrade riot-web (1.2.4 - 1.3.0)
2019-07-19 10:33:27 +00:00
p5t2vspoqqw
fde8615d4e
Merge branch 'master' of https://github.com/spantaleev/matrix-docker-ansible-deploy
2019-07-18 10:29:40 +02:00
Slavi Pantaleev
479a5137ca
Merge pull request #218 from RedooNetworks/master
...
introduce configuration to change riot branding / title
2019-07-17 17:07:31 +03:00
Stefan Warnat
2d24779583
remove newline
2019-07-17 15:57:22 +02:00
Stefan Warnat
2706ca9586
add configuration to change Riot.im branding
2019-07-17 15:56:15 +02:00
p5t2vspoqqw
5054fff88b
Merge branch 'master' of https://github.com/spantaleev/matrix-docker-ansible-deploy
2019-07-12 15:45:19 +02:00
Slavi Pantaleev
3a8ed2dd81
Upgrade riot-web (1.2.3 -> 1.2.4)
2019-07-12 13:09:21 +03:00
Slavi Pantaleev
5a6c546d87
Upgrade Telegram bridge (0.5.2 -> 0.6.0)
2019-07-12 13:08:48 +03:00
Slavi Pantaleev
87e3650327
Ensure Discord client id is passed as a string
...
Looks like these client ids are actually integers,
but unless we pass them as a string, the bridge would complain with
an error like:
{"field":"data.auth.clientID","message":"is the wrong type","value":123456789012345678,"type":"string","schemaPath":["properties","auth","properties","clientID"]}
Explicitly-casting to a string should fix the problem.
The Discord bridge should probably be improved to handle both ints and
strings though.
2019-07-12 10:15:43 +03:00
Slavi Pantaleev
277a6eb7da
Merge pull request #215 from danbob/update-riot-web
...
Update to riot 1.2.3
2019-07-09 15:10:39 +03:00
Dan Arnfield
b087d06f1e
Update to riot 1.2.3
2019-07-09 05:55:48 -05:00
Slavi Pantaleev
1316d36f8b
Fix deprecation warning (using cron module without name)
2019-07-09 09:11:38 +03:00
Slavi Pantaleev
9d07aaefbf
Fix passkey.pem permissions breaking IRC bridge
...
Regression since 174a6fcd1b
, #204 (Github Pull Request),
which only affects new servers.
Old servers which had their passkey.pem file relocated were okay.
2019-07-08 10:13:45 +03:00
Slavi Pantaleev
0ca21d80d7
Add Synapse Maintenance docs and synapse-janitor integration
2019-07-08 09:38:36 +03:00
Slavi Pantaleev
631a14bf0c
Rename run control variables for consistency
2019-07-08 09:38:36 +03:00
Slavi Pantaleev
e805044b80
Delete scripts when uninstalling Postgres
2019-07-08 09:38:36 +03:00
p5t2vspoqqw
d88e261150
Merge branch 'master' of https://github.com/spantaleev/matrix-docker-ansible-deploy
2019-07-05 16:12:29 +02:00
Dan Arnfield
f83bbf8525
Bump nginx version
2019-07-04 22:59:21 -05:00
Slavi Pantaleev
17cd52ced6
Make Synapse log messages a bit prettier
...
ef5e4ad061
intentionally makes us conform to
the logging format suggested by the official Docker image.
Reverting this part, because it's uglier.
This likely should be fixed upstream as well though.
2019-07-04 18:19:52 +03:00
Slavi Pantaleev
ef5e4ad061
Make Synapse not log to text files
...
Somewhat related to #213 (Github Pull Request).
We've been moving in the opposite direction for quite a long time.
All services should just leave logging to systemd's journald.
2019-07-04 17:46:31 +03:00
Slavi Pantaleev
b84139088c
Fix password providers not working on Synapse v1.1.0
...
Fixes a regression introduced during the upgrade to
Synapse v1.1.0 (in 2b3865ceea
).
Since Synapse v1.1.0 upgraded to Python 3.7
(https://github.com/matrix-org/synapse/pull/5546 ),
we need to use a different modules directory when mounting
password provider modules.
2019-07-04 17:28:38 +03:00
Slavi Pantaleev
73158e6c2f
Fix unintentionally inverted boolean
...
Fixes a problem introduced by da6edc9cba
.
Related to #145 (Github Pull Request).
2019-07-04 17:27:42 +03:00
Slavi Pantaleev
da6edc9cba
Add support for disabling Synapse's local database for user auth
...
This is a new feature of Synapse v1.1.0.
Discussed in #145 (Github Pull Request).
2019-07-04 17:11:51 +03:00
Slavi Pantaleev
2b3865ceea
Upgrade Synapse (1.0.0 -> 1.1.0)
2019-07-04 16:58:45 +03:00
p5t2vspoqqw
9874c3df90
Merge branch 'master' of https://github.com/spantaleev/matrix-docker-ansible-deploy
2019-06-26 10:41:14 +02:00
Slavi Pantaleev
8529efcd1c
Make Discord bridge configuration playbook-managed
...
Well, `config.yaml` has been playbook-managed for a long time.
It's now extended to match the default sample config of the Discord
bridge.
With this patch, we also make `registration.yaml` playbook-managed,
which leads us to consistency with all other bridges.
Along with that, we introduce `./config` and `./data` separation,
like we do for the other bridges.
2019-06-26 10:35:00 +03:00
Slavi Pantaleev
918526c5fe
Update riot-web (1.2.1 -> 1.2.2)
2019-06-25 14:42:54 +03:00
Dan Arnfield
1eaa7b6967
Update postgres versions to latest
2019-06-24 13:11:23 -05:00
Dan Arnfield
ae3a1bb148
Update nginx to 1.17.0
2019-06-24 13:10:58 -05:00
Slavi Pantaleev
37c8b96d06
Use stricter regex in bridges' registration.yaml
...
I've been thinking of doing before, but haven't.
Now that the Whatsapp bridge does it (since 4797469383
),
it makes sense to do it for all other bridges as well.
(Except for the IRC bridge - that one manages most of registration.yaml by itself)
2019-06-24 07:50:51 +03:00
Slavi Pantaleev
c876a7df1d
Use |regex_escape in Whatsapp registration.yaml
...
Doesn't matter much, but it makes it consistent with the other bridges.
2019-06-24 07:49:19 +03:00
Slavi Pantaleev
3ff57ed74d
Use container network for communication between homeserver and Whatsapp bridge
2019-06-24 07:48:56 +03:00
Slavi Pantaleev
6e26d286af
Merge pull request #207 from tommes0815/whatsapp-config-playbook-managed
...
Whatsapp config playbook managed
2019-06-24 07:44:26 +03:00
Slavi Pantaleev
62509e4849
Fix indentation consistency
2019-06-24 07:42:39 +03:00
Thomas Kuehne
4797469383
Make WhatsApp bridge configuration playbook-managed
...
- following spantaleev transition of the telegram brigde
- adding a validate_config task
2019-06-24 00:16:04 +02:00
Lee Verberne
9195ef4c07
Disable appservice-irc log files
...
appservice-irc doesn't have permission to create files in its project
directory and the intention is to log to the console, anyway. By
commenting out the file names, appservice-irc won't attempt to open the
files.
2019-06-22 08:39:24 +02:00
p5t2vspoqqw
466b35b1b6
Merge branch 'master' of https://github.com/spantaleev/matrix-docker-ansible-deploy
2019-06-19 16:56:29 +02:00
Slavi Pantaleev
174a6fcd1b
Make IRC bridge configuration entirely managed by the playbook
2019-06-19 12:29:44 +03:00
Slavi Pantaleev
668f98a2d3
Escape domain in bridge registration regex
2019-06-19 10:40:59 +03:00
Slavi Pantaleev
380714d290
Talk to Telegram bridge over container network
2019-06-19 10:10:17 +03:00
Slavi Pantaleev
f994e40bb7
Extend IRC bridge configuration with some additional options
2019-06-19 09:28:41 +03:00
Slavi Pantaleev
6b023d09d4
Use container network address for communication between IRC bridge and homeserver
...
