Slavi Pantaleev
c33ed94352
Add security headers to synapse-admin (on Traefik)
...
We've had it on `matrix-nginx-proxy` before, but
our initial support for Traefik did not include any of these security
headers.
2023-02-14 08:49:04 +02:00
Slavi Pantaleev
71597132e0
Move around some matrix-client-element variables
2023-02-14 08:45:32 +02:00
Slavi Pantaleev
5ab5f28d14
Add support for running synapse-admin (on Traefik) at the root path
...
Previously, we had to run it at a subpath, like `/synapse-admin`.
We can now dedicate a whole domain and the `/` path to it, should we
wish to do so.
2023-02-14 08:42:50 +02:00
Slavi Pantaleev
ff1338e003
Add support for hosting Element (on Traefik) at a subpath
2023-02-14 08:31:26 +02:00
Slavi Pantaleev
e34174b1b4
Add various security headers to matrix-client-element when behind Traefik
2023-02-13 19:03:20 +02:00
Slavi Pantaleev
e51e4eec09
Add (native) Traefik support to matrix-client-element
...
Previously, it had to go through matrix-nginx-proxy.
It's exposed to Traefik directly via container labels now
2023-02-13 19:03:20 +02:00
Slavi Pantaleev
f2ed5e4b04
Delete /matrix/nginx-proxy/conf.d/matrix-client-element.conf if matrix_nginx_proxy_proxy_element_enabled not enabled
2023-02-13 19:03:20 +02:00
Slavi Pantaleev
c0060753b5
Merge pull request #2477 from etkecc/patch-168
...
Update postmoogle 0.9.12 -> 0.9.13
2023-02-13 18:09:30 +02:00
Slavi Pantaleev
b2d8718233
Fix synapse-admin reverse-proxying regression for "playbook-managed-nginx"
...
Regression since 3d9aa8387e
2023-02-13 16:08:59 +02:00
Aine
9f820a506a
Update postmoogle 0.9.12 -> 0.9.13
...
* live SSL certificates reload on file changes (e.g., on automatic certs renewal)
* print all errors when trying connection to an SMTP server
2023-02-13 14:08:09 +00:00
Slavi Pantaleev
6cda711c0b
Fix incorrect host_bind_port syntax (extra :
) affecting certain deployments
...
Fixes https://github.com/spantaleev/matrix-docker-ansible-deploy/issues/2474
Seems like this affected all "own webserver" deployments, which required
port exposure.
`playbook-managed-traefik` and `playbook-managed-nginx` were not affected.
2023-02-13 15:38:24 +02:00
Slavi Pantaleev
31aa87fdb6
Merge pull request #2475 from etkecc/patch-167
...
Update coturn 4.6.1-r1 -> 4.6.1-r2
2023-02-13 15:12:37 +02:00
Slavi Pantaleev
3d9aa8387e
Add (native) Traefik support to synapse-admin
...
Previously, it had to go through matrix-nginx-proxy.
It's exposed to Traefik directly via container labels now.
2023-02-13 15:08:42 +02:00
Aine
f6f7bbd2a1
Update coturn 4.6.1-r1 -> 4.6.1-r2
2023-02-13 12:54:55 +00:00
Slavi Pantaleev
80935a5194
Fix broken backup_borg link
...
Referenced here: 06f5be4fa5 (r100414988)
2023-02-13 14:14:25 +02:00
Slavi Pantaleev
06f5be4fa5
Announce matrix-backup-borg extraction
2023-02-13 13:16:55 +02:00
Slavi Pantaleev
5d14621916
Fix outdated documentation leading to matrix-backup-borg
2023-02-13 13:16:55 +02:00
Slavi Pantaleev
e78c52a63a
Merge pull request #2473 from etkecc/patch-166
...
restore borg prefixes
2023-02-13 12:45:14 +02:00
Aine
33b4f7031b
restore borg prefixes
2023-02-13 10:44:42 +00:00
Slavi Pantaleev
266195ab45
Upgrade backup_borg (v1.2.3-1.7.5-1 -> v1.2.3-1.7.6-0)
...
Supersedes https://github.com/spantaleev/matrix-docker-ansible-deploy/pull/2472
2023-02-13 12:26:49 +02:00
Slavi Pantaleev
65730b84d3
Upgrade backup_borg (v1.2.3-1.7.5-0 -> v1.2.3-1.7.5-1)
2023-02-13 11:51:11 +02:00
Slavi Pantaleev
23f7720247
Add missing backup_borg_base_path override
2023-02-13 11:44:19 +02:00
Slavi Pantaleev
38904c08b0
Wire backup_borg_username
...
It's probably unnecessary, as this user is only used in the borg container
internally, but.. It doesn't hurt to set it to `matrix`.
