3
0
mirror of https://github.com/spantaleev/matrix-docker-ansible-deploy.git synced 2025-10-25 09:33:25 +00:00
Commit Graph

929 Commits

Author SHA1 Message Date
Slavi Pantaleev
22ef579444 Make livekit-jwt-service communicate with livekit-server via public URLs
Communicating via container URLs works, but the URL provided to
livekit-jwt-service as `LIVEKIT_URL` is also passed to the user later
and it must be a public one at that point.

It'd be great if livekit-jwt-service can be given 2 different URLs
(e.g. `LIVEKIT_URL` and `LIVEKIT_URL_PUBLIC`) and only announce the
public one to the user, but there's no support for this yet.
2025-03-12 15:44:31 +02:00
Slavi Pantaleev
370feb740f Merge branch 'master' into element-call-integration 2025-03-12 10:04:19 +02:00
Slavi Pantaleev
a9ee537f83 Only point matrix_synapse_report_stats_endpoint to matrix-synapse-usage-exporter if it's enabled
Fixup related to https://github.com/spantaleev/matrix-docker-ansible-deploy/pull/3442
2025-03-12 10:04:06 +02:00
Slavi Pantaleev
9a11e5e1fe Auto-enable experimental Synapse features required by Element Call when Element Call is enabled 2025-03-12 09:19:03 +02:00
Slavi Pantaleev
2be4923aef Make Element Call role not reference foreign variables (except the matrix-base ones) 2025-03-12 08:56:15 +02:00
Slavi Pantaleev
0d1112638d Update LiveKit JWT service path prefix (/lk-jwt-service -> /livekit-jwt-service) 2025-03-12 08:07:56 +02:00
Slavi Pantaleev
2a69ca35be Clean up Element Call group vars vs defaults/main.yml mixup and make some minor LiveKit updates 2025-03-12 07:42:40 +02:00
Slavi Pantaleev
7572522820 Merge branch 'master' into element-call-integration 2025-03-12 06:24:34 +02:00
Slavi Pantaleev
1313f1e414 Make base domain root path redirect also handle URLs with query strings (passing them along)
Previously `https://example.com` and `https://example.com/` would be
redirected to `https://matrix.example.com`.

However, `https://example.com/?something` was not handled and was tried
to be served as a file by matrix-static-files for this base domain.

From now on, paths containing query strings will be handled as well
and the query string will be passed along.
Example: `https://example.com/?something` -> `https://matrix.example.com/?something`
2025-03-11 19:07:33 +02:00
Slavi Pantaleev
e33ed912cb Reorder matrix_playbook_docker_installation_daemon_options* variables a bit 2025-03-09 16:04:18 +02:00
Slavi Pantaleev
bd073bca74 Remove /etc/docker/daemon.json when no Docker options are set anymore 2025-03-09 16:03:15 +02:00
Slavi Pantaleev
0329cbb1b0 Remove leftover matrix_email2matrix_enabled usage in devture_systemd_service_manager_services_list_auto
Fixup for 1b05343aba
2025-02-26 08:05:16 +02:00
Slavi Pantaleev
1b05343aba Remove Email2Matrix support 2025-02-26 08:00:17 +02:00
Slavi Pantaleev
7d4f9fe7dc Upgrade matrix-corporal (3.1.3 -> 3.1.4) and switch where its gets pulled from
From 3.1.4 and onward, container images will be published to ghcr.io instead of docker.io.

These images are built for arm64 and amd64, but not for arm32 anymore.
2025-02-25 17:54:45 +02:00
Aine
34ed810509 fix bluesky tokens 2025-02-24 18:45:11 +02:00
Slavi Pantaleev
f7a8c8e83c Make external roles also respect matrix_container_global_registry_prefix_override
Fixup for b88b6ae7a3
2025-02-24 11:47:05 +02:00
Slavi Pantaleev
b88b6ae7a3 Introduce a new matrix_container_global_registry_prefix_override variable and make all roles respect it
`matrix_container_global_registry_prefix_override` may look similar to
the old `matrix_container_global_registry_prefix` variable
(removed in d6bf789710), but it's different.