This means we need to explicitly specify a `media_url` now,
because without it, `url` would be used for building public URLs to
files/images. That doesn't work when `url` is not a public URL.
2019-06-19 09:21:13 +03:00
Slavi Pantaleev
169b09f0ed
Fix token mismatch error for the Telegram bridge
...
Regression since 4e8543ce21
2019-06-15 12:01:52 +03:00
Slavi Pantaleev
4e8543ce21
Make Telegram bridge configuration playbook-managed
2019-06-15 09:43:43 +03:00
Slavi Pantaleev
2902b53267
Minor fixes for consistency
2019-06-15 09:42:40 +03:00
Slavi Pantaleev
00383a73ac
Make running --tags=setup-synapse only not fail to register bridges
...
Until now, if `--tags=setup-synapse` was used, bridge tasks would not
run and bridges would fail to register with the `matrix-synapse` role.
This means that Synapse's configuration would be generated with an empty
list of appservices (`app_service_config_files: []`).
.. and then bridges would fail, because Synapse would not be aware of
there being any bridges.
From now on, bridges always run their init tasks and always register
with Synapse.
For the Telegram bridge, the same applies to registering with
matrix-nginx-proxy. Previously, running `--tags=setup-nginx-proxy` would
get rid of the Telegram endpoint configuration for the same reason.
Not anymore.
2019-06-14 10:19:52 +03:00
Slavi Pantaleev
d8a4007220
Upgrade exim (4.91 -> 4.92)
...
Note: https://www.us-cert.gov/ncas/current-activity/2019/06/13/Exim-Releases-Security-Patches
That said, I don't believe we've been affected.
Not in a bad way at least, because:
- we run exim as non-root and capabilities dropped
- we run exim in a private Docker network with known trusted relayers
(Synapse and mxisd)
2019-06-14 08:07:54 +03:00
Slavi Pantaleev
3956b300ed
Disable riot-web's welcome bot
...
I've not found this welcome bot to work at all in my previous attempts.
It would simply not reply, even though federation works.
It seems like this is also a potential privacy issue, as per
https://gist.github.com/maxidorius/5736fd09c9194b7a6dc03b6b8d7220d0
2019-06-14 07:49:46 +03:00
Slavi Pantaleev
2e16257e50
Do not ask for _matrix._tcp SRV records anymore
...
With most people on Synapse v0.99+ and Synapse v1.0 now available,
we should no longer try to be backward compatible with Synapse 0.34,
because this just complicates the instructions for no good reason.
2019-06-12 14:51:10 +03:00
p5t2vspoqqw
8fcdac3738
Merge branch 'master' of https://github.com/spantaleev/matrix-docker-ansible-deploy
2019-06-12 10:10:52 +02:00
Slavi Pantaleev
d8afb241ca
Merge pull request #201 from aaronraimist/default-room-version
...
Allow default room version to be configured
2019-06-12 09:17:45 +03:00
Slavi Pantaleev
f4574961c7
Prevent double-quotes around default room version
...
Using `|to_json` on a string is expected to correctly wrap it in quotes (e.g. `"4"`).
Wrapping it explicitly in double-quotes results in undesirable double-quoting (`""4""`).
2019-06-12 09:17:35 +03:00
Aaron Raimist
483bdd8c01
Allow default room version to be configured
2019-06-11 21:18:06 -05:00
Aaron Raimist
d262028d82
Upgrade mxisd (1.4.4 -> 1.4.5)
2019-06-11 20:19:15 -05:00
Slavi Pantaleev
e4068e55ee
Upgrade Synapse (0.99.5.2 -> 1.0.0)
2019-06-11 20:30:18 +03:00
Slavi Pantaleev
7d3adc4512
Automatically force-pull :latest images
...
We do use some `:latest` images by default for the following services:
- matrix-dimension
- Goofys (in the matrix-synapse role)
- matrix-bridge-appservice-irc
- matrix-bridge-appservice-discord
- matrix-bridge-mautrix-facebook
- matrix-bridge-mautrix-whatsapp
It's terribly unfortunate that those software projects don't release
anything other than `:latest`, but that's how it is for now.
Updating that software requires that users manually do `docker pull`
on the server. The playbook didn't force-repull images that it already
had.
With this patch, it starts doing so. Any image tagged `:latest` will be
force re-pulled by the playbook every time it's executed.
It should be noted that even though we ask the `docker_image` module to
force-pull, it only reports "changed" when it actually pulls something
new. This is nice, because it lets people know exactly when something
gets updated, as opposed to giving the indication that it's always
updating the images (even though it isn't).
2019-06-10 14:30:28 +03:00
Slavi Pantaleev
4f87f7e43e
Explain matrix_postgres_container_postgres_bind_port a little more
...
Previously, it only mentioned exposing for psql-usage purposes.
Realistically, it can be used for much more. Especially given that
psql can be easily accessed via our matrix-postgres-cli script,
without exposing the container port.
2019-06-10 08:24:37 +03:00
Aaron Raimist
6fce809d10
Add config option to be able to access database outside of container
2019-06-09 20:35:35 -05:00
Aaron Raimist
79f4bcf5be
Enable sentry.io integration
2019-06-07 16:02:41 -05:00
Slavi Pantaleev
44156fe659
Fix Ansible 2.8 deprecation in Dimension role
2019-06-07 17:44:32 +03:00
Slavi Pantaleev
3567d9adba
Fix typo
2019-06-07 16:07:01 +03:00
Slavi Pantaleev
a9953dd641
Make Facebook/Telegram bridges not log to files
...
We log to journald anyway. There's no need for double-logging.
It should not that matrix-synapse logs to journald and to files,
but that's likely to change in the future as well.
Because Synapse's logs are insanely verbose right now (and may get
dropped by journald), it's more reliable to have file-logging too.
As Synapse matures and gets more stable, logging should hopefully
get less, we should be able to only use journald and stop writing to
files for it as well.
2019-06-07 15:48:13 +03:00
Slavi Pantaleev
18baeabdf2
Do not create Facebook bridge directories with recurse: true
...
I'm not sure what I had in mind when I added this earlier,
but I think we'd better go without it.
2019-06-07 15:18:29 +03:00
Slavi Pantaleev
bf446b6e15
Fix double mv command
2019-06-07 15:06:21 +03:00
Slavi Pantaleev
172b0fa88c
Separate Facebook bridge configuration and data
...
Using a separate directory allows easier backups
(only need to back up the Ansible playbook configuration and the
bridge's `./data` directory).
The playbook takes care of migrating an existing database file
from the base directory into the `./data` directory.
In the future, we can also mount the configuration read-only,
to ensure the bridge won't touch it.
For now, mautrix-facebook is keen on rebuilding the `config.yaml`
file on startup though, so this will have to wait.
2019-06-07 14:52:38 +03:00
Slavi Pantaleev
330648a3e0
Make Facebook bridge configuration playbook-managed
...
Related to #193 , but for the Facebook bridge.
(other bridges can be changed to do the same later).
This patch makes the bridge configuration entirely managed by the
Ansible playbook. The bridge's `config.yaml` and `registration.yaml`
configuration files are regenerated every time the playbook runs.
This allows us to apply updates to those files and to avoid
people having to manage the configuration files manually on the server.
-------------------------------------------------------------
A deficiency of the current approach to dumping YAML configuration in
`config.yaml` is that we strip all comments from it.