2023-02-13 11:01:54 +02:00
Slavi Pantaleev
78c35136b2
Replace matrix-backup-borg with an external role
2023-02-13 10:53:11 +02:00
Slavi Pantaleev
f81aa4a927
Merge pull request #2470 from Techno-Disaster/td/oops
...
fix: missing endif
2023-02-13 09:12:48 +02:00
td
af10d350bc
fix: missing endif in client well-known
2023-02-13 12:32:43 +05:30
Jayesh Nirve
6939a3d6d3
fix: only add element related entries to client well-known if element is enabled ( #2453 )
...
* fix: only add element related entries to client well-known if element is enabled
* Fix matrix-base/defaults/main.yml syntax
---------
Co-authored-by: Slavi Pantaleev <slavi@devture.com>
2023-02-13 08:36:20 +02:00
Slavi Pantaleev
2be5ba45db
Merge pull request #2466 from array-in-a-matrix/patch-13
...
updated dendrite
2023-02-12 20:37:23 +02:00
Array in a Matrix
79413e7717
updated dendrite
2023-02-12 13:09:53 -05:00
Slavi Pantaleev
972043cfaf
Fix trying to start devture-traefik when not necessarily enabled
...
Fixes https://github.com/spantaleev/matrix-docker-ansible-deploy/issues/2465
2023-02-12 17:14:25 +02:00
Slavi Pantaleev
f1a1ce8a91
Merge pull request #2464 from spantaleev/traefik
...
Reverse-proxy configuration changes and initial Traefik support
2023-02-12 16:05:56 +02:00
Slavi Pantaleev
bc4cb7bb6a
Update configuring-playbook-own-webserver.md with matrix_playbook_reverse_proxy_type awareness
2023-02-12 16:03:44 +02:00
Slavi Pantaleev
73435dfe10
Announce Traefik support
2023-02-12 15:53:18 +02:00
Slavi Pantaleev
b3f6436a0d
Do not enable the Traefik role when reverse-proxy = other-traefik-container
2023-02-12 15:50:18 +02:00
Slavi Pantaleev
709e528f60
Merge pull request #2462 from FSG-Cat/patch-4
...
Upgrade Drapunir from 1.8.0 Beta to 1.8.0 release.
2023-02-12 08:18:58 +02:00
Slavi Pantaleev
e41840e184
Merge pull request #2463 from JokerGermany/patch-1
...
Add Draupnir to the Readme
2023-02-12 08:17:59 +02:00
JokerGermany
17e3c2157e
Add Draupnir to the Readme
2023-02-12 01:07:51 +01:00
Catalan Lover
cba63bd4b9
Upgrade Drapunir from 1.8.0 Beta to 1.8.0 release.
2023-02-11 23:51:13 +01:00
Slavi Pantaleev
4ab915f385
Merge pull request #2460 from FSG-Cat/Mjolnir/Drapunir-Crash-on-start/Dimension-Crash-on-start
...
Fix Dimension,Mjolnir and Drapunir crashing upon startup just to recover.
2023-02-11 19:24:20 +02:00
Catalan Lover
be471250dd
Move services that crash without hs connectivity to after proxy.
2023-02-11 17:58:19 +01:00
Slavi Pantaleev
6b0650641b
Update matrix_playbook_reverse_proxy_type documentation
2023-02-11 08:58:53 +02:00
Slavi Pantaleev
94be74e633
Improve traefik-certs-dumper defaults for other-traefik-container setups
...
We'd like to auto-enable traefik-certs-dumper for these setups.
`devture_traefik_certs_dumper_ssl_dir_path` will be empty though,
so the role's validation will point people in the right direction.
2023-02-11 08:54:07 +02:00
Slavi Pantaleev
f37a7a21f1
Delay Postmoogle startup to help Traefik-based setups
2023-02-11 08:53:32 +02:00
Slavi Pantaleev
8309a21303
Rename reverse proxy types and fix Hookshot http/https urlPrefix issue
2023-02-11 08:44:11 +02:00
Slavi Pantaleev
3f2cb840b9
Merge branch 'master' into traefik
2023-02-11 07:46:35 +02:00
Slavi Pantaleev
ad22bdb884
Do not run matrix-user-verification-service validation tasks unless the service is enabled
2023-02-10 19:40:03 +02:00
Slavi Pantaleev
7142ff422d
Ensure matrix_user_verification_service_uvs_access_token is always defined
...
The playbook tries to avoid such variables which are sometimes defined
and sometimes not. We'd rather not check for `is defined`.
2023-02-10 19:40:03 +02:00
Slavi Pantaleev
97f65e8dff
Minor fixes to allow for Traefik without SSL
2023-02-10 19:36:06 +02:00
Slavi Pantaleev
ddad722e78
Merge pull request #2458 from etkecc/patch-164
...
Update Hydrogen 0.3.6 -> 0.3.7
2023-02-10 16:53:13 +02:00
Aine
a1ef28681a
Update Hydrogen 0.3.6 -> 0.3.7
2023-02-10 14:40:50 +00:00