Commit graph

317 commits

Author SHA1 Message Date
teutat3s b2626a5a0c
Merge branch 'master' into pub.solar 2023-09-16 20:18:04 +02:00
Catalan Lover 2f6829e6d7
Replace links to Gnuxie/Draupnir with the-draupnir-project/Draupnir
Draupnir moved its repo on github from the namespace of its maintainer Gnuxie to a newly created Github Organisation the-draupnir-project and this commit reflects this.
2023-09-07 19:33:25 +02:00
teutat3s 1412d52947
Merge branch 'master' into pub.solar 2023-09-04 14:45:20 +02:00
Slavi Pantaleev 99822c77fa Announce SchildiChat
Related to: https://github.com/spantaleev/matrix-docker-ansible-deploy/pull/2851
2023-08-31 13:42:40 +03:00
teutat3s cb91cb81b7
Merge branch 'master' into pub.solar 2023-08-30 18:07:39 +02:00
Slavi Pantaleev 9f90510d53 Announce mautrix-wsproxy support
Related to https://github.com/spantaleev/matrix-docker-ansible-deploy/pull/2261
2023-08-23 15:13:38 +03:00
Julian-Samuel Gebühr 14f7eed932
Update matrix-registration-bot, improve authentication config (#2723)
* Adjust to new mrb docker versioning

* Stabilze authentication

* fix lint

* Move & document mrb password usage

* Add clean cache role

* Document clean cache

* Fix lint

* Update CHANGELOG.md

* Automate access tokens

* Improve changelog

* Make use of mrb's function to fetch API tokens

* Adjust changelog

* Use ansible.builtin.file to clear directory

* Fix typo

---------

Co-authored-by: Slavi Pantaleev <slavi@devture.com>
2023-07-24 13:57:06 +03:00
Slavi Pantaleev 0a81083e7d Announce mautrix-gmessages support
Related to https://github.com/spantaleev/matrix-docker-ansible-deploy/pull/2794
2023-07-21 14:37:05 +03:00
teutat3s 1867fe7f10
Merge branch 'master' into pub.solar 2023-07-20 00:05:38 +02:00
Slavi Pantaleev 68556400ba Announce matrix-media-repo
Related to https://github.com/spantaleev/matrix-docker-ansible-deploy/pull/2783
2023-07-17 22:38:44 +03:00
teutat3s 03ef77fb07
Merge branch 'master' into pub.solar 2023-05-29 13:36:01 +02:00
Slavi Pantaleev c55371e305 Add changelog entry for the forget_rooms_on_leave default change for Synapse
Related to:

- https://github.com/spantaleev/matrix-docker-ansible-deploy/pull/2698
- https://github.com/spantaleev/matrix-docker-ansible-deploy/pull/2700
2023-05-25 09:14:09 +03:00
teutat3s 8e959cf895
Merge branch 'master' into pub.solar 2023-04-13 15:49:16 +02:00
Slavi Pantaleev e9d48ee9ca Fix typos
Related to https://github.com/spantaleev/matrix-docker-ansible-deploy/pull/2621
2023-04-03 12:02:06 +03:00
Joshua 5a44e06e00
Remedy Typo 2023-04-03 18:34:54 +10:00
Slavi Pantaleev 1d00d15482 Switch to exported Jitsi role 2023-04-03 08:53:46 +03:00
teutat3s 54ae00cb05
Merge branch 'master' into pub.solar 2023-03-26 12:11:09 +02:00
Felix Stupp e29af490c0
CHANGELOG: Add disabled ntfy web app
See #2529
2023-03-22 09:21:29 +00:00
Slavi Pantaleev 14b8efcad2 Replace matrix-prometheus with an external Prometheus role 2023-03-21 07:38:12 +02:00
teutat3s 369d909210
Merge branch 'master' into pub.solar 2023-03-15 10:18:13 +01:00
Slavi Pantaleev d3a0ef22b6 Announce matrix-synapse-auto-compressor 2023-03-12 10:55:08 +02:00
teutat3s e604445738
Merge branch 'master' into pub.solar 2023-03-08 18:19:12 +01:00
Slavi Pantaleev bf95204860 Mention Element X Android not being quite ready for testing yet 2023-03-07 14:44:30 +02:00
Slavi Pantaleev 6c1a39e6e9 Announce sliding-sync support
Related to https://github.com/spantaleev/matrix-docker-ansible-deploy/pull/2515
2023-03-07 12:22:04 +02:00
Slavi Pantaleev 30f1034767 Remove matrix_playbook_traefik_role_enabled variable and devture-traefik references
The variable was necessary when multiple playbooks could have
potentially tried to manage a shared `devture-traefik.serivce` systemd service
and shared `/devture-traefik` directory.