Later on, when the bridge actually starts, it will load and redump
(this time with comments), which will make the `config.yaml` file
change.
Subsequent playbook runs will report "changed" for the
"Ensure mautrix-facebook config.yaml installed" task, which is a little
strange.
We might wish to improve this in the future, if possible.
Still, it's better to have a (usually) somewhat meaningless "changed"
task than to what we had -- never rebuilding the configuration.
2019-06-07 14:05:53 +03:00
Slavi Pantaleev
d6d6c152a3
Delay bridge startup to ensure Synapse is up
...
Bridges start matrix-synapse.service as a dependency, but
Synapse is sometimes slow to start, while bridges are quick to
hit it and die (if unavailable).
They'll auto-restart later, but .. this still breaks `--tags=start`,
which doesn't wait long enough for such a restart to happen.
This attempts to slow down bridge startup enough to ensure Synapse
is up and no failures happen at all.
2019-06-07 12:15:37 +03:00
Slavi Pantaleev
328d981b05
Fix undefined variables in mxisd and Dimension configuration
2019-06-07 11:46:35 +03:00
p5t2vspoqqw
0e9953f1ef
Merge branch 'master' of https://github.com/spantaleev/matrix-docker-ansible-deploy
2019-06-05 10:08:18 +02:00
Slavi Pantaleev
99086f90e8
Upgrade riot-web (1.2.0 -> 1.2.1)
2019-06-04 19:31:14 +03:00
p5t2vspoqqw
4b657b3822
Merge branch 'master' of https://github.com/spantaleev/matrix-docker-ansible-deploy
2019-06-03 10:13:25 +02:00
kingoftheconnors
c06b47af77
Fixed error message to direct users to the right debug command
2019-06-02 18:24:18 -04:00
Slavi Pantaleev
3bc8aa0a82
Upgrade Synapse (0.99.5.1 -> 0.99.5.2)
2019-05-30 20:50:09 +03:00
Slavi Pantaleev
35892286a1
Upgrade mxisd (1.4.3 -> 1.4.4)
2019-05-30 17:22:39 +03:00
Slavi Pantaleev
2982b03809
Explicitly serialize matrix_synapse_app_service_config_files
...
Attempt to fix #192 (Github Issue), potential regression since
70487061f4
.
Serializing as JSON/YAML explicitly is much better than relying on
magic (well, Python serialization being valid YAML..).
It seems like Python may prefix strings with `u` sometimes (Python 3?),
which causes Python serialization to not be compatible with YAML.
2019-05-30 09:42:08 +03:00
Slavi Pantaleev
f1c124331f
Upgrade riot-web (1.1.2 -> 1.2.0)
2019-05-30 08:44:21 +03:00
Slavi Pantaleev
70487061f4
Prefer --mount instead of -v for mounting volumes
...
This doesn't replace all usage of `-v`, but it's a start.
People sometimes troubleshoot by deleting files (especially bridge
config files). Restarting Synapse with a missing registration.yaml file
for a given bridge, causes the `-v
/something/registration.yaml:/something/registration.yaml:ro` option
to force-create `/something/registration.yaml` as a directory.
When a path that's provided to the `-v` option is missing, Docker
auto-creates that path as a directory.
This causes more breakage and confusion later on.
We'd rather fail, instead of magically creating directories.
Using `--mount`, instead of `-v` is the solution to this.
From Docker's documentation:
> When you use --mount with type=bind, the host-path must refer to an existing path on the host.
> The path will not be created for you and the service will fail with an error if the path does not exist.
2019-05-29 09:59:50 +03:00
Slavi Pantaleev
7d8dde8a53
Add support for proxying /_synapse/admin APIs
...
Fixes #191 (Github Issue).
2019-05-29 08:32:24 +03:00
Slavi Pantaleev
5361d3a412
Fix Telegram bridge proxying config when matrix-nginx-proxy disabled
...
Related to #189 (Github Issue).
People had proxying problems if:
- they used the whole playbook (including the `matrix-nginx-proxy` role)
- and they were disabling the proxy (`matrix_nginx_proxy_enabled: false`)
- and they were proxying with their own nginx server
For them,
`matrix_nginx_proxy_proxy_matrix_additional_server_configuration_blocks`
would not be modified to inject the necessary proxying configuration.
2019-05-27 10:04:52 +03:00
Slavi Pantaleev
7379968a3c
Fix Telegram bridge HTTP proxying when not using matrix-nginx-proxy
...
From what I see, this was never implemented to begin with.
Fixes #189 (Github Issue).
2019-05-26 20:50:52 +03:00
Slavi Pantaleev
120abaf391
Upgrade Telegram bridge (0.5.1 -> 0.5.2)
2019-05-26 20:41:21 +03:00
Slavi Pantaleev
ab59cc50bd
Add support for more flexible container port exposing
...
Fixes #171 (Github Issue).
2019-05-25 07:41:08 +09:00
Slavi Pantaleev
be2812bc8f
Remove unnecessary variables
...
Continuation of 54a281a425
.
Related to #188 (Github Pull Request).
2019-05-24 08:01:24 +09:00
Jason Locklin
54a281a425
Config validation not required
...
Validate_config was copied from the telegram bridge code, but doesn't
apply to the facebook bridge.
2019-05-23 15:02:44 -04:00
p5t2vspoqqw
0cfa73f153
Merge branch 'master' of https://github.com/spantaleev/matrix-docker-ansible-deploy
2019-05-23 10:48:22 +02:00
Slavi Pantaleev
a8b633561d
Upgrade Synapse (v0.99.4 -> v0.99.5.1)
2019-05-23 09:23:04 +09:00
Dan Arnfield
9c23d877fe
Fix docker_image option for ansible < 2.8
2019-05-22 05:43:33 -05:00
Dan Arnfield
fa38c84be2
Fix casting int to string warning
2019-05-21 10:37:05 -05:00
Dan Arnfield
db15791819
Add source option to docker_image to fix deprecation warning
2019-05-21 10:29:12 -05:00
Dan Arnfield
3982f114af
Fix CONDITIONAL_BARE_VARS deprecation warning in ansible 2.8
2019-05-21 10:25:59 -05:00
Slavi Pantaleev
affb99003c
Improve Synapse variable naming consistency
2019-05-21 12:09:38 +09:00
Slavi Pantaleev
5c821b581a
Check fullchain.pem, not cert.pem
...
While using certbot means we'll have both files retrieved,
it's actually the fullchain.pem file that we use in nginx configuration.
Using that one for the check makes more sense.
2019-05-21 11:58:18 +09:00
Slavi Pantaleev
3250df6765
Make bridge uninstallation stop services
...
Fixes #155 (Github Issue)
2019-05-21 11:27:09 +09:00
Slavi Pantaleev
a1e9818356
Update comment
2019-05-21 11:25:32 +09:00
Slavi Pantaleev
3ece9375c6
Merge pull request #179 from spantaleev/separate-bridge-roles
...
Move bridges into separate roles
2019-05-21 11:05:30 +09:00
Slavi Pantaleev
fc7ba153b1
Make matrix-synapse role respect matrix_synapse_enabled flag
2019-05-21 10:46:49 +09:00
Slavi Pantaleev
8d654aecdd
Improve file naming consistency
2019-05-21 09:57:48 +09:00
Stuart Mumford
a4bcd7ce8f
Add a variable to control the stop tasks
2019-05-20 17:03:05 +01:00
Slavi Pantaleev
e3b4622ac8
Split Synapse extension tasks into install/uninstall files
2019-05-18 06:36:54 +09:00
Slavi Pantaleev
663d1add92
Move matrix-appservice-discord into a separate role
2019-05-18 01:14:12 +09:00
Slavi Pantaleev
13c4e7e5b6
Merge branch 'master' into separate-bridge-roles
2019-05-16 09:45:06 +09:00
Slavi Pantaleev
ae7c8d1524
Use SyslogIdentifier to improve logging
...
