Slavi Pantaleev 
							
						 
					 
					
						
						
							
						
						e9e84341a9 
					 
					
						
						
							
							Reverse-proxy to Synapse via matrix-synapse-reverse-proxy-companion  
						
						... 
						
						
						
						Fixes https://github.com/spantaleev/matrix-docker-ansible-deploy/issues/2090  
						
						
					 
					
						2022-11-20 16:43:33 +02:00 
						 
				 
			
				
					
						
							
							
								Slavi Pantaleev 
							
						 
					 
					
						
						
							
						
						410a915a8a 
					 
					
						
						
							
							Move roles/matrix* to roles/custom/matrix*  
						
						... 
						
						
						
						This paves the way for installing other roles into `roles/galaxy` using `ansible-galaxy`,
similar to how it's done in:
- https://github.com/spantaleev/gitea-docker-ansible-deploy 
- https://github.com/spantaleev/nextcloud-docker-ansible-deploy 
In the near future, we'll be removing a lot of the shared role code from here
and using upstream roles for it. Some of the core `matrix-*` roles have
already been extracted out into other reusable roles:
- https://github.com/devture/com.devture.ansible.role.postgres 
- https://github.com/devture/com.devture.ansible.role.systemd_docker_base 
- https://github.com/devture/com.devture.ansible.role.timesync 
- https://github.com/devture/com.devture.ansible.role.vars_preserver 
- https://github.com/devture/com.devture.ansible.role.playbook_runtime_messages 
- https://github.com/devture/com.devture.ansible.role.playbook_help 
We just need to migrate to those. 
						
						
					 
					
						2022-11-03 09:11:29 +02:00 
						 
				 
			
				
					
						
							
							
								Slavi Pantaleev 
							
						 
					 
					
						
						
							
						
						ce8e9be6a8 
					 
					
						
						
							
							Document Conduit installation  
						
						... 
						
						
						
						Fixes https://github.com/spantaleev/matrix-docker-ansible-deploy/issues/2076  
						
						
					 
					
						2022-10-27 09:56:16 +03:00 
						 
				 
			
				
					
						
							
							
								François Darveau 
							
						 
					 
					
						
						
							
						
						a061ea54b3 
					 
					
						
						
							
							Caddyfile example : enable Content-Security-Policy by default instead of having the line commented  
						
						
						
						
					 
					
						2022-10-11 07:32:02 -04:00 
						 
				 
			
				
					
						
							
							
								François Darveau 
							
						 
					 
					
						
						
							
						
						5271840971 
					 
					
						
						
							
							caddy2 Caddyfile : add CORS handling, update click-jacking protection to handle different subdomains and add example for cases with other well-knowns  
						
						
						
						
					 
					
						2022-10-10 16:43:42 -04:00 
						 
				 
			
				
					
						
							
							
								mcnesium 
							
						 
					 
					
						
						
							
						
						72309ed0a1 
					 
					
						
						
							
							run the playbook on multiple hosts with different credentials ( #1980 )  
						
						... 
						
						
						
						* run the playbook on multiple hosts with different credentials with this script
* fix: add yaml missing document start "---"
* fix: *now really* allow this script to be run from any directory
* add about-note to examples/host.yml
Co-authored-by: Slavi Pantaleev <slavi@devture.com >
* improve ansible-all-hosts.sh related docs/configuring-playbook.md
Co-authored-by: Slavi Pantaleev <slavi@devture.com >
* fix typos :)
Co-authored-by: Slavi Pantaleev <slavi@devture.com > 
						
						
					 
					
						2022-07-26 16:34:55 +03:00 
						 
				 
			
				
					
						
							
							
								Arkonos 
							
						 
					 
					
						
						
							
						
						ef3b352eec 
					 
					
						
						
							
							Merge branch 'master' of  https://github.com/Arkonos/matrix-docker-ansible-deploy  
						
						
						
						
					 
					
						2022-05-08 21:37:56 +02:00 
						 
				 
			
				
					
						
							
							
								Arkonos 
							
						 
					 
					
						
						
							
						
						6abdb6e6f0 
					 
					
						
						
							
							clarifying reverse proxying of well-known files  
						
						
						
						
					 
					
						2022-05-08 21:33:46 +02:00 
						 
				 
			
				
					
						
							
							
								Marko Weltzer 
							
						 
					 
					
						
						
							
						
						7e5b88c3b7 
					 
					
						
						
							
							fix: all praise the allmighty yamllinter  
						
						
						
						
					 
					
						2022-02-05 21:32:54 +01:00 
						 
				 
			
				
					
						
							
							
								Slavi Pantaleev 
							
						 
					 
					
						
						
							
						
						bbbfc0708f 
					 
					
						
						
							
							Derive matrix_coturn_turn_static_auth_secret from matrix_homeserver_generic_secret_key  
						
						... 
						
