matrix-docker-ansible-deploy/roles/custom/matrix-bridge-wechat/defaults/main.yml

---

# WeChat Bridge is a Matrix <-> WeChat bridge
# Project source code URL: https://github.com/duo/matrix-wechat

matrix_wechat_enabled: true

# renovate: datasource=docker depName=lxduo/matrix-wechat
matrix_wechat_version: 0.2.4
matrix_wechat_container_image: "{{ matrix_wechat_container_image_name_prefix }}lxduo/matrix-wechat:{{ matrix_wechat_version }}"
matrix_wechat_container_image_name_prefix: "{{ 'localhost/' if matrix_wechat_container_image_self_build else 'docker.io/' }}"
matrix_wechat_container_image_force_pull: "{{ matrix_wechat_container_image.endswith(':latest') }}"

matrix_wechat_container_image_self_build: false
matrix_wechat_container_image_self_build_repo: "https://github.com/duo/matrix-wechat.git"
matrix_wechat_container_image_self_build_branch: "{{ 'master' if matrix_wechat_version == 'latest' else matrix_wechat_version }}"

# renovate: datasource=docker depName=lxduo/matrix-wechat-agent
matrix_wechat_agent_version: 0.0.1
matrix_wechat_agent_container_image: "{{ matrix_wechat_agent_container_image_name_prefix }}lxduo/matrix-wechat-agent:{{ matrix_wechat_agent_version }}"
matrix_wechat_agent_container_image_name_prefix: "{{ 'localhost/' if matrix_wechat_agent_container_image_self_build else 'docker.io/' }}"
matrix_wechat_agent_container_image_force_pull: "{{ matrix_wechat_agent_container_image.endswith(':latest') }}"

# The agent needs to write to /home/user/.vnc.
# `/home/user` is owned by `user:group` (`1000:1000`), so it needs to run with that user/group.
matrix_wechat_agent_container_user_uid: 1000
matrix_wechat_agent_container_user_gid: 1000

matrix_wechat_agent_container_image_self_build: false
matrix_wechat_agent_container_image_self_build_repo: "https://github.com/duo/matrix-wechat-agent.git"
matrix_wechat_agent_container_image_self_build_branch: "{{ 'master' if matrix_wechat_agent_version == 'latest' else matrix_wechat_agent_version }}"

matrix_wechat_base_path: "{{ matrix_base_data_path }}/wechat"
matrix_wechat_config_path: "{{ matrix_wechat_base_path }}/config"
matrix_wechat_data_path: "{{ matrix_wechat_base_path }}/data"
matrix_wechat_container_src_files_path: "{{ matrix_wechat_base_path }}/container-src"
matrix_wechat_agent_container_src_files_path: "{{ matrix_wechat_base_path }}/agent-container-src"

matrix_wechat_homeserver_address: ""
matrix_wechat_homeserver_domain: "{{ matrix_domain }}"
matrix_wechat_appservice_address: 'http://matrix-wechat:8080'

matrix_wechat_container_network: ""

matrix_wechat_container_additional_networks: "{{ matrix_wechat_container_additional_networks_auto + matrix_wechat_container_additional_networks_custom }}"
matrix_wechat_container_additional_networks_auto: []
matrix_wechat_container_additional_networks_custom: []

# A list of extra arguments to pass to the container
matrix_wechat_container_extra_arguments: []

# List of systemd services that matrix-wechat.service depends on.
matrix_wechat_systemd_required_services_list: "{{ matrix_wechat_systemd_required_services_list_default + matrix_wechat_systemd_required_services_list_auto + matrix_wechat_systemd_required_services_list_custom }}"
matrix_wechat_systemd_required_services_list_default: "{{ [devture_systemd_docker_base_docker_service_name] if devture_systemd_docker_base_docker_service_name else [] }}"
matrix_wechat_systemd_required_services_list_auto: []
matrix_wechat_systemd_required_services_list_custom: []

# List of systemd services that matrix-wechat.service wants
matrix_wechat_systemd_wanted_services_list: []

matrix_wechat_appservice_token: ''
matrix_wechat_homeserver_token: ''

matrix_wechat_appservice_bot_username: wechatbot

matrix_wechat_command_prefix: "!wechat"

# Whether or not created rooms should have federation enabled.
# If false, created portal rooms will never be federated.
matrix_wechat_federate_rooms: true