Reasoning is the same as for matrix-org/synapse#5023 .
For us, the journal used to contain `docker` for all services, which
is not very helpful when looking at them all together (`journalctl -f`).
2019-05-16 09:43:46 +09:00
Slavi Pantaleev
cf3117011b
Upgrade Synapse (0.99.3.2 -> 0.99.4)
2019-05-16 09:20:43 +09:00
Slavi Pantaleev
6db10ed6f3
Upgrade riot-web (1.1.1 -> 1.1.2)
2019-05-16 09:09:42 +09:00
Slavi Pantaleev
3339e37ce9
Move matrix-appservice-irc into a separate role
2019-05-16 09:07:40 +09:00
Slavi Pantaleev
854cf84aa3
Upgrade riot-web (1.1.0 -> 1.1.1)
2019-05-15 09:50:25 +09:00
Slavi Pantaleev
47745254f9
Merge pull request #180 from eMPee584/fix-commented-mxisd-ldap-option
...
Fix case of the mxisd ldap.connection.baseDNs option in matrix_mxisd_configuration_extension_yaml comment
2019-05-15 09:49:34 +09:00
Slavi Pantaleev
43fd3cc274
Move mautrix-facebook into a separate role
2019-05-15 09:34:31 +09:00
Marcel Partap
5aa7f637d8
Fix matrix_synapse_ext_password_provider_ldap_start_tls (it's boolean)
2019-05-14 23:09:59 +02:00
Marcel Partap
25d3b315de
Fix case of the mxisd ldap.connection.baseDNs option in comment
2019-05-14 22:38:21 +02:00
Slavi Pantaleev
bb816df557
Move mautrix telegram and whatsapp into separate roles
...
The goal is to move each bridge into its own separate role.
This commit starts off the work on this with 2 bridges:
- mautrix-telegram
- mautrix-whatsapp
Each bridge's role (including these 2) is meant to:
- depend only on the matrix-base role
- integrate nicely with the matrix-synapse role (if available)
- integrate nicely with the matrix-nginx-proxy role (if available and if
required). mautrix-telegram bridge benefits from integrating with
it.
- not break if matrix-synapse or matrix-nginx-proxy are not used at all
This has been provoked by #174 (Github Issue).
2019-05-14 23:47:22 +09:00
Marcel Partap
d114736014
Add a task to stop services (and remove containers)
2019-05-14 11:46:07 +02:00
Slavi Pantaleev
873c291be6
Fix appservice-discord configuration-extension merging
2019-05-14 08:24:03 +09:00
Slavi Pantaleev
953ae021ba
Upgrade mxisd (1.4.2 -> 1.4.3)
2019-05-14 08:22:10 +09:00
Dan Arnfield
6163ba5bb1
Bump postgres versions
2019-05-10 08:02:32 -05:00
inthewaves
51e408bc94
Bump riot-web version (1.0.8->1.1.0)
2019-05-10 05:57:28 +00:00
p5t2vspoqqw
4315b472af
Merge branch 'master' of https://github.com/spantaleev/matrix-docker-ansible-deploy
2019-05-09 09:34:09 +02:00
Slavi Pantaleev
216cdf8c74
Merge pull request #166 from izissise/mautrix-facebook
...
Mautrix facebook
2019-05-09 10:05:14 +03:00
Slavi Pantaleev
565236a49c
Merge pull request #168 from danbob/nginx-proxy-3pid-registration
...
Add option to proxy 3pid registration endpoints
2019-05-09 09:53:47 +03:00
Dan Arnfield
171c6db41e
Add option to proxy 3pid registration endpoints
2019-05-08 13:49:51 -05:00
Dan Arnfield
958ad68078
Add registrations_require_3pid synapse option
2019-05-08 12:29:18 -05:00
Hugues Morisset
a82d5ed281
Add tulir mautrix-facebook ( https://github.com/tulir/mautrix-facebook )
2019-05-08 17:11:07 +02:00
Slavi Pantaleev
5f2f17cb1e
Merge pull request #160 from danbob/fix-matrix-mxisd-config
...
Fix template indentation
2019-05-08 08:01:00 +03:00
Hugues De Keyzer
c451025134
Fix indentation in templates
...
Use Jinja2 lstrip_blocks option in templates to ensure consistent
indentation in generated files.
2019-05-07 21:23:35 +02:00
Dan Arnfield
3abed49764
Fix jinja config for indented code blocks
2019-05-07 06:02:38 -05:00
Dan Arnfield
07e7d518d5
Revert "Fix template indentation"
...
This reverts commit 172d59ba05
.
2019-05-07 05:57:20 -05:00
Slavi Pantaleev
0e7310fd7c
Merge pull request #164 from TheLastProject/fix/string_before_to_json
...
string before to_json when string value is expected
2019-05-07 10:41:41 +03:00
Sylvia van Os
9ea593df37
Fix incorrect casts
2019-05-07 09:35:51 +02:00
Sylvia van Os
ed0ecf5bea
string before to_json when string value is expected
...
This prevents Ansible from sometimes failing to decrypt vault variables
2019-05-06 10:10:27 +02:00
Slavi Pantaleev
e0b7b4dc61
Merge pull request #159 from TheLastProject/feature/docker_add_hosts
...
Add the possibility to pass extra flags to the docker container
2019-05-05 10:22:59 +03:00
Slavi Pantaleev
1653e40239
Merge pull request #158 from lpopov/master
...
Add the ability to update user passwords with ansible
2019-05-05 10:21:45 +03:00
Slavi Pantaleev
6bea3237c9
Merge pull request #163 from aaronraimist/synapse-0.99.3.1
...
Update Synapse (0.99.3 -> 0.99.3.1)
2019-05-03 22:10:20 +03:00
Aaron Raimist
8051ea9ef9
Update Synapse (0.99.3.1 -> 0.99.3.2)
2019-05-03 13:34:45 -05:00
Aaron Raimist
d1646bb497
Update Synapse (0.99.3 -> 0.99.3.1)
2019-05-03 12:07:58 -05:00
Dan Arnfield
172d59ba05
Fix template indentation
2019-05-03 10:37:14 -05:00
Lyubomir Popov
c9a2380193
Merge remote-tracking branch 'upstream/master'
2019-05-03 11:05:03 +03:00
Lyubomir Popov
a206b65ed7
Use the '-p' non-interactive option to generate password hash instead of 'expect'
2019-05-03 11:02:17 +03:00
p5t2vspoqqw
79ad60cf0a
Merge branch 'master' of https://github.com/spantaleev/matrix-docker-ansible-deploy
2019-05-02 14:31:18 +02:00
Slavi Pantaleev
0e391b5870
Add explicit |int casting for more variables
...
As discussed in #151 (Github Pull Request), it's
a good idea to not selectively apply casting, but to do it in all
cases involving arithmetic operations.
2019-04-30 18:26:03 +03:00
Sylvia van Os
75b1528d13
Add the possibility to pass extra flags to the docker container
2019-04-30 16:35:18 +02:00
Lyubomir Popov
134faa3139
Add the ability to update user passwords with ansible (when using the matrix-postgres container).
2019-04-30 16:30:26 +03:00
Sylvia van Os
bf77f776a2
Add variable to disable homeserver url preview
2019-04-30 13:58:48 +02:00
Slavi Pantaleev
db977ea584
Merge pull request #151 from huguesdk/bugfix/nginx_proxy_tmpfs_size
...