						
						
						Doing this further simplifies examples/vars.yml. 
						
						
					 
					
						2022-01-07 16:00:51 +02:00 
						 
				 
			
				
					
						
							
							
								Slavi Pantaleev 
							
						 
					 
					
						
						
							
						
						965890bf75 
					 
					
						
						
							
							Derive secrets from matrix_homeserver_generic_secret_key, not matrix_synapse_macaroon_secret_key  
						
						... 
						
						
						
						We're trying to move away from implementation-specific variables,
hoping for a clean (implementation-neutral) examples/vars.yml file. 
						
						
					 
					
						2022-01-07 16:00:42 +02:00 
						 
				 
			
				
					
						
							
							
								Slavi Pantaleev 
							
						 
					 
					
						
						
							
						
						1dfe21944f 
					 
					
						
						
							
							Make matrix_homeserver_implementation influence matrix_IMPLEMENTATION_enabled, not the other way around  
						
						... 
						
						
						
						Doing this seems more reasonable and simpler. 
						
						
					 
					
						2022-01-07 15:59:35 +02:00 
						 
				 
			
				
					
						
							
							
								Wm Salt Hale 
							
						 
					 
					
						
						
							
						
						06f3b813d6 
					 
					
						
						
							
							added .well-known path to Caddy2 example,  closes   #1442  
						
						
						
						
					 
					
						2021-12-20 10:50:05 -08:00 
						 
				 
			
				
					
						
							
							
								jariz 
							
						 
					 
					
						
						
							
						
						0a10077c63 
					 
					
						
						
							
							caddy example fixes  
						
						... 
						
						
						
						- caddy v1 requires a path in the header directive
- msisd has been replaced in favour of ma1sd 
						
						
					 
					
						2021-10-28 11:16:43 +02:00 
						 
				 
			
				
					
						
							
							
								Kim Brose 
							
						 
					 
					
						
						
							
						
						b3cfa2a1ba 
					 
					
						
						
							
							Fix typo  
						
						
						
						
					 
					
						2021-09-14 16:52:57 +02:00 
						 
				 
			
				
					
						
							
							
								Slavi Pantaleev 
							
						 
					 
					
						
						
							
						
						814fb33f45 
					 
					
						
						
							
							Merge pull request  #1184  from Toorero/apache-example-enhancements  
						
						... 
						
						
						
						Added proxy config for synapse-admin 
						
						
					 
					
						2021-07-17 09:30:10 +03:00 
						 
				 
			
				
					
						
							
							
								Toorero 
							
						 
					 
					
						
						
							
						
						b5ab31240f 
					 
					
						
						
							
							Added missing X-Forwarded-Proto header  
						
						
						
						
					 
					
						2021-07-16 18:52:26 +02:00 
						 
				 
			
				
					
						
							
							
								Toorero 
							
						 
					 
					
						
						
							
						
						ab0d2055ba 
					 
					
						
						
							
							Added proxy config for synapse-admin  
						
						
						
						
					 
					
						2021-07-15 02:15:07 +02:00 
						 
				 
			
				
					
						
							
							
								Slavi Pantaleev 
							
						 
					 
					
						
						
							
						
						dd7a23ede6 
					 
					
						
						
							
							Merge pull request  #1068  from rafaelsgirao/master  
						
						... 
						
						
						
						Fix typo in examples/caddy2 
						
						
					 
					
						2021-05-19 22:27:27 +03:00 
						 
				 
			
				
					
						
							
							
								Slavi Pantaleev 
							
						 
					 
					
						
						
							
						
						15f4972dbf 
					 
					
						
						
							
							Remove syntax-breaking pagination line  
						
						... 
						
						
						
						Seems to have been added by mistake. 
						
						
					 
					
						2021-05-19 22:25:27 +03:00 
						 
				 
			
				
					
						
							
							
								Rafael Girão 
							
						 
					 
					
						
						
							
						
						729f348864 
					 
					
						
						
							
							Fix typo in examples/caddy2  
						
						
						
						
					 
					
						2021-05-19 20:11:50 +01:00 
						 
				 
			
				
					
						
							
							
								Slavi Pantaleev 
							
						 
					 
					
						
						
							
						
						a25b8135b8 
					 
					
						
						
							
							Fix point overlap between matrix-domain and Jitsi  
						
						... 
						