The old `matrix_container_global_registry_prefix` variable was just a hardcode of `docker.io/` and roles that
needed to refer to `docker.io/` could use it. However, this was:

- not used by all roles, because some need another registry (not `docker.io/`)
- used only by roles within the playbook (`roles/custom`), not external roles

Overriding the old `matrix_container_global_registry_prefix` variable was rather pointless,
as it didn't cover everything.

The new `matrix_container_global_registry_prefix_override` variable, on the other hand,
lets you override the registry prefix for all components, regardless of whether they
use `docker.io/` or another registry by default.

This is useful to people who have somehow mirrored all container images to their own registry,
as it provides them with a single variable they can flip to influence the whole playbook.
2025-02-24 11:38:47 +02:00
Slavi Pantaleev
49c60deb8a Upgrade prometheus-node-exporter (v1.8.2-2 -> v1.8.2-3) 2025-02-22 21:35:09 +02:00
Slavi Pantaleev
b41cb172fe Upgrade ntfy (v2.11.0-1 -> v2.11.0-2) 2025-02-22 21:17:17 +02:00
Slavi Pantaleev
64a402eb65 Do not duplicate turn_uris construction for each homeserver implementation (extract to matrix_coturn_turn_uris) 2025-02-22 13:43:25 +02:00
Slavi Pantaleev
b6db2eaf15 Upgrade Grafana (v11.5.1-0 -> v11.5.2-0) 2025-02-22 10:31:14 +02:00
Slavi Pantaleev
87a05ef94b Upgrade Etherpad (v2.2.7-1 -> v2.2.7-2) and switch to newly introduced variables 2025-02-22 10:23:48 +02:00
Slavi Pantaleev
473151fe90 Upgrade container-socket-proxy (v0.2.0-0 -> v0.3.0-0) and switch to new variable names (devture_container_socket_proxy_* -> container_socket_proxy_*) 2025-02-22 01:01:42 +02:00
Slavi Pantaleev
0de1b76da7 Upgrade systemd_docker_base (v1.3.0-0 -> v1.4.0-0) and make use of the new devture_systemd_docker_base_ipv6_daemon_options_changing_enabled variable 2025-02-21 18:34:39 +02:00
Slavi Pantaleev
74177d9ba3 Document the state of the ip6tables and experimental daemon options for Docker 2025-02-21 16:37:41 +02:00
Zepmann
ff986b7512 Add mautrix-bluesky to the playbook. 2025-02-21 10:08:43 +02:00
Slavi Pantaleev
9d05994dce Make use of backup_borg_postgresql_databases_auto
Related to b0c63914cb

Ref:
- https://github.com/mother-of-all-self-hosting/ansible-role-backup_borg/pull/12
- 02dd1a8d70
2025-02-21 08:09:38 +02:00
Slavi Pantaleev
d6301db5ed Switch from postgres_backup_databases to postgres_backup_databases_auto
Ref: https://github.com/mother-of-all-self-hosting/ansible-role-postgres-backup/pull/6

Related to a445f8a5ae
2025-02-21 07:52:11 +02:00
Aine
c80fb913e7 borg backup: do not backup remote content by default 2025-02-20 15:48:19 +02:00
Slavi Pantaleev
ac26cc1cb0 Allow STUN/TURN exposure over TCP/UDP to be controlled separately & disable STUN over UDP by default 2025-02-19 11:50:49 +02:00
Slavi Pantaleev
d6c60fd538 Split matrix_client_fluffychat_container_additional_networks into _auto and _custom
Related to https://github.com/spantaleev/matrix-docker-ansible-deploy/pull/4068
2025-02-17 11:18:01 +02:00
Aine
a2111dece7 add FluffyChat (#4068)
* add FluffyChat

* capitalization

* Update group_vars/matrix_servers

Co-authored-by: Slavi Pantaleev <slavi@devture.com>

* fix link in readme

---------

Co-authored-by: Slavi Pantaleev <slavi@devture.com>
2025-02-17 11:15:15 +02:00
Slavi Pantaleev
c399992542 Remove matrix-bridge-mautrix-hangouts role
Closes https://github.com/spantaleev/matrix-docker-ansible-deploy/issues/3863
2025-02-03 17:13:06 +02:00
Slavi Pantaleev
43d5596086 Remove Redis and KeyDB support, only leaving Valkey around 2025-01-27 09:54:11 +02:00
Suguru Hirahara
1db5f76024 Replace double hyphens with "Em Dash" unicode character (U+2014)
Signed-off-by: Suguru Hirahara <acioustick@noreply.codeberg.org>
2025-01-26 16:36:14 +09:00
Suguru Hirahara
76e346573c Replace hyphen as dash with "Em Dash" unicode character (U+2014)
This commit replaces hyphen characters used as dash with the actual unicode character for dash. It avoids using HTML character entity reference (&mdash;), because IMHO it would make it a bit harder to read documents as plain markdown files on your local text editor.