Fix value of nginx-proxy tmpfs size
2019-04-29 09:00:37 +03:00
Slavi Pantaleev
7c246b4a99
Make error about unset matrix_ssl_lets_encrypt_support_email more descriptive
...
Previously, we'd show an error like this:
{"changed": false, "item": null, "msg": "Detected an undefined required variable"}
.. which didn't mention the variable name
(`matrix_ssl_lets_encrypt_support_email`).
2019-04-28 11:02:17 +03:00
Slavi Pantaleev
00ec22688a
Upgrade mxisd (1.4.1 -> 1.4.2)
...
Looks like we may not have to do this,
since 1.4.2 fixes edge cases for people who used the broken
1.4.0 release.
We jumped straight to 1.4.1, so maybe we're okay.
Still, upgrading anyway, just in case.
2019-04-28 10:15:46 +03:00
Slavi Pantaleev
817c7143ca
Merge pull request #154 from aaronraimist/mxisd-1.4.1
...
Update mxisd (1.3.1 -> 1.4.1)
2019-04-28 09:00:47 +03:00
Slavi Pantaleev
528f537db7
Merge pull request #152 from huguesdk/bugfix/remove_hardcoded_values_in_remove_all
...
Remove hardcoded values in matrix-remove-all
2019-04-28 08:54:34 +03:00
Aaron Raimist
e42fe4b18c
Include Slavi's improvements to keep roles independent
2019-04-27 17:09:21 -05:00
Aaron Raimist
5586eaddef
Set Riot's enable_presence_by_hs_url to false if presence is disabled
2019-04-27 16:35:26 -05:00
Aaron Raimist
ed442af96f
Update mxisd (1.3.1 -> 1.4.1)
2019-04-27 16:28:40 -05:00
Hugues De Keyzer
1e344d5a7a
Remove hardcoded values in matrix-remove-all
...
Use matrix_docker_network and matrix_base_data_path in matrix-remove-all
instead of hardcoded default values.
2019-04-27 22:12:05 +02:00
Hugues De Keyzer
6aa6633ee7
Fix value of nginx-proxy tmpfs size
...
Use an int conversion in the computation of the value of
matrix_nginx_proxy_tmp_directory_size_mb, to have the integer value
multiplied by 50 instead of having the string repeated 50 times.
2019-04-27 21:54:21 +02:00
Ciaran Ainsworth
8624cf4a57
Fixed default url preview settings
2019-04-26 14:11:40 +01:00
p5t2vspoqqw
e0bc86875b
Merge branch 'master' of https://github.com/spantaleev/matrix-docker-ansible-deploy
2019-04-26 14:30:51 +02:00
Slavi Pantaleev
f99b24f3be
Merge pull request #144 from dhoffend/welcome
...
make welcome.html customizable
2019-04-25 08:15:00 +03:00
Daniel Hoffend
ca15d219b9
make welcome.html customizable
2019-04-25 01:05:28 +02:00
p5t2vspoqqw
af8beb3627
Merge branch 'master' of https://github.com/spantaleev/matrix-docker-ansible-deploy
2019-04-24 15:03:47 +02:00
Slavi Pantaleev
ec0f936227
Try SSL renewal more frequently and reload later
...
It doesn't hurt to attempt renewal more frequently, as it only does
real work if it's actually necessary.
Reloading, we postpone some more, because certbot adds some random delay
(between 1 and 8 * 60 seconds) when renewing. We want to ensure
we reload at least 8 minutes later, which wasn't the case.
To make it even safer (in case future certbot versions use a longer
delay), we reload a whole hour later. We're in no rush to start using
the new certificates anyway, especially given that we attempt renewal
often.
Somewhat fixes #146 (Github Issue)
2019-04-23 17:59:02 +03:00
p5t2vspoqqw
c2eabf2b9d
Merge branch 'master' of https://github.com/spantaleev/matrix-docker-ansible-deploy
2019-04-23 09:45:10 +02:00
p5t2vspoqqw
7ee6927ca9
add suggested change; correct indent
2019-04-23 09:44:02 +02:00
Slavi Pantaleev
892abdc700
Do not refer to Synapse as "Matrix Synapse"
2019-04-23 10:20:56 +03:00
Slavi Pantaleev
39566aa7fe
Generate a Synapse signing key file, if missing
...
The code used to check for a `homeserver.yaml` file and generate
a configuration (+ key) only if such a configuration file didn't exist.
Certain rare cases (setting up with one server name and then
changing to another) lead to `homeserver.yaml` being there,
but a `matrix.DOMAIN.signing.key` file missing (because the domain
changed).
A new signing key file would never get generated, because `homeserver.yaml`'s
existence used to be (incorrectly) satisfactory for us.
From now on, we don't mix things up like that.
We don't care about `homeserver.yaml` anymore, but rather
about the actual signing key.
The rest of the configuration (`homeserver.yaml` and
`matrix.DOMAIN.log.config`) is rebuilt by us in any case, so whether
it exists or not is irrelevant and doesn't need checking.
2019-04-23 10:06:42 +03:00
Slavi Pantaleev
18a562c000
Upgrade services
2019-04-21 08:57:49 +03:00
p5t2vspoqqw
deeefac84c
add ngnix-status to config
...
add doc
2019-04-17 13:45:42 +02:00
Lyubomir Popov
eab8f31eed
Add additional room config options:
...
- matrix_enable_room_list_search - Controls whether searching the public room list is enabled.
- matrix_alias_creation_rules - Controls who's allowed to create aliases on this server.
- matrix_room_list_publication_rules - Controls who can publish and which rooms can be published in the public room list.
2019-04-16 12:40:38 +03:00
NullIsNot0
596f2ec1e2
Make Dimension communicat to Synapse through Docker network
...
Media is pulled from client side, so we specify external Matrix DNS name as mediaUrl
2019-04-14 16:09:29 +03:00
Slavi Pantaleev
9a05b030cb
Fix unknown tag error when generating Goofys service
...
`{% matrix_s3_media_store_custom_endpoint_enabled %}` should have
been `{% if matrix_s3_media_store_custom_endpoint_enabled %}` instead.
Related to #132 (Github Pull Request).
2019-04-10 08:45:52 +03:00
Slavi Pantaleev
bec59c06bb
Update images
2019-04-09 09:33:24 +03:00
Slavi Pantaleev
901516d806
Update matrix-corporal (1.3.0 -> 1.4.0)
2019-04-06 12:34:15 +03:00
Alexander Acevedo
6cc6638098
revert 3953705682
...
that's not how it works
2019-04-05 06:01:58 -04:00
Alexander Acevedo
3953705682
add custom endpoint environment variable
2019-04-05 05:56:36 -04:00
Alexander Acevedo
3ffb03f20e
missing whitespace
2019-04-05 05:54:58 -04:00
Alexander Acevedo
c55e49d733
add custom endpoint to matrix-goofys.service.j2
...
This (should) check if custom endpoint is enabled.
2019-04-05 05:48:31 -04:00
Alexander Acevedo
b5fbec8d83
add goofys custom
...
Creates the configuration variable to toggle custom endpoint and the default custom endpoint.
2019-04-05 05:33:38 -04:00
Slavi Pantaleev
af1c9ae59d
Do not force firewalld on people
...
In most cases, there's not really a need to touch the system
firewall, as Docker manages iptables by itself
(see https://docs.docker.com/network/iptables/ ).
All ports exposed by Docker containers are automatically whitelisted
in iptables and wired to the correct container.
This made installing firewalld and whitelisting ports pointless,
as far as this playbook's services are concerned.
People that wish to install firewalld (for other reasons), can do so
manually from now on.
This is inspired by and fixes #97 (Github Issue).
2019-04-03 11:37:20 +03:00
Slavi Pantaleev
9202b2b8d9
Ensure systemd services are running when doing --tags=start
...
