Merge 97740ec800491d8c2f8658f7ed6ecc21b02fbc7c into ccd6c003abc1acdde2f97251424cd7b321b3327e

Update docs/configuring-playbook-ma1sd.md: move instruction to configure DNS settings up
Signed-off-by: Suguru Hirahara <acioustick@noreply.codeberg.org>
2025-01-30 11:54:55 +01:00 · 2024-11-21 08:40:38 +00:00 · 2024-11-21 17:40:22 +09:00 · 2024-11-21 17:38:33 +09:00 · 2024-11-21 16:30:50 +09:00 · 2024-11-21 08:13:07 +02:00
3 changed files with 14 additions and 12 deletions
--- a/docs/configuring-playbook-ma1sd.md
+++ b/docs/configuring-playbook-ma1sd.md
@ -1,5 +1,7 @@
 # Setting up ma1sd Identity Server (optional)

+**⚠️Note**: ma1sd itself has also been unmaintained for years (the latest commit and release being from 2021). The role of identity servers in the Matrix specification also has an uncertain future. **We recommend not bothering with installing it unless it's the only way you can do what you need to do**. For example, certain things like LDAP integration can also be implemented via [the LDAP provider module for Synapse](./configuring-playbook-ldap-auth.md).
+
 The playbook can configure the [ma1sd](https://github.com/ma1uta/ma1sd) Identity Server for you. It is a fork of [mxisd](https://github.com/kamax-io/mxisd) which was pronounced end of life 2019-06-21.

 ma1sd is used for 3PIDs (3rd party identifiers like E-mail and phone numbers) and some [enhanced features](https://github.com/ma1uta/ma1sd/#features). It is private by default, potentially at the expense of user discoverability.
@ -8,6 +10,16 @@ See the project's [documentation](https://github.com/ma1uta/ma1sd) to learn what

 **Note**: enabling ma1sd, means that the `openid` API endpoints will be exposed on the Matrix Federation port (usually `8448`), even if [federation](configuring-playbook-federation.md) is disabled. It's something to be aware of, especially in terms of firewall whitelisting (make sure port `8448` is accessible).

+## Adjusting DNS records
+
+To make the ma1sd Identity Server enable its federation features, set up an SRV record that looks like this:
+- Name: `_matrix-identity._tcp` (use this text as-is)
+- Content: `10 0 443 matrix.example.com` (replace `example.com` with your own)
+
+See [ma1sd's documentation](https://github.com/ma1uta/ma1sd/wiki/mxisd-and-your-privacy#choices-are-never-easy) for information on the privacy implications of setting up this SRV record.
+
+**Note**: This `_matrix-identity._tcp` SRV record for the identity server is different from the `_matrix._tcp` that can be used for Synapse delegation. See [howto-server-delegation.md](howto-server-delegation.md) for more information about delegation.
+
 ## Adjusting the playbook configuration

 To enable ma1sd, add the following configuration to your `inventory/host_vars/matrix.example.com/vars.yml` file:
@ -116,16 +128,6 @@ matrix_ma1sd_configuration_extension_yaml: |
            whitelist: ~
 ```

-## Adjusting DNS records
-
-To make the ma1sd Identity Server enable its federation features, set up an SRV record that looks like this:
- Name: `_matrix-identity._tcp` (use this text as-is)
- Content: `10 0 443 matrix.example.com` (replace `example.com` with your own)
-
-See [ma1sd's documentation](https://github.com/ma1uta/ma1sd/wiki/mxisd-and-your-privacy#choices-are-never-easy) for information on the privacy implications of setting up this SRV record.
-
-**Note**: This `_matrix-identity._tcp` SRV record for the identity server is different from the `_matrix._tcp` that can be used for Synapse delegation. See [howto-server-delegation.md](howto-server-delegation.md) for more information about delegation.
-
 ## Installing

 After configuring the playbook, run the [installation](installing.md) command: `just install-all` or `just setup-all`
--- a/requirements.yml
+++ b/requirements.yml
@ -4,7 +4,7 @@
  version: v1.0.0-5
  name: auxiliary
 - src: git+https://github.com/mother-of-all-self-hosting/ansible-role-backup_borg.git
-  version: v1.4.0-1.9.2-0
+  version: v1.4.0-1.9.2-1
  name: backup_borg
 - src: git+https://github.com/devture/com.devture.ansible.role.container_socket_proxy.git
  version: v0.2.0-0
--- a/roles/custom/matrix-synapse-admin/defaults/main.yml
+++ b/roles/custom/matrix-synapse-admin/defaults/main.yml
@ -14,7 +14,7 @@ matrix_synapse_admin_container_image_self_build: false
 matrix_synapse_admin_container_image_self_build_repo: "https://github.com/etkecc/synapse-admin.git"

 # renovate: datasource=docker depName=ghcr.io/etkecc/synapse-admin
-matrix_synapse_admin_version: v0.10.3-etke30
+matrix_synapse_admin_version: v0.10.3-etke31
 matrix_synapse_admin_docker_image: "{{ matrix_synapse_admin_docker_image_name_prefix }}etkecc/synapse-admin:{{ matrix_synapse_admin_version }}"
 matrix_synapse_admin_docker_image_name_prefix: "{{ 'localhost/' if matrix_synapse_admin_container_image_self_build else 'ghcr.io/' }}"
 matrix_synapse_admin_docker_image_force_pull: "{{ matrix_synapse_admin_docker_image.endswith(':latest') }}"
Author	SHA1	Message	Date
Suguru Hirahara	46b69afb9a	Merge 97740ec800491d8c2f8658f7ed6ecc21b02fbc7c into ccd6c003abc1acdde2f97251424cd7b321b3327e	2024-11-21 08:40:38 +00:00
Suguru Hirahara	97740ec800	Update docs/configuring-playbook-ma1sd.md: move instruction to configure DNS settings up Signed-off-by: Suguru Hirahara <acioustick@noreply.codeberg.org>	2024-11-21 17:40:22 +09:00
Suguru Hirahara	27ce92f179	Update configuring-playbook-ma1sd.md: adjust to follow other examples such as on configuring-playbook-bridge-appservice-webhooks.md This commit: - Move the note about installing to the top - Add warning emoji (⚠️: U+26A0 FE0F) - Use a common expression to discourage installing Signed-off-by: Suguru Hirahara <acioustick@noreply.codeberg.org>	2024-11-21 17:38:33 +09:00
Suguru Hirahara	53130c6dfb	Update docs/configuring-playbook-ma1sd.md Co-authored-by: Slavi Pantaleev <slavi@devture.com>	2024-11-21 16:30:50 +09:00
Aine	ccd6c003ab	Synapse Admin v0.10.3-etke31 https://github.com/etkecc/synapse-admin/releases/tag/v0.10.3-etke31	2024-11-21 08:13:07 +02:00
Aine	9b72852afe	updated backup_borg (v1.4.0-1.9.2-0 -> v1.4.0-1.9.2-1);	2024-11-20 23:10:08 +02:00