						
						
						Mostly affects people who disable the integrated `matrix-nginx-proxy`.
Related to https://github.com/spantaleev/matrix-docker-ansible-deploy/pull/456 
and more specifically 4d62a75f6f 
						
						
					 
					
						2021-03-01 20:27:45 +02:00 
						 
				 
			
				
					
						
							
							
								Aaron Raimist 
							
						 
					 
					
						
						
							
						
						a8b61adb8d 
					 
					
						
						
							
							Clarify hosts file wording  
						
						
						
						
					 
					
						2021-02-01 03:22:04 -06:00 
						 
				 
			
				
					
						
							
							
								Slavi Pantaleev 
							
						 
					 
					
						
						
							
						
						1a3034b0c8 
					 
					
						
						
							
							Fix typo  
						
						
						
						
					 
					
						2021-01-22 14:13:56 +02:00 
						 
				 
			
				
					
						
							
							
								Slavi Pantaleev 
							
						 
					 
					
						
						
							
						
						95346f3117 
					 
					
						
						
							
							Reorganize Postgres access (breaking change)  
						
						... 
						
						
						
						In short, this makes Synapse a 2nd class citizen,
preparing for a future where it's just one-of-many homeserver software
options.
We also no longer have a default Postgres superuser password,
which improves security.
The changelog explains more as to why this was done
and how to proceed from here. 
						
						
					 
					
						2021-01-22 13:26:12 +02:00 
						 
				 
			
				
					
						
							
							
								Slavi Pantaleev 
							
						 
					 
					
						
						
							
						
						a47813585d 
					 
					
						
						
							
							Rename file to prevent common mistake  
						
						... 
						
						
						
						Prompted by this: https://github.com/spantaleev/matrix-docker-ansible-deploy/issues/779#issuecomment-764807507  
						
						
					 
					
						2021-01-21 19:24:05 +02:00 
						 
				 
			
				
					
						
							
							
								0hlov3 
							
						 
					 
					
						
						
							
						
						f86d781244 
					 
					
						
						
							
							Updates the the caddy2 Readme and comment lines for dimension  
						
						
						
						
					 
					
						2020-12-29 14:07:32 +01:00 
						 
				 
			
				
					
						
							
							
								0hlov3 
							
						 
					 
					
						
						
							
						
						a1ecaf54ef 
					 
					
						
						
							
							Adds Example for Caddy2 Jitsi  
						
						
						
						
					 
					
						2020-12-29 12:00:01 +01:00 
						 
				 
			
				
					
						
							
							
								Slavi Pantaleev 
							
						 
					 
					
						
						
							
						
						e2e6cfaa8b 
					 
					
						
						
							
							Document Ansible's Python interpreter discovery some more  
						
						... 
						
						
						
						Fixes https://github.com/spantaleev/matrix-docker-ansible-deploy/issues/570 
Fixes https://github.com/spantaleev/matrix-docker-ansible-deploy/issues/641  
						
						
					 
					
						2020-12-16 18:14:52 +02:00 
						 
				 
			
				
					
						
							
							
								Slavi Pantaleev 
							
						 
					 
					
						
						
							
						
						63a49bb2dc 
					 
					
						
						
							
							Do not expose /_synapse/admin publicly by default  
						
						... 
						
						
						
						Fixes  #685  (Github Issue). 
					
						2020-10-26 10:36:38 +02:00 
						 
				 
			
				
					
						
							
							
								Panagiotis Vasilopoulos 
							
						 
					 
					
						
						
							
						
						8370ee0647 
					 
					
						
						
							
							caddy2: removed unknown tls directive  
						
						
						
						
					 
					
						2020-10-04 19:28:22 +00:00 
						 
				 
			
				
					
						
							
							
								0hlov3 
							
						 
					 
					
						
						
							
						
						bd69e4fdef 
					 
					
						
						
							
							Merge branch 'master' of github.com:0hlov3/matrix-docker-ansible-deploy  
						
						
						
						
					 
					
						2020-09-15 14:54:59 +02:00 
						 
				 
			
				
					
						
							
							
								0hlov3 
							
						 
					 
					
						
						
							
						
						59e1abb072 
					 
					
						
						
							
							Corrects the Caddyfile  
						
						
						
						
					 
					
						2020-09-15 14:54:47 +02:00 
						 
				 
			
				
					
						
							
							
								Slavi Pantaleev 
							
						 
					 
					
						
						
							
						
						6fefbc248a 
					 
					
						
						
							
							Fix typo and wording  
						
						
						
						
					 
					
						2020-09-13 09:51:04 +03:00 
						 
				 
			
				
					
						
							
							
								0hlov3 
							
						 
					 
					
						
						
							
						
						c366e26360 
					 
					
						
						
							
							Updates exempes/caddy2/Caddyfile to SSL Grade A+  
						
						
						
						
					 
					
						2020-09-13 03:11:37 +02:00 
						 
				 
			
				
					
						
							
							
								Olaf Schoenwald 
							
						 
					 
					
						
						
							
						
						e7921e305b 
					 
					
						
						
							
							Comment in host-cars  
						
						
						
						
					 
					
						2020-09-12 11:04:16 +02:00 
						 
				 
			
				
					
						
							
							
								Olaf Schoenwald 
							
						 
					 
					
						
						
							
						
						abf70f7772 
					 
					
						
						
							
							Adds example for Caddy2 Caddyfile  
						
						
						
						
					 
					
						2020-09-12 10:52:25 +02:00 
						 
				 
			
				
					
						
							
							
								Slavi Pantaleev 
							
						 
					 
					
						
						
							
						
						c6ab1c6a90 
					 
					
						
						
							
							Riot is now Element  
						
						... 
						
