mirror of
				https://github.com/spantaleev/matrix-docker-ansible-deploy.git
				synced 2025-10-25 05:30:39 +02:00 
			
		
		
		
	This should bring better compatibility with future Ansible versions, one of which will some day drop support for accessing facts via the global namespace. Ref: https://github.com/geerlingguy/ansible-role-docker/pull/513
		
			
				
	
	
		
			113 lines
		
	
	
		
			8.0 KiB
		
	
	
	
		
			YAML
		
	
	
	
	
	
			
		
		
	
	
			113 lines
		
	
	
		
			8.0 KiB
		
	
	
	
		
			YAML
		
	
	
	
	
	
| # SPDX-FileCopyrightText: 2018 - 2024 Slavi Pantaleev
 | |
| # SPDX-FileCopyrightText: 2020 - 2021 Aaron Raimist
 | |
| # SPDX-FileCopyrightText: 2020 Christian Wolf
 | |
| # SPDX-FileCopyrightText: 2020 Horvath Gergely
 | |
| # SPDX-FileCopyrightText: 2022 Charles Wright
 | |
| # SPDX-FileCopyrightText: 2022 Warren Bailey
 | |
| # SPDX-FileCopyrightText: 2023 Jayesh Nirve
 | |
| #
 | |
| # SPDX-License-Identifier: AGPL-3.0-or-later
 | |
| 
 | |
| ---
 | |
| 
 | |
| - name: Fail if invalid homeserver implementation
 | |
|   ansible.builtin.fail:
 | |
|     msg: "You need to set a valid homeserver implementation in `matrix_homeserver_implementation`"
 | |
|   when: "matrix_homeserver_implementation not in ['synapse', 'dendrite', 'conduit', 'conduwuit', 'continuwuity']"
 | |
| 
 | |
| - name: (Deprecation) Catch and report renamed settings
 | |
|   ansible.builtin.fail:
 | |
|     msg: >-
 | |
|       Your configuration contains a variable, which now has a different name.
 | |
|       Please rename the variable (`{{ item.old }}` -> `{{ item.new }}`) on your configuration file (vars.yml).
 | |
|   when: "lookup('ansible.builtin.varnames', ('^' + item.old + '$'), wantlist=True) | length > 0"
 | |
|   with_items:
 | |
|     - {'old': 'host_specific_hostname_identity', 'new': 'matrix_domain'}
 | |
|     - {'old': 'hostname_identity', 'new': 'matrix_domain'}
 | |
|     - {'old': 'hostname_matrix', 'new': 'matrix_server_fqn_matrix'}
 | |
|     - {'old': 'hostname_riot', 'new': 'matrix_server_fqn_element'}
 | |
|     - {'old': 'matrix_server_fqn_riot', 'new': 'matrix_server_fqn_element'}
 | |
|     - {'old': 'matrix_local_bin_path', 'new': '<there is no global bin path anymore - each role has its own>'}
 | |
|     - {'old': 'matrix_client_element_e2ee_default', 'new': 'matrix_static_files_file_matrix_client_property_io_element_e2ee_default'}
 | |
|     - {'old': 'matrix_client_element_e2ee_secure_backup_required', 'new': 'matrix_static_files_file_matrix_client_property_io_element_e2ee_secure_backup_required'}
 | |
|     - {'old': 'matrix_client_element_e2ee_secure_backup_setup_methods', 'new': 'matrix_static_files_file_matrix_client_property_io_element_e2ee_secure_backup_setup_methods'}
 | |
|     - {'old': 'matrix_container_global_registry_prefix', 'new': '<no global variable anymore; you need to override the `_registry_prefix` variable in each component separately>'}
 | |
|     - {'old': 'matrix_user_username', 'new': 'matrix_user_name'}
 | |
|     - {'old': 'matrix_user_groupname', 'new': 'matrix_group_name'}
 | |
| 
 | |
| # We have a dedicated check for this variable, because we'd like to have a custom (friendlier) message.
 | |
| - name: Fail if matrix_homeserver_generic_secret_key is undefined
 | |
|   ansible.builtin.fail:
 | |
|     msg: |
 | |
|       The `matrix_homeserver_generic_secret_key` variable must be defined and have a non-null and non-empty value.
 | |
| 
 | |
|       If you're observing this error on a new installation, you should ensure that the `matrix_homeserver_generic_secret_key` is defined.
 | |
|       If you think you've defined it, but are still getting this error, then it's likely that you have a typo
 | |
|       in your domain name in `inventory/hosts` or in one of the directories leading up to your `inventory/host_vars/matrix.example.com/vars.yml` file.
 | |
| 
 | |
|       If you're observing this error on an existing homeserver installation, you can fix it easily and in a backward-compatible way by adding
 | |
|       `{% raw %}matrix_homeserver_generic_secret_key: "{{ matrix_synapse_macaroon_secret_key }}"{% endraw %}`
 | |
|       to your `vars.yml` file. Using another secret value for the new variable is also possible and shouldn't cause any trouble.
 | |
|   when: "matrix_homeserver_generic_secret_key is none or matrix_homeserver_generic_secret_key == ''"
 | |
| 
 | |
| - name: Fail if required variables are undefined
 | |
|   ansible.builtin.fail:
 | |
|     msg: "The `{{ item.var }}` variable must be defined and have a non-null and non-empty value"
 | |
|   with_items:
 | |
|     - {'var': matrix_domain, 'value': "{{ matrix_domain | default('') }}"}
 | |
|     - {'var': matrix_server_fqn_matrix, 'value': "{{ matrix_server_fqn_matrix | default('') }}"}
