Slavi Pantaleev
73af8f7bbb
Make self-check not validate self-signed certificates
...
By default, `--tags=self-check` no longer validates certificates
when `matrix_ssl_retrieval_method` is set to `self-signed`.
Besides this default, people can also enable/disable validation using the
individual role variables manually.
Fixes #124 (Github Issue)
2019-03-22 09:41:08 +02:00
Slavi Pantaleev
e65514223e
Merge branch 'master' into update-homeserver-yaml
2019-03-17 20:53:52 +02:00
Slavi Pantaleev
2f1662626e
Use |to_json for matrix_synapse_push_include_content
...
Doing this for consistency.
Related to #117 (Github Pull Request).
2019-03-17 20:51:12 +02:00
Aaron Raimist
ae912c4529
Update homeserver.yaml with some new options we could enable
2019-03-16 15:51:41 -05:00
Lee Verberne
71c7c74b7b
Allow configuring push content for matrix-synapse
...
This allows overriding the default value for `include_content`. Setting
this to false allows homeserver admins to ensure that message content
isn't sent in the clear through third party servers.
2019-03-16 07:16:20 +01:00
Lorrin Nelson
ceba99eed3
Make federation self-check conditional on matrix_synapse_federation_enabled
2019-03-13 22:33:52 -07:00
Slavi Pantaleev
2d56ff0afa
Skip some uninstall tasks if not necessary to run
2019-03-13 07:40:51 +02:00
Plailect
f6de3fd668
Start appservice-irc as non-root
2019-03-12 13:17:51 -04:00
Slavi Pantaleev
390ec8a599
Skip some tasks when not necessary to run them
2019-03-08 12:14:58 +02:00
Slavi Pantaleev
62e2acada5
Merge pull request #104 from dangersalad/master
...
allow exposing mautrix_telegram port
2019-03-08 08:50:05 +02:00
paulbdavis
17e86ba817
implement requested changes
2019-03-07 12:45:58 -07:00
Slavi Pantaleev
85c5adfd69
Minor consistency improvements
2019-03-05 09:20:36 +02:00
Slavi Pantaleev
a310a01818
Use non-root and no-capability containers during Discord setup
...
Related to #105 (Github Pull Request).
2019-03-05 09:10:51 +02:00
Slavi Pantaleev
f037f63a07
Merge pull request #105 from Lionstiger/matrix-discord-bridge
...
Add Support for matrix-appservice-discord
2019-03-05 06:39:46 +00:00
Lionstiger
c2834d2226
running as matrix user from the start
2019-03-04 16:26:19 +01:00
Lionstiger
278484656b
ensure systemd reloaded after bridge installation
2019-03-04 15:12:37 +01:00
Lionstiger
2d78c5f89d
made matrix_appservice_discord_client_id lowercase
2019-03-04 15:11:06 +01:00
Lionstiger
7aadd8bbe9
undo changed synapse version
2019-03-03 19:55:56 +01:00
Lionstiger
4aeeb5cf31
Autogenerate Discord invite link
...
Generates the link required to add the Bridge to a Discord server.
2019-03-03 19:33:16 +01:00
Lionstiger
835c349275
Add matrix-appservice-discord bridge
...
Bridge is setup to work on the matrix side with this, but the discord invite link is not automatically generated.
2019-03-03 18:22:52 +01:00
Slavi Pantaleev
45618679f5
Reload systemd services when they get updated
...
Fixes #69 (Github Issue)
2019-03-03 11:55:15 +02:00
Slavi Pantaleev
041a1947b3
Update Synapse (0.99.1.1 -> 0.99.2)
2019-03-02 10:03:09 +02:00
paulbdavis
f2a2cad107
allow exposing mautrix_telegram port
2019-03-01 16:05:01 -07:00
Slavi Pantaleev
a43bcd81fe
Rename some variables
2019-02-28 11:51:09 +02:00
Slavi Pantaleev
8cac29a5d5
Update matrix-synapse-rest-auth (0.1.1 -> 0.1.2)
2019-02-28 11:15:26 +02:00
Slavi Pantaleev
433780384e
Do not use docker_container module
...
Using `docker_container` with a `cap_drop` argument requires
Ansible >=2.7.
We want to support older versions too (2.4), so we either need to
stop invoking it with `cap_drop` (insecure), or just stop using
the module altogether.
