Slavi Pantaleev
a3a6e14f7b
Add matrix_nginx_proxy_proxy_synapse_metrics_addr_{with,sans}_container variables to defaults
...
We redefine these variables in `group_vars/matrix_servers`, but it's better
to have some defaults in the role as well.
2022-06-22 23:04:27 +03:00
Slavi Pantaleev
f4cf7b9cc1
Remove unused variable (matrix_nginx_proxy_synapse_workers_enabled_list) definition
2022-06-22 22:17:51 +03:00
Slavi Pantaleev
f943e82384
Upgrade Certbot (1.27 -> 1.28)
2022-06-22 14:44:12 +03:00
Slavi Pantaleev
271a8d0a73
Upgrade certbot (v1.23.0 -> v1.27.0)
2022-05-21 10:20:56 +03:00
Slavi Pantaleev
49da9c76ac
Merge pull request #1782 from etkecc/matrix-bot-buscarron
...
add matrix-bot-buscarron
2022-04-25 09:44:35 +03:00
Slavi Pantaleev
4a0b839768
Automatically do the right thing with regards to Synapse Metrics htpasswd
...
.. regardless of whether matrix-nginx-proxy runs in a container or not
2022-04-25 09:42:36 +03:00
Aine
290754371a
add matrix-bot-buscarron
2022-04-23 16:19:24 +03:00
Andrea Tartaglia
68424e68e5
feat: make synapse htpasswd file path configurable
...
When setting `matrix_nginx_proxy_enabled: false` and enabling authentication on the metrics endpoint, the htpasswd file is hardcoded to the nginx-proxy container dir, this changes the hardcoded value to a variable so the path can be updated
2022-04-23 11:13:36 +01:00
borisrunakov
acaebfbf67
optional media cache with range requests support ( #1759 )
2022-04-21 10:31:26 +03:00
Slavi Pantaleev
0364c6c634
Suppress old container cleanup (kill/rm) failures
...
People often report and ask about these "failures".
More-so previously, when the `docker kill/rm` output was collected,
but it still happens now when people do `systemctl status
matrix-something` and notice that it says "FAILURE".
Suppressing to avoid further time being wasted on saying "this is
expected".
2022-04-11 09:05:33 +03:00
Yan Minagawa
b982733a8a
fix typo in document path for the proxy
2022-04-09 19:41:48 +07:00
Slavi Pantaleev
0d6c0f5df2
Merge pull request #1705 from HarHarLinks/master
...
Fix index in external_prometheus.yml.example.j2
2022-03-18 08:46:15 +02:00
Kim Brose
5ed23e81ef
Fix index in external_prometheus.yml.example.j2
...
For an unknown reason prometheus ignored the given "numeric" index and replaced it by 1. This made it not work properly, plus multiple workers of same types were not differentiable. With a "string" index, it works as intended.
2022-03-17 18:37:37 +01:00
Aine
2da3768b20
Added retries to the docker pulls ( #1701 )
2022-03-17 17:37:11 +02:00
Alejo Diaz
4ec24ec344
Add support for obtain ECDSA keys ( #1667 )
...
* Add support for obtain ECDSA keys
* Replace matrix_ssl_lets_encrypt_use_ecdsa_keys for matrix_ssl_lets_encrypt_key_type
2022-03-03 18:15:39 +02:00
GoliathLabs
e53cc026d0
Updated: certbot to v1.23.0
2022-02-22 12:50:21 +01:00
Marko Weltzer
819574b8ba
Merge branch 'spantaleev:master' into master
2022-02-05 21:37:53 +01:00
Marko Weltzer
7e5b88c3b7
fix: all praise the allmighty yamllinter
2022-02-05 21:32:54 +01:00
Slavi Pantaleev
86c36523df
Replace ExecStopPost with ExecStop
...
Reverts b1b4ba501f
, 90c9801c56
, a3c84f78ca
, ..
I haven't really traced it (yet), but on some servers, I'm observing
`ansible-playbook ... --tags=start` completing very slowly, waiting
to stop services. I can't reproduce this on all Matrix servers I manage.
I suspect that either the systemd version is to blame or that some
specific service is not responding well to some `docker kill/rm` command.
`ExecStop` seems to work great in all cases and it's what we've been
using for a very long time, so I'm reverting to that.
2022-02-05 12:13:36 +02:00
GoliathLabs
33851f1dfa
Updated: nginx to 1.21.6-alpine
2022-02-05 10:58:09 +01:00
Wm Salt Hale
3aa8c1f62c
only enable openssl if necessary
2022-01-19 21:58:39 -08:00
GoliathLabs
b608c3d342
Updated: worker_processes to auto
2022-01-17 10:55:36 +01:00
GoliathLabs
8a66db850e
Updated: Certbot to v1.22.0
2022-01-17 10:53:15 +01:00
Slavi Pantaleev
29bc22a085
Add matrix_nginx_proxy_container_additional_networks
...