Signed-off-by: Suguru Hirahara <acioustick@noreply.codeberg.org>
2025-01-26 16:35:59 +09:00
Slavi Pantaleev
24f3493caf Add various polish to Conduwuit
https://github.com/Virkkunen and I have been working on the same feature
simultaneously.

This patch adds my additional independent work on top of his changes.

Notable changes here compared to Virkkunen's original work:

- renaming config-related variables (`matrix_conduwuit_*` ->
  `matrix_conduwuit_config_*`). This is consistent with other roles (and
  better), but deviates from how the Conduit role was implemented.

- using a full configuration sample from https://conduwuit.puppyirl.gay/configuration.html
  instead of using the old Conduit config file template

- introducing configurability for more Conduwuit config settings, to support easy registration, etc.

- removing configuration settings that Conduwuit does not support
  anymore (e.g. `max_concurrent_requests`)

- cross-linking docs pages for Conduit and Conduwuit

- a Conduwuit docs page which is much improved compared to the old
  Conduit one

- REAMDE updates
2025-01-19 16:06:37 +02:00
Virkkunen
be586f0f30 initial conduwuit support 2025-01-19 16:06:37 +02:00
Catalan Lover
f15c0a46be Draupnir 2.0.0 (#3941)
* Draupnir 2.0.0

The config getting changes all over the place is because of 2.0 having removed a lot of config options due to the code being removed.

* Update Draupnir Documentation to reflect state as of 2.0.0

* Apply Review Feedback

Co-authored-by: Suguru Hirahara <luixxiul@users.noreply.github.com>

* Change Room IDs found in code review to not conform to playbook standard.

Co-authored-by: Suguru Hirahara <luixxiul@users.noreply.github.com>

* Further Integrate Code Review Feedback

* Apply remaining suggestions from code review.

Co-authored-by: Suguru Hirahara <luixxiul@users.noreply.github.com>

* Apply Configuration Review Feedback

Co-authored-by: Suguru Hirahara <luixxiul@users.noreply.github.com>

* Add Self Registration and Native Login to Draupnir

* Rework Draupnir Documentation to Remove Pantalaimon

* Set bot.draupnir as default username for the bot in config

* Draupnir 2.0.1

* Integrate Review Feedback on Structure of Docs

Co-authored-by: Suguru Hirahara <luixxiul@users.noreply.github.com>

* Further Restructure Docs and tweak variables in response.

* Only auto-create draupnir user if a password has been set

The Draupnir role supports configuring it with either an access token or with a password.

When a password is not assigned (which means the access token mode is used), the user is to be created manually.

* Add ensure-matrix-users-created tag

Now that the Draupnir user may be auto-created in certain configurations (if a password is assigned), it's useful to have the tag there.

---------

Co-authored-by: Suguru Hirahara <luixxiul@users.noreply.github.com>
Co-authored-by: Slavi Pantaleev <slavi@devture.com>
2025-01-18 21:25:30 +02:00
Suguru Hirahara
2773c053d0 Update files for coturn (#3953)
* Update docs/configuring-playbook-turn.md: add a section for description about installing

Signed-off-by: Suguru Hirahara <acioustick@noreply.codeberg.org>

* Update docs/configuring-playbook-turn.md and a related file

- Edit the introducion based on docs/configuring-playbook-client-element-web.md
- Adopt the commont format by creating the section "Adjusting the playbook configuration"
- Add the section "Extending the configuration"
- Move the section "Disabling Coturn" to the bottom

Signed-off-by: Suguru Hirahara <acioustick@noreply.codeberg.org>

* Fix capitalization: Coturn → coturn

See: https://github.com/coturn/coturn. Note that "coturn" is not capitalized even on the start of a sentence, except some rare cases like on the releases page: https://github.com/coturn/coturn/releases

Signed-off-by: Suguru Hirahara <acioustick@noreply.codeberg.org>

---------

Signed-off-by: Suguru Hirahara <acioustick@noreply.codeberg.org>
Co-authored-by: Suguru Hirahara <acioustick@noreply.codeberg.org>
2025-01-17 10:19:17 +02:00
Suguru Hirahara
9ffd40bcd2 Remove an obsolete variable: backup_borg_retention_prefix
It has been removed with 30f0f92dc5 for updating borgmatic to v1.8.2.