Fixes #129 (Github Issue).
Unfortunately, we rely on `service_facts`, which is only available
in Ansible >= 2.5.
There's little reason to stick to an old version such as Ansible 2.4:
- some time has passed since we've raised version requirements - it's
time to move into the future (a little bit)
- we've recently (in 82b4640072
) improved the way one can run
Ansible in a Docker container
From now on, Ansible >= 2.5 is required.
2019-04-03 11:19:06 +03:00
NullIsNot0
64556569da
Update Riot Web from 1.0.5 to 1.0.6
2019-04-02 07:20:25 +03:00
Slavi Pantaleev
631b7cc6a6
Add support for adjusting Synapse rate-limiting configuration
2019-04-01 21:40:14 +03:00
Slavi Pantaleev
77359ae867
Synchronize Synapse config with the sample from 0.99.3
2019-04-01 21:22:05 +03:00
Slavi Pantaleev
95e4234dca
Update nginx (1.15.9 -> 1.15.10)
2019-04-01 19:54:53 +03:00
Aaron Raimist
c6f1f7aa23
Update Synapse (0.99.2 -> 0.99.3)
2019-04-01 11:26:46 -05:00
Slavi Pantaleev
60b0ba379b
Update riot-web (1.0.4 -> 1.0.5)
2019-03-22 20:36:23 +02:00
Slavi Pantaleev
d9c6884b6a
Update mautrix-telegram (0.4.0 -> 0.5.1)
2019-03-22 18:50:41 +02:00
Slavi Pantaleev
73af8f7bbb
Make self-check not validate self-signed certificates
...
By default, `--tags=self-check` no longer validates certificates
when `matrix_ssl_retrieval_method` is set to `self-signed`.
Besides this default, people can also enable/disable validation using the
individual role variables manually.
Fixes #124 (Github Issue)
2019-03-22 09:41:08 +02:00
Slavi Pantaleev
59e37105e8
Add TLS support to Coturn
2019-03-19 10:24:39 +02:00
Slavi Pantaleev
018aeed5e9
Add support for mounting additional volumes to matrix-coturn
2019-03-19 09:16:30 +02:00
Slavi Pantaleev
a50ea0f0a9
Update riot-web (1.0.3 -> 1.0.4)
2019-03-19 08:00:48 +02:00
Slavi Pantaleev
24cf27c60c
Isolate Coturn from services in the default Docker network
...
Most (all?) of our Matrix services are running in the `matrix` network,
so they were safe -- not accessible from Coturn to begin with.
Isolating Coturn into its own network is a security improvement
for people who were starting other services in the default
Docker network. Those services were potentially reachable over the
private Docker network from Coturn.
Discussed in #120 (Github Pull Request)
2019-03-18 17:41:14 +02:00
Slavi Pantaleev
c6858d2a08
Define matrix_coturn_turn_external_ip_address in the playbook group vars
...
This is more explicit than hiding it in the role defaults.
People who reuse the roles in their own playbook (and not only) may
incorrectly define `ansible_host` to be a hostname or some local address.
Making it more explicit is more likely to prevent such mistakes.
2019-03-18 17:04:40 +02:00
Stuart Mumford
e367a2d0de
Add nulls for quotas as well
2019-03-18 11:58:52 +00:00
Stuart Mumford
9d236c5466
Add defaults for ips
2019-03-18 11:44:40 +00:00
Stuart Mumford
c0dc56324a
Add config options to turnserver.conf
2019-03-18 11:18:30 +00:00
Slavi Pantaleev
221703f257
Merge pull request #118 from verb/systemctl
...
Use common path for systemctl in lets encrypt cron
2019-03-17 20:55:40 +02:00
Slavi Pantaleev
e65514223e
Merge branch 'master' into update-homeserver-yaml
2019-03-17 20:53:52 +02:00
Slavi Pantaleev
2f1662626e
Use |to_json for matrix_synapse_push_include_content
...
Doing this for consistency.
Related to #117 (Github Pull Request).
2019-03-17 20:51:12 +02:00
Aaron Raimist
ae912c4529
Update homeserver.yaml with some new options we could enable
2019-03-16 15:51:41 -05:00
Lee Verberne
d90bc20690
Use common path for systemctl in lets encrypt cron
...
Currently the nginx reload cron fails on Debian 9 because the path to
systemctl is /bin/systemctl rather than /usr/bin/systemctl.
CentOS 7 places systemctl in both /bin and /usr/bin, so we can just use
/bin/systemctl as the full path.
2019-03-16 20:48:58 +01:00
Lee Verberne
71c7c74b7b
Allow configuring push content for matrix-synapse
...
This allows overriding the default value for `include_content`. Setting
this to false allows homeserver admins to ensure that message content
isn't sent in the clear through third party servers.
2019-03-16 07:16:20 +01:00
Lorrin Nelson
ceba99eed3
Make federation self-check conditional on matrix_synapse_federation_enabled
2019-03-13 22:33:52 -07:00
Slavi Pantaleev
2d56ff0afa
Skip some uninstall tasks if not necessary to run
2019-03-13 07:40:51 +02:00
Slavi Pantaleev
b066f8a0d8
Do not try to start matrix-coturn.service if not enabled
2019-03-13 07:36:28 +02:00
Slavi Pantaleev
c545d3eb85
Add support for serving base domain via matrix-nginx-proxy
2019-03-12 23:01:16 +02:00
Slavi Pantaleev
e645b0e372
Rename matrix_nginx_proxy_data_path to matrix_nginx_proxy_base_path
...
`matrix_nginx_proxy_data_path` has always served as a base path,
so we're renaming it to reflect that.
Along with this, we're also introducing a new "data path" variable
(`matrix_nginx_proxy_data_path`), which is really a data path this time.
It's used for storing additional, non-configuration, files related to
matrix-nginx-proxy.
2019-03-12 23:01:16 +02:00
Plailect
f6de3fd668
Start appservice-irc as non-root
2019-03-12 13:17:51 -04:00
Edgars Voroboks
610eef82b5
Add option to enable Dimension widgets serve sites with self signed certs
2019-03-12 12:17:12 +02:00
Edgars Voroboks
1d8fd9792f
Fix Matrix homeserver name in Dimension configuration
2019-03-11 20:05:52 +02:00
Slavi Pantaleev
4067e09409
Fix rare YAML parsing problems in Dimension config
...
It's been reported that YAML parsing errors
would occur on certain Ansible/Python combinations for some reason.
It appears that a bare `{{ matrix_dimension_admins }}` would sometimes
yield things like `[u'@user:domain.com', ..]` (note the `u` string prefix).
To prevent such problems, we now explicitly serialize with `|to_json`.
2019-03-10 22:23:06 +02:00
Slavi Pantaleev
6c5cc173b0
Fix permission mode for some files
2019-03-09 21:15:16 +02:00
Slavi Pantaleev
ecabe8f814
Merge pull request #107 from NullIsNot0/master
...
Implement self-hosted Dimension server
2019-03-09 20:59:52 +02:00
Edgars Voroboks
5f13a1e50b
Generate Dimension config from variable
2019-03-09 19:08:00 +02:00
Edgars Voroboks
bcbfc1e838
Make Matrix Federation required and fix internal federationUrl
2019-03-09 10:30:31 +02:00
Edgars Voroboks
27772a6420
Point federationUrl to matrix-synapse container
2019-03-08 22:01:11 +02:00
Edgars Voroboks
b2263f811a
Disable logging to file. Set console logging to verbose.