						
						
						Fixes  #586  (Github Issue) 
					
						2020-07-17 11:31:20 +03:00 
						 
				 
			
				
					
						
							
							
								Slavi Pantaleev 
							
						 
					 
					
						
						
							
						
						f18037ae42 
					 
					
						
						
							
							Disable TLSv1.1 by default  
						
						
						
						
					 
					
						2020-01-30 12:56:20 +02:00 
						 
				 
			
				
					
						
							
							
								Aaron Raimist 
							
						 
					 
					
						
						
							
						
						5366aef0da 
					 
					
						
						
							
							Fix Caddy example config for Dimension  
						
						
						
						
					 
					
						2019-12-05 17:33:08 -06:00 
						 
				 
			
				
					
						
							
							
								Marcel Ackermann 
							
						 
					 
					
						
						
							
						
						cb900d64dd 
					 
					
						
						
							
							Listen 8448 required for apache  
						
						... 
						
						
						
						Listen 8448 directive makes apache listen on that port, without it federation does not work. 
						
						
					 
					
						2019-10-23 15:12:31 +02:00 
						 
				 
			
				
					
						
							
							
								Slavi Pantaleev 
							
						 
					 
					
						
						
							
						
						d90e11213f 
					 
					
						
						
							
							Update comment to make it accurate  
						
						
						
						
					 
					
						2019-09-02 09:47:33 +03:00 
						 
				 
			
				
					
						
							
							
								liquidat 
							
						 
					 
					
						
						
							
						
						72d3514408 
					 
					
						
						
							
							Move pipelining option to ansible.cfg  
						
						
						
						
					 
					
						2019-09-01 01:56:02 +02:00 
						 
				 
			
				
					
						
							
							
								Julian Foad 
							
						 
					 
					
						
						
							
						
						3b69db3c1e 
					 
					
						
						
							
							More Apache ProxyPass directives need 'nocanon'  
						
						... 
						
						
						
						Invitations weren't working for me until I added 'nocanon' to these additional places. Until then, invitations failed with "Invalid signature for server ..." errors, as in https://github.com/matrix-org/synapse/issues/3294  .
I didn't check whether the user_directory/search proxy line also needs it, I just assumed it should have it too.
The other two proxy lines in this example also include a 'retry=0' parameter. That's a separate issue; I haven't touched it here. 
						
						
					 
					
						2019-08-30 12:22:08 +01:00 
						 
				 
			
				
					
						
							
							
								muccid 
							
						 
					 
					
						
						
							
						
						2793e24b5b 
					 
					
						
						
							
							Addresses comments in PR. Fixes typo in docker-compose. Changes mount of static files to RO. Adds example and brief explaination for haproxy certificates. Fixes whitespaces in nginx.conf  
						
						
						
						
					 
					
						2019-08-26 09:04:47 +03:00 
						 
				 
			
				
					
						
							
							
								sudneo 
							
						 
					 
					
						
						
							
						
						7f0b52e9e1 
					 
					
						
						
							
							Formatting of haproxy.cfg  
						
						
						
						
					 
					
						2019-08-25 22:59:47 +03:00 
						 
				 
			
				
					
						
							
							
								sudneo 
							
						 
					 
					
						
						
							
						
						f1a64df339 
					 
					
						
						
							
							Formatting of haproxy.cfg  
						
						
						
						
					 
					
						2019-08-25 22:58:55 +03:00 
						 
				 
			
				
					
						
							
							
								sudneo 
							
						 
					 
					
						
						
							
						
						06e8056173 
					 
					
						
						
							
							Formatting of haproxy.cfg  
						
						
						
						
					 
					
						2019-08-25 22:56:32 +03:00 
						 
				 
			
				
					
						
							
							
								sudneo 
							
						 
					 
					
						
						
							
						
						3dfa6a28f9 
					 
					
						
						
							
							Typo  
						
						
						
						
					 
					
						2019-08-25 22:55:27 +03:00 
						 
				 
			
				
					
						
							
							
								sudneo 
							
						 
					 
					
						
						
							
						
						b2e0e4efe3 
					 
					
						
						
							
							Adds doc for HAproxy  
						
						
						
						
					 
					
						2019-08-25 22:53:34 +03:00