Since adcc6d9723, we use our own `/matrix/traefik`
(`matrix-traefik.service`) installation and no conflicts can arise.
It's safe to always enable the role, just like we do with all the other roles.
2023-03-06 09:51:14 +02:00
Slavi Pantaleev 124fbeda04 Switch to using an external Etherpad role
This new role also adds native Traefik support and support for other
(non-`amd64`) architectures via self-building.
2023-03-02 22:50:13 +02:00
Jan 05b3f6565b
Update CHANGELOG.md
Fix typo in changelog
2023-02-26 17:21:59 +01:00
teutat3s e025fa5269
Merge branch 'master' into pub.solar 2023-02-26 15:29:55 +01:00
Slavi Pantaleev 71ae825f6a Switch default reverse-proxy to Traefik, force reverse-proxy choice on existing users 2023-02-26 16:14:05 +02:00
Slavi Pantaleev a45c70fd66 Announce Rageshake support 2023-02-25 14:04:20 +02:00
teutat3s dcb99a79e6
Merge branch 'master' into pub.solar 2023-02-19 17:15:24 +01:00
Slavi Pantaleev 0da308e24d Upgrade com.devture.ansible.role.traefik 2023-02-19 10:20:13 +02:00
Slavi Pantaleev 5df89a44b3 Add support for customizing Synapse templates 2023-02-17 19:37:34 +02:00
Slavi Pantaleev 990a6369e1 Switch to using an external Redis role 2023-02-17 16:23:59 +02:00
Slavi Pantaleev 964aa0e84d Switch to using an external Ntfy role
The newly extracted role also has native Traefik support,
so we no longer need to rely on `matrix-nginx-proxy` for
reverse-proxying to Ntfy.

The new role uses port `80` inside the container (not `8080`, like
before), because that's the default assumption of the officially
published container image. Using a custom port (like `8080`), means the
default healthcheck command (which hardcodes port `80`) doesn't work.
Instead of fiddling to override the healthcheck command, we've decided
to stick to the default port instead. This only affects the
inside-the-container port, not any external ports.

The new role also supports adding the network ranges of the container's
multiple additional networks as "exempt hosts". Previously, only one
network's address range was added to "exempt hosts".
2023-02-17 09:54:33 +02:00
Slavi Pantaleev 93bb117a29 Mention Traefik changes causing backward-compatibility break for own-webserver (non-nginx-proxy) users
This also updates `docs/configuring-playbook-own-webserver.md`,
trying to make it up-to-date with all recent changes.
2023-02-16 09:21:31 +02:00
Slavi Pantaleev 1006b8d899 Replace matrix-grafana with an external role 2023-02-15 10:32:24 +02:00
Slavi Pantaleev b648d4579f Make it clear that certain matrix_nginx_proxy_* variables are necessary for now, even with Traefik
Related to https://github.com/spantaleev/matrix-docker-ansible-deploy/issues/2480
2023-02-15 07:30:38 +02:00
Slavi Pantaleev 80935a5194 Fix broken backup_borg link
Referenced here: 06f5be4fa5 (r100414988)
2023-02-13 14:14:25 +02:00
Slavi Pantaleev 06f5be4fa5 Announce matrix-backup-borg extraction 2023-02-13 13:16:55 +02:00
Slavi Pantaleev 73435dfe10 Announce Traefik support 2023-02-12 15:53:18 +02:00
Slavi Pantaleev 6db3c8f2ad Announce Matrix Authentication Support for Jitsi
Related to https://github.com/spantaleev/matrix-docker-ansible-deploy/pull/2375
2023-02-10 14:26:41 +02:00
Slavi Pantaleev 600aaa0bc7 Announce Draupnir support
Related to https://github.com/spantaleev/matrix-docker-ansible-deploy/pull/2451
2023-02-10 11:52:31 +02:00
Slavi Pantaleev be78b74fbd Switch from matrix-prometheus-postgres-exporter to an external prometheus_postgres_exporter role 2023-02-05 10:32:09 +02:00
teutat3s adf69df131
Merge branch 'master' into pub.solar 2023-01-31 19:32:00 +01:00
Slavi Pantaleev 864b64d015 Mention the new no-multicast-peers default in Coturn config
Related to 4c9f96722f
2023-01-26 20:01:48 +02:00
Slavi Pantaleev f1c9052fe5 Make it obvious that running Coturn in host-networking mode requires manual firewall changes 2023-01-26 17:59:56 +02:00
Slavi Pantaleev aafa8f019c Allow matrix_coturn_docker_network to be set to 'host' to use host-networking
This helps large deployments which need to open up thousands of ports
(matrix_coturn_turn_udp_min_port, matrix_coturn_turn_udp_min_port)

On a test VM, opening 1k ports takes 17 seconds for Docker to "publish"
all of these ports (setting up forwarding rules with the firewall, etc),
so service startup and shutdown take a long amount of time.

If host-networking is used, there's no need to open any ports at all
and startup/shutdown can be quick.
2023-01-26 17:35:30 +02:00
Slavi Pantaleev bb0faa6bc3 Block various private network ranges via denied_peer_ips for Coturn by default
Inspired by: https://www.rtcsec.com/article/cve-2020-26262-bypass-of-coturns-access-control-protection/
2023-01-26 17:35:30 +02:00
teutat3s 5367dc337f
Merge branch 'master' into pub.solar 2023-01-23 21:34:24 +01:00