2019-03-08 22:00:05 +02:00
Edgars Voroboks
30738d064e
Fix errors
2019-03-08 19:14:15 +02:00
Edgars Voroboks
1eb78ca93e
Add additional changes for Dimension to work
2019-03-08 15:00:53 +02:00
Slavi Pantaleev
390ec8a599
Skip some tasks when not necessary to run them
2019-03-08 12:14:58 +02:00
Sylvia van Os
93992f7756
Fix indenting of generators value
2019-03-08 10:50:51 +01:00
Slavi Pantaleev
62e2acada5
Merge pull request #104 from dangersalad/master
...
allow exposing mautrix_telegram port
2019-03-08 08:50:05 +02:00
paulbdavis
17e86ba817
implement requested changes
2019-03-07 12:45:58 -07:00
Sylvia van Os
8cc420da15
Upgrade riot-web to v1.0.3
2019-03-07 13:53:33 +01:00
Sylvia van Os
f297ff506b
Explain how to set the template variables
2019-03-07 13:34:07 +01:00
Sylvia van Os
0cd8b99b00
Add support for custom MXISD templates
2019-03-07 13:28:00 +01:00
Edgars Voroboks
9735a2f600
Implement self-hosted Dimension server
2019-03-07 07:22:08 +02:00
Slavi Pantaleev
aae8757027
Update coturn (4.5.1.0 -> 4.5.1.1)
2019-03-06 19:59:40 +02:00
Slavi Pantaleev
85c5adfd69
Minor consistency improvements
2019-03-05 09:20:36 +02:00
Slavi Pantaleev
a310a01818
Use non-root and no-capability containers during Discord setup
...
Related to #105 (Github Pull Request).
2019-03-05 09:10:51 +02:00
Slavi Pantaleev
f037f63a07
Merge pull request #105 from Lionstiger/matrix-discord-bridge
...
Add Support for matrix-appservice-discord
2019-03-05 06:39:46 +00:00
Lionstiger
c2834d2226
running as matrix user from the start
2019-03-04 16:26:19 +01:00
Lionstiger
278484656b
ensure systemd reloaded after bridge installation
2019-03-04 15:12:37 +01:00
Lionstiger
2d78c5f89d
made matrix_appservice_discord_client_id lowercase
2019-03-04 15:11:06 +01:00
Lionstiger
7aadd8bbe9
undo changed synapse version
2019-03-03 19:55:56 +01:00
Lionstiger
4aeeb5cf31
Autogenerate Discord invite link
...
Generates the link required to add the Bridge to a Discord server.
2019-03-03 19:33:16 +01:00
Lionstiger
835c349275
Add matrix-appservice-discord bridge
...
Bridge is setup to work on the matrix side with this, but the discord invite link is not automatically generated.
2019-03-03 18:22:52 +01:00
Slavi Pantaleev
6f6dff3e2b
Update some Docker images
2019-03-03 12:27:43 +02:00
Slavi Pantaleev
45618679f5
Reload systemd services when they get updated
...
Fixes #69 (Github Issue)
2019-03-03 11:55:15 +02:00
Slavi Pantaleev
041a1947b3
Update Synapse (0.99.1.1 -> 0.99.2)
2019-03-02 10:03:09 +02:00
paulbdavis
f2a2cad107
allow exposing mautrix_telegram port
2019-03-01 16:05:01 -07:00
Slavi Pantaleev
a43bcd81fe
Rename some variables
2019-02-28 11:51:09 +02:00
Slavi Pantaleev
8cac29a5d5
Update matrix-synapse-rest-auth (0.1.1 -> 0.1.2)
2019-02-28 11:15:26 +02:00
Slavi Pantaleev
25bdc10617
Follow redirects for some well-known files
...
The Server spec says that redirects should be followed for
`/.well-known/matrix/server`. So we follow them.
The Client-Server specs doesn't mention redirects, so we don't
follow redirects there.
2019-02-25 21:03:33 +02:00
Slavi Pantaleev
433780384e
Do not use docker_container module
...
Using `docker_container` with a `cap_drop` argument requires
Ansible >=2.7.
We want to support older versions too (2.4), so we either need to
stop invoking it with `cap_drop` (insecure), or just stop using
the module altogether.
Since it was suffering from other bugs too (not deleting containers
on failure), we've decided to remove `docker_container` usage completely.
2019-02-25 10:42:27 +02:00
Slavi Pantaleev
639fc0bb5c
Treat empty string dig lookup responses as "missing record"
2019-02-22 18:02:10 +02:00
Slavi Pantaleev
4c512c8e64
Upgrade mxisd (1.3.0 -> 1.3.1)
2019-02-22 15:44:13 +02:00
Slavi Pantaleev
550d398e6c
Remove some unnecessary slashes
2019-02-20 21:21:20 +02:00
Slavi Pantaleev
d552a742f8
Fix Riot caching troubles
...
Some resources shouldn't be cached right now,
as per https://github.com/vector-im/riot-web/pull/8702
(note all of the suggestions from that pull request were applied,
because some of them do not seem relevant - no such files)
Fixes #98 (Github Issue)
2019-02-16 17:59:41 +02:00
Slavi Pantaleev
350b25690d
Add Riot v1.0 (v1.0.1) support
2019-02-16 11:48:17 +02:00
Slavi Pantaleev
0f55823c5f
Update Synapse (0.99.1 -> 0.99.1.1)
...
It's not important for us, as it only contains
some ACME-related fix.
2019-02-14 19:43:13 +02:00
Slavi Pantaleev
eb08e20418
Upgrade Synapse (0.99.0 -> 0.99.1) and sync config
...
`matrix_synapse_no_tls` is now implicit, so we've gotten rid of it.
The `homeserver.yaml.j2` template has been synchronized with the
configuration generated by Synapse v0.99.1 (some new options
are present, etc.)
2019-02-14 18:40:55 +02:00
Slavi Pantaleev
df76ae707a
Fix inaccurate comment
2019-02-13 14:07:16 +02:00
Slavi Pantaleev
7a1b5a2024
Update mxisd (1.2.2 -> 1.3.0)
2019-02-10 23:20:05 +02:00
Slavi Pantaleev
42c4de348c
Revert "Bind metrics on :: too"
...
This reverts commit 536c85619f
.
Looks like binding metrics on IPv6 (`::`) fails with an error:
socket.gaierror: [Errno -2] Name does not resolve
2019-02-09 13:21:18 +02:00
Slavi Pantaleev
08635666df
Do not attempt to start coturn TLS listeners
...
We don't provide certificates, so it fails anyway,
but we'd rather suppress the warnings about it too.
2019-02-07 13:20:30 +02:00
Slavi Pantaleev
f5cd916de8
Update coturn (4.5.0.8 -> 4.5.1.0)
2019-02-07 13:15:59 +02:00
Slavi Pantaleev
536c85619f
Bind metrics on :: too
...
For consistency with all our other listeners,
we make this one bind on the `::` address too
(both IPv4 and IPv6).
Additional details are in #91 (Github Pull Request).
2019-02-06 14:24:10 +02:00
Slavi Pantaleev
91a757c581
Add support for reloading Synapse
2019-02-06 09:25:13 +02:00
Slavi Pantaleev
40f3793af7
Upgrade Synapse to v0.99 and simplify dummy TLS cert logic
2019-02-06 09:17:55 +02:00
Slavi Pantaleev
5db692f877
Remove some useless homeserver.yaml configuration
2019-02-05 14:02:01 +02:00
Slavi Pantaleev
738c592c27
Bump Synapse version (0.34.1.1 -> 0.99.0rc4)
2019-02-05 13:33:39 +02:00
Slavi Pantaleev
119016e858
Cache /.well-known/matrix files for longer
2019-02-05 13:06:17 +02:00
Slavi Pantaleev
764a040a90
Make /.well-known/matrix/server optional
...
