cqrenet/matrix-docker-ansible-deploy
3
0
Fork 0
mirror of https://github.com/spantaleev/matrix-docker-ansible-deploy.git synced 2026-02-28 01:43:10 +00:00
Code Issues Wiki Activity
Files
4761ff7e9a1f60116106ddf563bcf51474bb6102
matrix-docker-ansible-deploy/roles/custom
History
Slavi Pantaleev 4761ff7e9a Align homeserver/coturn service priorities to avoid first-start cert race 
The startup issue came from a timing dependency around coturn TLS certs:

- `matrix-coturn.service` depends on
  `matrix-traefik-certs-dumper-wait-for-domain@<matrix-fqdn>.service`
- That waiter succeeds only after Traefik has obtained and dumped a cert for
  the Matrix hostname (typically driven by homeserver labels/routes becoming
  active)
- If coturn is started too early, it can block/fail waiting for cert files
  that are not yet present

Historically, coturn priority was mode-dependent:

- `one-by-one`: coturn at 1500 (delayed after homeserver)
- other modes: coturn at 900 (before homeserver)

This could still trigger undesirable startup ordering and confusing behavior
in non-`one-by-one` modes, especially during initial bootstrap/restart flows
where cert availability lags service startup.

This change makes ordering explicit and consistent:

1. Introduce `matrix_homeserver_systemd_service_manager_priority` (default 1000)
   in `roles/custom/matrix-base/defaults/main.yml`.
2. Use that variable for the homeserver service entry in
   `group_vars/matrix_servers`.
3. Set coturn priority relative to homeserver priority in all modes:
   `matrix_homeserver_systemd_service_manager_priority + 500`.
4. Update inline documentation comments in `group_vars/matrix_servers` to
   match the new behavior and rationale.

Result:

- Homeserver/coturn ordering is deterministic and mode-agnostic.
- Coturn is intentionally started later than the homeserver by default,
  reducing first-start certificate wait/fail races.
- Priority intent is now centralized and configurable via a dedicated
  homeserver priority variable.
- Coturn may still be stated earlier, because the homeserver typically
  has a `Wants` "dependency" on it, but that's alright
2026-02-20 23:55:31 +02:00
..
matrix_playbook_migration
Remove synapse-auto-invite-accept (#4943)
2026-02-17 14:37:46 +02:00
matrix-alertmanager-receiver
chore(deps): update docker.io/metio/matrix-alertmanager-receiver docker tag to v2026.2.18
2026-02-18 11:13:21 +02:00
matrix-appservice-double-puppet
Quote YAML mode values to satisfy octal lint rules
2026-02-16 13:19:10 +02:00
matrix-appservice-draupnir-for-all
Rename matrix-appservice-draupnir-for-all _docker_ vars to _container_
2026-02-18 08:16:07 +02:00
matrix-authentication-service
Quote YAML mode values to satisfy octal lint rules
2026-02-16 13:19:10 +02:00
matrix-base
Align homeserver/coturn service priorities to avoid first-start cert race
2026-02-20 23:55:31 +02:00
matrix-bot-baibot
chore(deps): update ghcr.io/etkecc/baibot docker tag to v1.14.3
2026-02-18 07:20:23 +02:00
matrix-bot-buscarron
Rename matrix-bot-buscarron _docker_ vars to _container_
2026-02-18 08:16:07 +02:00
matrix-bot-draupnir
Rename matrix-bot-draupnir _docker_ vars to _container_
2026-02-18 08:16:07 +02:00
matrix-bot-go-neb
Quote YAML mode values to satisfy octal lint rules
2026-02-16 13:19:10 +02:00
matrix-bot-honoroit
Rename matrix-bot-honoroit _docker_ vars to _container_
2026-02-18 08:16:07 +02:00
matrix-bot-matrix-registration-bot
Rename matrix-bot-matrix-registration-bot _docker_ vars to _container_
2026-02-18 08:16:07 +02:00
matrix-bot-matrix-reminder-bot
Rename matrix-bot-matrix-reminder-bot _docker_ vars to _container_
2026-02-18 08:16:07 +02:00
matrix-bot-maubot
Rename matrix-bot-maubot _docker_ vars to _container_
2026-02-18 08:16:07 +02:00
matrix-bot-mjolnir
Rename matrix-bot-mjolnir _docker_ vars to _container_
2026-02-18 08:16:07 +02:00
matrix-bridge-appservice-discord
Rename _docker_ vars to _container_ across 34 roles
2026-02-18 08:21:13 +02:00
matrix-bridge-appservice-irc
Rename _docker_ vars to _container_ across 34 roles
2026-02-18 08:21:13 +02:00
matrix-bridge-appservice-kakaotalk
Rename _docker_ vars to _container_ for kakaotalk, telegram, synapse
2026-02-18 09:48:38 +02:00
matrix-bridge-beeper-linkedin
Rename _docker_ vars to _container_ across 34 roles
2026-02-18 08:21:13 +02:00
matrix-bridge-heisenbridge
Rename _docker_ vars to _container_ across 34 roles
2026-02-18 08:21:13 +02:00
matrix-bridge-hookshot
Rename _docker_ vars to _container_ across 34 roles
2026-02-18 08:21:13 +02:00
matrix-bridge-mautrix-bluesky
Rename _docker_ vars to _container_ across 34 roles
2026-02-18 08:21:13 +02:00
matrix-bridge-mautrix-discord
Rename _docker_ vars to _container_ across 34 roles
2026-02-18 08:21:13 +02:00
matrix-bridge-mautrix-gmessages
Rename _docker_ vars to _container_ across 34 roles
2026-02-18 08:21:13 +02:00
matrix-bridge-mautrix-googlechat
Rename _docker_ vars to _container_ across 34 roles
2026-02-18 08:21:13 +02:00
matrix-bridge-mautrix-meta-instagram
chore(deps): update dock.mau.dev/mautrix/meta docker tag to v0.2602.0
2026-02-16 21:41:24 +02:00
matrix-bridge-mautrix-meta-messenger
chore(deps): update dock.mau.dev/mautrix/meta docker tag to v0.2602.0
2026-02-16 21:41:24 +02:00
matrix-bridge-mautrix-signal
Rename _docker_ vars to _container_ across 34 roles
2026-02-18 08:21:13 +02:00
matrix-bridge-mautrix-slack
Rename _docker_ vars to _container_ across 34 roles
2026-02-18 08:21:13 +02:00
matrix-bridge-mautrix-telegram
Rename _docker_ vars to _container_ for kakaotalk, telegram, synapse
2026-02-18 09:48:38 +02:00
matrix-bridge-mautrix-twitter
Rename _docker_ vars to _container_ across 34 roles
2026-02-18 08:21:13 +02:00
matrix-bridge-mautrix-whatsapp
Rename _docker_ vars to _container_ across 34 roles
2026-02-18 08:21:13 +02:00
matrix-bridge-mautrix-wsproxy
Rename _docker_ vars to _container_ across 34 roles
2026-02-18 08:21:13 +02:00
matrix-bridge-mx-puppet-groupme
Rename _docker_ vars to _container_ across 34 roles
2026-02-18 08:21:13 +02:00
matrix-bridge-mx-puppet-steam
Rename _docker_ vars to _container_ across 34 roles
2026-02-18 08:21:13 +02:00
matrix-bridge-postmoogle
Rename _docker_ vars to _container_ across 34 roles
2026-02-18 08:21:13 +02:00
matrix-bridge-sms
Rename _docker_ vars to _container_ across 34 roles
2026-02-18 08:21:13 +02:00
matrix-bridge-steam
Rename _docker_ vars to _container_ across 34 roles
2026-02-18 08:21:13 +02:00
matrix-bridge-wechat
Quote YAML mode values to satisfy octal lint rules
2026-02-16 13:19:10 +02:00
matrix-cactus-comments
Rename _docker_ vars to _container_ across 34 roles
2026-02-18 08:21:13 +02:00
matrix-cactus-comments-client
chore(deps): update joseluisq/static-web-server docker tag to v2.41.0
2026-02-20 07:30:24 +02:00
matrix-client-element
Rename _docker_ vars to _container_ across 34 roles
2026-02-18 08:21:13 +02:00
matrix-client-fluffychat
Rename _docker_ vars to _container_ across 34 roles
2026-02-18 08:21:13 +02:00
matrix-client-schildichat
Rename _docker_ vars to _container_ across 34 roles
2026-02-18 08:21:13 +02:00
matrix-common-after/tasks
Add license information to files in matrix-common-after
2025-03-03 17:58:28 +09:00
matrix-conduit
Rename _docker_ vars to _container_ across 34 roles
2026-02-18 08:21:13 +02:00
matrix-continuwuity
Fix Renovate depName for Continuwuity to use the actual Docker image name
2026-02-18 08:16:07 +02:00
matrix-corporal
Rename _docker_ vars to _container_ across 34 roles
2026-02-18 08:21:13 +02:00
matrix-dendrite
Rename _docker_ vars to _container_ across 34 roles
2026-02-18 08:21:13 +02:00
matrix-element-admin
Quote YAML mode values to satisfy octal lint rules
2026-02-16 13:19:10 +02:00
matrix-element-call
Quote YAML mode values to satisfy octal lint rules
2026-02-16 13:19:10 +02:00
matrix-ldap-registration-proxy
Rename _docker_ vars to _container_ across 34 roles
2026-02-18 08:21:13 +02:00
matrix-livekit-jwt-service
Quote YAML mode values to satisfy octal lint rules
2026-02-16 13:19:10 +02:00
matrix-matrixto
Add conditional restart support to service roles
2026-02-13 16:01:46 +02:00
matrix-media-repo
Rename _docker_ vars to _container_ across 34 roles
2026-02-18 08:21:13 +02:00
matrix-pantalaimon
Rename _docker_ vars to _container_ across 34 roles
2026-02-18 08:21:13 +02:00
matrix-prometheus-services-connect
Quote YAML mode values to satisfy octal lint rules
2026-02-16 13:19:10 +02:00
matrix-rageshake
Quote YAML mode values to satisfy octal lint rules
2026-02-16 13:19:10 +02:00
matrix-registration
Rename _docker_ vars to _container_ across 34 roles
2026-02-18 08:21:13 +02:00
matrix-static-files
fix(matrix-static-files): restore /.well-known serving with static-web-server v2.41.0
2026-02-20 13:11:16 +02:00
matrix-sygnal
Rename _docker_ vars to _container_ across 34 roles
2026-02-18 08:21:13 +02:00
matrix-synapse
Have the Synapse healthcheck be more patient to accommodate slow servers
2026-02-19 13:49:17 +02:00
matrix-synapse-admin
Rename _docker_ vars to _container_ across 34 roles
2026-02-18 08:21:13 +02:00
matrix-synapse-auto-compressor
Quote YAML mode values to satisfy octal lint rules
2026-02-16 13:19:10 +02:00
matrix-synapse-reverse-proxy-companion
Quote YAML mode values to satisfy octal lint rules
2026-02-16 13:19:10 +02:00
matrix-synapse-usage-exporter
Quote YAML mode values to satisfy octal lint rules
2026-02-16 13:19:10 +02:00
matrix-user-creator
Remove conduwuit (#4913)
2026-02-11 15:03:56 +02:00
matrix-user-verification-service
Rename _docker_ vars to _container_ across 34 roles
2026-02-18 08:21:13 +02:00