Since it was suffering from other bugs too (not deleting containers
on failure), we've decided to remove `docker_container` usage completely.
2019-02-25 10:42:27 +02:00
Slavi Pantaleev
350b25690d
Add Riot v1.0 (v1.0.1) support
2019-02-16 11:48:17 +02:00
Slavi Pantaleev
0f55823c5f
Update Synapse (0.99.1 -> 0.99.1.1)
...
It's not important for us, as it only contains
some ACME-related fix.
2019-02-14 19:43:13 +02:00
Slavi Pantaleev
eb08e20418
Upgrade Synapse (0.99.0 -> 0.99.1) and sync config
...
`matrix_synapse_no_tls` is now implicit, so we've gotten rid of it.
The `homeserver.yaml.j2` template has been synchronized with the
configuration generated by Synapse v0.99.1 (some new options
are present, etc.)
2019-02-14 18:40:55 +02:00
Slavi Pantaleev
df76ae707a
Fix inaccurate comment
2019-02-13 14:07:16 +02:00
Slavi Pantaleev
42c4de348c
Revert "Bind metrics on :: too"
...
This reverts commit 536c85619f
.
Looks like binding metrics on IPv6 (`::`) fails with an error:
socket.gaierror: [Errno -2] Name does not resolve
2019-02-09 13:21:18 +02:00
Slavi Pantaleev
536c85619f
Bind metrics on :: too
...
For consistency with all our other listeners,
we make this one bind on the `::` address too
(both IPv4 and IPv6).
Additional details are in #91 (Github Pull Request).
2019-02-06 14:24:10 +02:00
Slavi Pantaleev
91a757c581
Add support for reloading Synapse
2019-02-06 09:25:13 +02:00
Slavi Pantaleev
40f3793af7
Upgrade Synapse to v0.99 and simplify dummy TLS cert logic
2019-02-06 09:17:55 +02:00
Slavi Pantaleev
5db692f877
Remove some useless homeserver.yaml configuration
2019-02-05 14:02:01 +02:00
Slavi Pantaleev
738c592c27
Bump Synapse version (0.34.1.1 -> 0.99.0rc4)
2019-02-05 13:33:39 +02:00
Slavi Pantaleev
f6ebd4ce62
Initial work on Synapse 0.99/1.0 preparation
2019-02-05 12:09:46 +02:00
Aaron Raimist
1f0cc92b33
Use IPv4 localhost everywhere (or almost everywhere)
2019-02-04 09:49:45 -06:00
Aaron Raimist
58ca2e7dfd
Turn off IPv6 when using your own Nginx server
...
Docker apparently doesn't like IPv6.
2019-02-04 09:03:43 -06:00
dhose
87e3deebfd
Enable exposure of Prometheus metrics.
2019-02-01 20:02:11 +01:00
Plailect
29b40b428a
Database files must be stored on permanent storage
2019-02-01 11:44:06 -05:00
Slavi Pantaleev
a9fae8e3b1
Revert "Use native OpenSSL module to generate passkey.pem
"
...
This reverts commit 0dac5ea508
.
Relying on pyOpenSSL is the Ansible way of doing things, but is
impractical and annoying for users.
`openssl` is easily available on most servers, even by default.
We'd better use that.
2019-01-31 20:45:14 +02:00
Plailect
0dac5ea508
Use native OpenSSL module to generate passkey.pem
2019-01-31 11:38:54 -05:00
Plailect
5e1d96c727
Add matrix_appservice_irc_container_expose_client_server_api_port
2019-01-31 11:20:45 -05:00
Plailect
0a2a8e118c
Update example configuration and documentation
2019-01-31 11:05:27 -05:00
Plailect
3a4a671dd7
Add support for matrix-appservice-irc
2019-01-31 00:37:23 -05:00
Slavi Pantaleev
0be7b25c64
Make (most) containers run with a read-only filesystem
2019-01-29 18:52:02 +02:00
Slavi Pantaleev
bf10331456
Make mautrix-whatsapp run as non-root and w/o capabilities
2019-01-28 15:55:58 +02:00
Slavi Pantaleev
8a3f942d93
Make mautrix-telegram run as non-root and w/o capabilities
2019-01-28 15:40:16 +02:00
Slavi Pantaleev
3e8a4159e6
Uncomment unintentionally-commented logic
2019-01-28 14:25:03 +02:00