Signed-off-by: Suguru Hirahara <acioustick@noreply.codeberg.org>
2025-01-16 23:07:42 +09:00
Suguru Hirahara
eaba9cc75e Replace double or triple dots with horizontal ellipses (“…” U+2026)
Signed-off-by: Suguru Hirahara <acioustick@noreply.codeberg.org>
2025-01-12 00:03:28 +09:00
László Várady
bbb58c40b6 Fix docker networking when no reverse-proxy is used
For example, synapse-admin connects to additional networks here:
c0559870b5/roles/custom/matrix-synapse-admin/templates/systemd/matrix-synapse-admin.service.j2 (L39-L41)

This defaults to 'traefik' through
matrix_playbook_reverse_proxy_container_network, which is not correct in
case matrix_playbook_reverse_proxy_type is set to none.
2024-12-27 17:25:47 +01:00
Slavi Pantaleev
c0559870b5 Make matrix-registration-bot not try to talk to the homeserver via matrix-traefik:8008 (matrix-internal-client-api)
Fixes https://github.com/spantaleev/matrix-docker-ansible-deploy/issues/3898#issuecomment-2561470366
2024-12-25 16:46:49 +02:00
Slavi Pantaleev
4d39efe6f6 Rename variable (matrix_bot_matrix_registration_bot_matrix_homeserver_url -> matrix_bot_matrix_registration_bot_api_base_url)
We were overriding the `matrix_bot_matrix_registration_bot_matrix_homeserver_url` variable via `group_vars/matrix_servers`
to point it to the container-local homeserver URL, but this variable was not being used at all.

The actual variable name (which was being used) is `matrix_bot_matrix_registration_bot_api_base_url`.

Fixes https://github.com/spantaleev/matrix-docker-ansible-deploy/issues/3898
2024-12-23 08:59:24 +02:00
Slavi Pantaleev
cea437c844 Expose mautrix-discord's avatar proxy
Possibly fixes https://github.com/spantaleev/matrix-docker-ansible-deploy/issues/3900

This patch hasn't been tested.
2024-12-23 08:36:18 +02:00
Slavi Pantaleev
f1c238e732 Update mautrix-discord config to latest upstream sample and introduce a few new Ansible variables
Provoked by https://github.com/spantaleev/matrix-docker-ansible-deploy/issues/3900
2024-12-23 08:20:56 +02:00
Slavi Pantaleev
bf9bd1f5fb Adapt mautrix-twitter to bridgev2 configuration
Fixup for 784a5aaef4.
2024-12-17 12:09:30 +02:00
Slavi Pantaleev
2c719b2ef7 Update beeper-linkedin configuration to latest upstream config and properly pass double-puppeting login shared secrets
We used to pass the shared secret for double-puppeting via a
`login_shared_secret` parameter, which doesn't seem to exist anymore.
The proper way to do it is via `login_shared_secret_map`.

The comments for `login_shared_secret_map` seem to indicate that it's
only usable with the shared-secret-auth password provider.

However, this bridge is based on mautrix-python (`>=0.20.5,<0.21`) as
per its `requirements.txt`
Support for double-puppeting via arbitrary access tokens landed in
mautrix-python 0.20.1 (6f25b62e80/CHANGELOG.md (L44-L53)),
so it should be possible to use appservice double-puppet.
Related to af04ca1238

A bunch of other parameters seem to have moved around as well.

This patch introduces some new Ansible variables for controlling
additional settings related to encryption, etc.
2024-12-02 20:00:08 +02:00
Slavi Pantaleev
4d8b226c38 Minor refactoring around matrix_synapse_presence_enabled passing 2024-12-02 19:37:08 +02:00