 | |
|     - {'var': matrix_server_fqn_element, 'value': "{{ matrix_server_fqn_element | default('') }}"}
 | |
|     - {'var': matrix_homeserver_container_client_api_endpoint, 'value': "{{ matrix_homeserver_container_client_api_endpoint | default('') }}"}
 | |
|     - {'var': matrix_homeserver_container_federation_api_endpoint, 'value': "{{ matrix_homeserver_container_federation_api_endpoint | default('') }}"}
 | |
|     - {'var': matrix_architecture, 'value': "{{ matrix_architecture | default('') }}"}
 | |
|   when: "item.value is none or item.value == ''"
 | |
| 
 | |
| - name: Fail if matrix_architecture is set incorrectly
 | |
|   ansible.builtin.fail:
 | |
|     msg: "Detected that variable matrix_architecture {{ matrix_architecture }} appears to be set incorrectly. See docs/alternative-architectures.md. Server appears to be {{ ansible_facts.architecture }}."
 | |
|   when: matrix_architecture not in ['amd64', 'arm32', 'arm64']
 | |
| 
 | |
| - name: Fail if matrix_playbook_reverse_proxy_type is set incorrectly
 | |
|   ansible.builtin.fail:
 | |
|     msg: |
 | |
|       You have not explicitly specified the type of reverse-proxy you'd like to use (with a `matrix_playbook_reverse_proxy_type` variable in your configuration).
 | |
|       The playbook used to default to nginx (matrix-nginx-proxy), but things are changing with Traefik being the new default reverse-proxy.
 | |
|       Learn more here: https://github.com/spantaleev/matrix-docker-ansible-deploy/blob/master/CHANGELOG.md#traefik-is-the-default-reverse-proxy-now
 | |
|   when: matrix_playbook_reverse_proxy_type == ''
 | |
| 
 | |
| - name: Fail if matrix_playbook_reverse_proxy_type is set incorrectly
 | |
|   ansible.builtin.fail:
 | |
|     msg: "Detected that variable matrix_playbook_reverse_proxy_type (current value: `{{ matrix_playbook_reverse_proxy_type }}`) appears to be set incorrectly. See roles/custom/matrix-base/defaults/main.yml for valid choices."
 | |
|   when: matrix_playbook_reverse_proxy_type not in ['playbook-managed-traefik', 'other-traefik-container', 'none']
 | |
| 
 | |
| - name: Fail if uppercase domain used
 | |
|   ansible.builtin.fail:
 | |
|     msg: "Detected that you're using an uppercase domain name - `{{ item }}`. This will cause trouble. Please use all-lowercase!"
 | |
|   with_items:
 | |
|     - "{{ matrix_domain }}"
 | |
|     - "{{ matrix_server_fqn_matrix }}"
 | |
|     - "{{ matrix_server_fqn_element }}"
 | |
|   when: "item != item | lower"
 | |
| 
 | |
| - name: Fail if encountering usage of removed role (mx-puppet-skype)
 | |
|   ansible.builtin.fail:
 | |
|     msg: >-
 | |
|       Your configuration seems to include a reference to `matrix_mx_puppet_skype_enabled`. Are you trying to install the mx-puppet-skype bridge?
 | |
|       The playbook no longer includes a role for installing mx-puppet-skype, because the mx-puppet-bridge is unmaintained and has been reported as broken for a long time.
 | |
|       To get rid of this error, remove all `matrix_mx_puppet_*` references from your configuration.
 | |
|       To clean up your server from mx-puppet-skype's presence, see this changelog entry: https://github.com/spantaleev/matrix-docker-ansible-deploy/blob/master/CHANGELOG.md#mx-puppet-skype-removal.
 | |
|       If you still need bridging to Skype, consider switching to the go-skype bridge instead. See `docs/configuring-playbook-bridge-go-skype-bridge.md`.
 | |
|   when: "lookup('ansible.builtin.varnames', '^matrix_mx_puppet_skype_enabled$', wantlist=True) | length > 0"
 | |
| 
 | |
| - name: Fail if mautrix-instagram and mautrix-meta-instagram are in conflict
 | |
|   ansible.builtin.fail:
 | |
|     msg: >-
 | |
|       Your configuration enables both the old mautrix-instagram bridge and the new mautrix-meta-instagram bridge.
 | |
|       By default, both bridges are configured to use the same bridge bot username (`@{{ matrix_mautrix_meta_instagram_appservice_username }}:{{ matrix_domain }}`) which is a conflict.
 | |
|       We recommend that you disable at least one of the bridges (preferably the old mautrix-instagram bridge), or to resolve the conflict in another way.
 | |
|       To resolve the conflict without disabling a bridge, consider adjusting one of `matrix_mautrix_instagram_appservice_bot_username` or `matrix_mautrix_meta_instagram_appservice_username` - they both have a value of {{ matrix_mautrix_meta_instagram_appservice_username }} right now.
 | |
|   when:
 | |
|     - matrix_mautrix_instagram_enabled | bool
 | |
|     - matrix_mautrix_meta_instagram_enabled | bool
 | |
|     - matrix_mautrix_instagram_appservice_bot_username == matrix_mautrix_meta_instagram_appservice_username
 |