mirror of
				https://github.com/spantaleev/matrix-docker-ansible-deploy.git
				synced 2025-10-25 21:40:41 +02:00 
			
		
		
		
	As suggested in #63 (Github issue), splitting the playbook's logic into multiple roles will be beneficial for maintainability. This patch realizes this split. Still, some components affect others, so the roles are not really independent of one another. For example: - disabling mxisd (`matrix_mxisd_enabled: false`), causes Synapse and riot-web to reconfigure themselves with other (public) Identity servers. - enabling matrix-corporal (`matrix_corporal_enabled: true`) affects how reverse-proxying (by `matrix-nginx-proxy`) is done, in order to put matrix-corporal's gateway server in front of Synapse We may be able to move away from such dependencies in the future, at the expense of a more complicated manual configuration, but it's probably not worth sacrificing the convenience we have now. As part of this work, the way we do "start components" has been redone now to use a loop, as suggested in #65 (Github issue). This should make restarting faster and more reliable.
		
			
				
	
	
		
			34 lines
		
	
	
		
			1.1 KiB
		
	
	
	
		
			Django/Jinja
		
	
	
	
	
	
			
		
		
	
	
			34 lines
		
	
	
		
			1.1 KiB
		
	
	
	
		
			Django/Jinja
		
	
	
	
	
	
| [Unit]
 | |
| Description=Matrix Goofys media store
 | |
| After=docker.service
 | |
| Requires=docker.service
 | |
| 
 | |
| [Service]
 | |
| Type=simple
 | |
| ExecStartPre=-/usr/bin/docker kill %n
 | |
| ExecStartPre=-/usr/bin/docker rm %n
 | |
| ExecStart=/usr/bin/docker run --rm --name %n \
 | |
| 			--log-driver=none \
 | |
| 			--user={{ matrix_user_uid }}:{{ matrix_user_gid }} \
 | |
| 			-v /etc/passwd:/etc/passwd:ro \
 | |
| 			-v /etc/group:/etc/group:ro \
 | |
| 			--security-opt apparmor:unconfined \
 | |
| 			--cap-add mknod \
 | |
| 			--cap-add sys_admin \
 | |
| 			--device=/dev/fuse \
 | |
| 			-v {{ matrix_synapse_media_store_path }}:/s3:shared \
 | |
| 			--env-file={{ matrix_synapse_config_dir_path }}/env-goofys \
 | |
| 			--entrypoint /bin/sh \
 | |
| 			{{ matrix_s3_goofys_docker_image }} \
 | |
| 			-c 'goofys -f --storage-class=STANDARD_IA --region {{ matrix_s3_media_store_region }} --stat-cache-ttl 60m0s --type-cache-ttl 60m0s --dir-mode 0700 --file-mode 0700 {{ matrix_s3_media_store_bucket_name }} /s3'
 | |
| TimeoutStartSec=5min
 | |
| ExecStop=-/usr/bin/docker stop %n
 | |
| ExecStop=-/usr/bin/docker kill %n
 | |
| ExecStop=-/usr/bin/docker rm %n
 | |
| ExecStop=-/bin/fusermount -u {{ matrix_synapse_media_store_path }}
 | |
| Restart=always
 | |
| RestartSec=5
 | |
| 
 | |
| [Install]
 | |
| WantedBy=multi-user.target
 |