Fixes https://github.com/spantaleev/matrix-docker-ansible-deploy/issues/1498
2022-01-10 11:51:57 +02:00
Slavi Pantaleev
27a4871aea
Fix variable name typo
2022-01-09 12:14:23 +02:00
Slavi Pantaleev
3b9d5b13e9
Add support for not serving Dendrite federation APIs on the client port
...
Seems like Dendrite encourages serving both the Client and Federation
API at the same port.
Coming from Synapse and how things are done there, we have separate
ports. Using separate ports probably makes matrix-corporal (etc.)
integration easier, so separating the APIs by default probably makes
sense.
2022-01-07 15:59:35 +02:00
Slavi Pantaleev
ecc237bbad
Initial work on getting nginx reverse proxying working with Dendrite
2022-01-07 15:59:35 +02:00
rakshazi
5788a16a2e
added matrix-client-cinny
2022-01-05 18:33:21 +02:00
Slavi Pantaleev
b1b4ba501f
Replace ExecStop with ExecStopPost
...
ExecStopPost should allow us to clean up (docker kill + docker rm)
even if the ExecStart (docker run ..) command failed, and not just after
a graceful service stop was initiated.
Source: https://www.freedesktop.org/software/systemd/man/systemd.service.html#ExecStopPost=
2022-01-04 17:27:25 +02:00
Slavi Pantaleev
8515ac55e6
Upgrade nginx (1.21.4 -> 1.21.5)
2022-01-04 17:04:01 +02:00
Slavi Pantaleev
948c411106
Remove sudo requirement for generating SSL certificates
...
Fixes https://github.com/spantaleev/matrix-docker-ansible-deploy/issues/1492
2021-12-30 10:47:06 +02:00
Slavi Pantaleev
afd7f03bb5
Minor comment changes
2021-12-17 17:30:40 +02:00
Slavi Pantaleev
fa704f104b
Add support for using custom ACME CA servers (other than Let's Encrypt')
...
Fixes https://github.com/spantaleev/matrix-docker-ansible-deploy/issues/1468
2021-12-17 17:30:21 +02:00
Slavi Pantaleev
3a9fe48deb
Make matrix-nginx-proxy's X-Forwarded-For header customizable
...
Fixes https://github.com/spantaleev/matrix-docker-ansible-deploy/issues/1393
2021-11-24 11:32:06 +02:00
Slavi Pantaleev
3b27ce2ff6
Merge pull request #1404 from aaronraimist/v3
...
Allow workers to serve new v3 APIs
2021-11-19 10:54:47 +02:00
Aaron Raimist
f8fe68b385
Allow workers to serve new v3 APIs
...
1f196f59cb
2021-11-17 14:54:49 +00:00
Slavi Pantaleev
b4fb819481
Merge pull request #1403 from borisrunakov/rename-matrix-ma1sd-default-port
...
remove default from variable name
2021-11-17 10:35:54 +02:00
boris runakov
394ecb0acc
remove default from variable name
2021-11-16 21:14:28 +02:00
boris runakov
d3a9ec98de
refactoring
2021-11-16 21:03:21 +02:00
boris runakov
1ec67f49b0
replaced 8008 where possible
2021-11-15 22:43:05 +02:00
Slavi Pantaleev
994c0e504c
Ensure some matrix-nginx-proxy variables are defined
...
Related to https://github.com/spantaleev/matrix-docker-ansible-deploy/pull/1397
2021-11-15 14:46:44 +02:00
b
07496069c8
rellocating variables for consistency
2021-11-15 12:07:54 +02:00
b
7756cc4c8e
replace port 8048 with matrix_synapse_container_default_federation_port
2021-11-14 20:30:13 +02:00
JokerGermany
c0656448f7
Port 80 for IPv6
2021-11-13 01:18:22 +01:00
sakkiii
cd26af2f6f
Certbot Update (v1.20.0 -> v1.21.0)
2021-11-10 22:58:45 +05:30
sakkiii
7a4f49c457
Nginx Minio Update (1.21.3 -> 1.21.4)
2021-11-10 22:52:23 +05:30
Slavi Pantaleev
735c966ab6
Disable systemd services when stopping to uninstall them
...
Until now, we were leaving services "enabled"
(symlinks in /etc/systemd/system/multi-user.target.wants/).
We clean these up now. Broken symlinks may still exist in older
installations that enabled/disabled services. We're not taking care
to fix these up. It's just a cosmetic defect anyway.
2021-11-10 17:39:21 +02:00
b
6eaa8ac65a
add server_name to matrix-synapsel.conf only if matrix_nginx_proxy_enabled
2021-11-05 15:31:10 +02:00
b
dcda17595a
change port 8090 to matrix_ma1sd_default_port
2021-10-31 21:06:22 +02:00
Slavi Pantaleev
06bcdcf9d2
Merge pull request #1311 from HarHarLinks/master
...
add auto proxy synapse worker metrics
2021-10-25 09:21:11 +03:00