# Database-related configuration fields.
matrix_wechat_database_engine: 'postgres'
matrix_wechat_database_username: 'matrix_wechat'
matrix_wechat_database_password: 'some-password'
matrix_wechat_database_hostname: ''
matrix_wechat_database_port: 5432
matrix_wechat_database_name: 'matrix_wechat'
matrix_wechat_database_sslmode: disable
matrix_wechat_database_connection_string: 'postgresql://{{ matrix_wechat_database_username }}:{{ matrix_wechat_database_password }}@{{ matrix_wechat_database_hostname }}:{{ matrix_wechat_database_port }}/{{ matrix_wechat_database_name }}?sslmode={{ matrix_wechat_database_sslmode }}'

matrix_wechat_bridge_listen_secret: ''

# Can be set to enable automatic double-puppeting via Shared Secret Auth (https://github.com/devture/matrix-synapse-shared-secret-auth).
matrix_wechat_login_shared_secret: ''
matrix_wechat_login_shared_secret_map:
  "{{ {matrix_wechat_homeserver_domain: matrix_wechat_login_shared_secret} if matrix_wechat_login_shared_secret else {} }}"

# Servers to always allow double puppeting from
matrix_wechat_double_puppet_server_map:
  "{{ matrix_wechat_homeserver_domain: matrix_wechat_homeserver_address }}"

# Enable End-to-bridge encryption
matrix_wechat_encryption_allow: "{{ matrix_bridges_encryption_enabled }}"
matrix_wechat_encryption_default: "{{ matrix_wechat_encryption_allow }}"

# Minimum severity of journal log messages.
# Valid values: fatal, error, warn, info, debug
matrix_wechat_log_level: 'warn'

matrix_wechat_permissions: |
  {{
    {matrix_wechat_homeserver_domain: 'user'}
    | combine({matrix_admin: 'admin'} if matrix_admin else {})
  }}

# Default Wechat configuration template which covers the generic use case.
# You can customize it by controlling the various variables inside it.
#
# For a more advanced customization, you can extend the default (see `matrix_wechat_configuration_extension_yaml`)
# or completely replace this variable with your own template.
matrix_wechat_configuration_yaml: "{{ lookup('template', 'templates/config.yaml.j2') }}"

matrix_wechat_configuration_extension_yaml: |
  # Your custom YAML configuration goes here.
  # This configuration extends the default starting configuration (`matrix_wechat_configuration_yaml`).
  #
  # You can override individual variables from the default configuration, or introduce new ones.
  #
  # If you need something more special, you can take full control by
  # completely redefining `matrix_wechat_configuration_yaml`.

matrix_wechat_configuration_extension: "{{ matrix_wechat_configuration_extension_yaml | from_yaml if matrix_wechat_configuration_extension_yaml | from_yaml is mapping else {} }}"

# Holds the final configuration (a combination of the default and its extension).
# You most likely don't need to touch this variable. Instead, see `matrix_wechat_configuration_yaml`.
matrix_wechat_configuration: "{{ matrix_wechat_configuration_yaml | from_yaml | combine(matrix_wechat_configuration_extension, recursive=True) }}"

matrix_wechat_registration_yaml: |
  id: wechat
  url: {{ matrix_wechat_appservice_address }}
  as_token: "{{ matrix_wechat_appservice_token }}"
  hs_token: "{{ matrix_wechat_homeserver_token }}"
  # See https://github.com/mautrix/signal/issues/43
  sender_localpart: _bot_{{ matrix_wechat_appservice_bot_username }}
  rate_limited: false
  namespaces:
      users:
      - regex: '^@_wechat_(.*):{{ matrix_wechat_homeserver_domain | regex_escape }}$'
        exclusive: true
      - exclusive: true
        regex: '^@{{ matrix_wechat_appservice_bot_username | regex_escape }}:{{ matrix_wechat_homeserver_domain | regex_escape }}$'
  de.sorunome.msc2409.push_ephemeral: true

matrix_wechat_registration: "{{ matrix_wechat_registration_yaml | from_yaml }}"


matrix_wechat_agent_service_secret: "{{ matrix_wechat_bridge_listen_secret }}"

matrix_wechat_agent_configuration_yaml: "{{ lookup('template', 'templates/agent-config.yaml.j2') }}"

matrix_wechat_agent_configuration: "{{ matrix_wechat_agent_configuration_yaml | from_yaml }}"