People who wish to rely on SRV records can prevent
the `/.well-known/matrix/server` file from being generated
(and thus, served.. which causes trouble).
2019-02-05 12:09:46 +02:00
Slavi Pantaleev
74710427e5
Allow for the federation port (tcp/8448)'s certificate to be changed
...
If someone decides to not use `/.well-known/matrix/server` and only
relies on SRV records, then they would need to serve tcp/8448 using
a certificate for the base domain (not for the matrix) domain.
Until now, they could do that by giving the certificate to Synapse
and setting it terminate TLS. That makes swapping certificates
more annoying (Synapse requires a restart to re-read certificates),
so it's better if we can support it via matrix-nginx-proxy.
Mounting certificates (or any other file) into the matrix-nginx-proxy container
can be done with `matrix_nginx_proxy_container_additional_volumes`,
introduced in 96afbbb5a
.
2019-02-05 12:09:46 +02:00
Slavi Pantaleev
f6ebd4ce62
Initial work on Synapse 0.99/1.0 preparation
2019-02-05 12:09:46 +02:00
Slavi Pantaleev
e06e5dd208
Fix syntax breakage
...
Regression since 96afbbb5af
2019-02-05 12:09:33 +02:00
Slavi Pantaleev
96afbbb5af
Allow additional volumes to be mounted into matrix-nginx-proxy
...
Certain use-cases may require that people mount additional files
into the matrix-nginx-proxy container. Similarly to how we do it
for Synapse, we are introducing a new variable that makes this
possible (`matrix_nginx_proxy_container_additional_volumes`).
This makes the htpasswd file for Synapse Metrics (introduced in #86 ,
Github Pull Request) to also perform mounting using this new mechanism.
Hopefully, for such an "extension", keeping htpasswd file-creation and
volume definition in the same place (the tasks file) is better.
All other major volumes' mounting mechanism remains the same (explicit
mounting).
2019-02-05 11:46:16 +02:00
Slavi Pantaleev
9a251e4e46
Remove some more references to localhost
...
Continuation of 1f0cc92b33
.
As an explanation for the problem:
when saying `localhost` on the host, it sometimes gets resolved to `::1`
and sometimes to `127.0.0.1`. On the unfortunate occassions that
it gets resolved to `::1`, the container won't be able to serve the
request, because Docker containers don't have IPv6 enabled by default.
To avoid this problem, we simply prevent any lookups from happening
and explicitly use `127.0.0.1`.
2019-02-05 11:11:28 +02:00
Aaron Raimist
1f0cc92b33
Use IPv4 localhost everywhere (or almost everywhere)
2019-02-04 09:49:45 -06:00
Aaron Raimist
58ca2e7dfd
Turn off IPv6 when using your own Nginx server
...
Docker apparently doesn't like IPv6.
2019-02-04 09:03:43 -06:00
Slavi Pantaleev
52d5e540c0
Fix ownership of generated self-signed certificates (root -> matrix)
2019-02-02 17:32:13 +02:00
dhose
87e3deebfd
Enable exposure of Prometheus metrics.
2019-02-01 20:02:11 +01:00
Plailect
29b40b428a
Database files must be stored on permanent storage
2019-02-01 11:44:06 -05:00
Slavi Pantaleev
897cfbdcba
Fix /.well-known/matrix/client installation
...
Regression since 51312b82
2019-02-01 17:06:49 +02:00
Slavi Pantaleev
8681a5dc69
Add 'none' SSL certificate retrieval method
2019-02-01 16:50:25 +02:00
Slavi Pantaleev
cd332d9b4e
Add TLS v1.3 support to matrix-nginx-proxy
...
This was mentioned in #27 (Github Pull Request),
but it's just now that the nginx Docker image actually supports
TLS v1.3 and we can enable it.
2019-02-01 11:49:22 +02:00
Slavi Pantaleev
a9fae8e3b1
Revert "Use native OpenSSL module to generate passkey.pem
"
...
This reverts commit 0dac5ea508
.
Relying on pyOpenSSL is the Ansible way of doing things, but is
impractical and annoying for users.
`openssl` is easily available on most servers, even by default.
We'd better use that.
2019-01-31 20:45:14 +02:00
Slavi Pantaleev
08321ea4bb
Merge pull request #87 from Plailect/master
...
Add support for matrix-appservice-irc
2019-01-31 20:20:32 +02:00
Plailect
0dac5ea508
Use native OpenSSL module to generate passkey.pem
2019-01-31 11:38:54 -05:00
Plailect
5e1d96c727
Add matrix_appservice_irc_container_expose_client_server_api_port
2019-01-31 11:20:45 -05:00
Plailect
0a2a8e118c
Update example configuration and documentation
2019-01-31 11:05:27 -05:00
Slavi Pantaleev
c2b1cf7f93
Fix SSL renewal script
...
Regression since 299a8c4c7c
2019-01-31 09:43:09 +02:00
Plailect
3a4a671dd7
Add support for matrix-appservice-irc
2019-01-31 00:37:23 -05:00
Slavi Pantaleev
0be7b25c64
Make (most) containers run with a read-only filesystem
2019-01-29 18:52:02 +02:00
Slavi Pantaleev
b77b967171
Merge branch 'master' into non-root-containers
2019-01-29 18:00:11 +02:00
Slavi Pantaleev
cbc1cdbbf0
Do not try to load certificates
...
Seems like we unintentionally removed the mounting of certificates
(the `/matrix-config` mount) as part of splitting the playbook into
roles in 51312b8250
.
It appears that those certificates weren't necessary for coturn to
funciton though, so we might just get rid of the configuration as well.
2019-01-29 17:56:40 +02:00
Slavi Pantaleev
bf10331456
Make mautrix-whatsapp run as non-root and w/o capabilities
2019-01-28 15:55:58 +02:00
Slavi Pantaleev
8a3f942d93
Make mautrix-telegram run as non-root and w/o capabilities
2019-01-28 15:40:16 +02:00
Slavi Pantaleev
3e8a4159e6
Uncomment unintentionally-commented logic
2019-01-28 14:25:03 +02:00
Slavi Pantaleev
9830a0871d
Fix self-check for mxisd not being enabled
2019-01-28 11:47:31 +02:00
Slavi Pantaleev
9438402f61
Drop capabilities in a few more places
...
Continuation of 316d653d3e
2019-01-28 11:43:32 +02:00
Slavi Pantaleev
316d653d3e
Drop capabilities in containers
...
We run containers as a non-root user (no effective capabilities).
Still, if a setuid binary is available in a container image, it could
potentially be used to give the user the default capabilities that the
container was started with. For Docker, the default set currently is:
- "CAP_CHOWN"
- "CAP_DAC_OVERRIDE"
- "CAP_FSETID"
- "CAP_FOWNER"
- "CAP_MKNOD"
- "CAP_NET_RAW"
- "CAP_SETGID"
- "CAP_SETUID"
- "CAP_SETFCAP"
- "CAP_SETPCAP"
- "CAP_NET_BIND_SERVICE"
- "CAP_SYS_CHROOT"
- "CAP_KILL"
- "CAP_AUDIT_WRITE"
We'd rather prevent such a potential escalation by dropping ALL
capabilities.
The problem is nicely explained here: https://github.com/projectatomic/atomic-site/issues/203
2019-01-28 11:22:54 +02:00
Slavi Pantaleev
0ff6735546
Fall back to dig for SRV lookup, if no dnspython
...
This is a known/intentional regression since f92c4d5a27
.
The new stance on this is that most people would not have
dnspython, but may have the `dig` tool. There's no good
reason for not increasing our chances of success by trying both
methods (Ansible dig lookup and using the `dig` CLI tool).
Fixes #85 (Github issue).
2019-01-28 09:42:10 +02:00