matrix-docker-ansible-deploy

Commit Graph

Аутор	SHA1	Порука	Датум
Slavi Pantaleev	28afbde971	Merge Synapse reverse-proxy companion role into matrix-synapse The companion role was tightly coupled to Synapse through shared tags, worker routing, and lifecycle ordering. Keeping them separate added coordination overhead without practical benefits, especially for parallelized execution. This merges the role into matrix-synapse while keeping companion logic organized under dedicated reverse_proxy_companion task/template subdirectories. Compatibility is preserved: - matrix_synapse_reverse_proxy_companion_* variable names remain unchanged - install/setup companion-specific tags remain available Cross-role/global wiring is now in group_vars (matrix-synapse section), while role defaults provide sensible standalone defaults and self-wiring for Synapse-owned values.	пре 6 дана
QEDeD	f0f496b6ba	Quote YAML mode values to satisfy octal lint rules	пре 2 недеља
Slavi Pantaleev	0d86610cbe	Add conditional restart support to service roles Track config/image/systemd changes via register: directives and compute a _restart_necessary variable for each service role, allowing the systemd_service_manager to skip unnecessary restarts during install-* runs. Covers 22 service roles: alertmanager-receiver, appservice-draupnir-for-all, bridge-mautrix-wsproxy (+ syncproxy), cactus-comments, cactus-comments-client, corporal, element-admin, ldap-registration-proxy, livekit-jwt-service, matrixto, pantalaimon, prometheus-nginxlog-exporter, rageshake, registration, static-files, sygnal, synapse-admin, synapse-auto-compressor, synapse-reverse-proxy-companion, synapse-usage-exporter, and user-verification-service. Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>	пре 2 недеља
Slavi Pantaleev	5cc69ca7eb	Add whoami-based sync worker routing for user-level sticky sessions This adds a new routing mechanism for sync workers that resolves access tokens to usernames via Synapse's whoami endpoint, enabling true user-level sticky routing regardless of which device or token is used. Previously, sticky routing relied on parsing the username from native Synapse tokens (`syt_<base64 username>_...`), which only works with native Synapse auth and provides device-level stickiness at best. This new approach works with any auth system (native Synapse, MAS, etc.) because Synapse handles token validation internally. Implementation uses nginx's auth_request module with an njs script because: - The whoami lookup requires an async HTTP subrequest (ngx.fetch) - js_set handlers must return synchronously and don't support async operations - auth_request allows the async lookup to complete, then captures the result via response headers into nginx variables The njs script: - Extracts access tokens from Authorization header or query parameter - Calls Synapse's whoami endpoint to resolve token -> username - Caches results in a shared memory zone to minimize latency - Returns the username via a `X-User-Identifier` header The username is then used by nginx's upstream hash directive for consistent worker selection. This leverages nginx's built-in health checking and failover.	пре 4 недеља
Slavi Pantaleev	3ee7deb2d7	Rename variable (`matrix_user_groupname` -> `matrix_group_name`)	пре 10 месеци
Slavi Pantaleev	9fc5cdab33	Rename variable (`matrix_user_username` -> `matrix_user_name`)	пре 10 месеци
Suguru Hirahara	aae64ebde4	Add license information to files for matrix-synapse-reverse-proxy-companion Signed-off-by: Suguru Hirahara <acioustick@noreply.codeberg.org>	пре 1 година
David Mehren	c89c356e53	Add a global config option for Docker network MTU (#3502 ) * Add a global config option for Docker network MTU * Upgrade systemd_docker_base (v1.2.0-0 -> v1.3.0-0) The new version includes `devture_systemd_docker_base_container_networks_driver_options` due to `3cc7d12396` Related to https://github.com/spantaleev/matrix-docker-ansible-deploy/pull/3502 * Switch from passing matrix_playbook_docker_network_mtu to respecting devture_systemd_docker_base_container_networks_driver_options Related to: - `3cc7d12396` - https://github.com/spantaleev/matrix-docker-ansible-deploy/pull/3502 * Update all roles to versions that respect `devture_systemd_docker_base_container_networks_driver_options` --------- Co-authored-by: Slavi Pantaleev <slavi@devture.com>	пре 1 година
Slavi Pantaleev	3758b0cfeb	Squashed commit of the following: commit `cf8637efac` Author: Slavi Pantaleev <slavi@devture.com> Date: Sun Mar 24 19:14:57 2024 +0200 Make devture_systemd_docker_base_ipv6_enabled automatically reconfigure geerlingguy/ansible-role-docker Related to https://github.com/spantaleev/matrix-docker-ansible-deploy/pull/3218 commit `dc7af3bc7d` Author: Slavi Pantaleev <slavi@devture.com> Date: Sun Mar 24 19:10:31 2024 +0200 Replace matrix_ipv6_enabled with devture_systemd_docker_base_ipv6_enabled Related to https://github.com/spantaleev/matrix-docker-ansible-deploy/pull/3218 commit `07e900d6a2` Author: Slavi Pantaleev <slavi@devture.com> Date: Sun Mar 24 19:01:51 2024 +0200 Improve matrix_ipv6_enabled comments commit `3f03ca7f69` Author: Tilo Spannagel <development@tilosp.de> Date: Sat Mar 9 19:27:50 2024 +0000 Add setting to enable ipv6	пре 1 година
Slavi Pantaleev	fe7c06d6f5	Fix duplicate labels in matrix-synapse-reverse-proxy-companion	пре 2 година
Slavi Pantaleev	bbd9493b8f	Handle /_matrix Client-Server and Federation APIs directly at matrix-synapse-reverse-proxy-companion	пре 2 година
Slavi Pantaleev	0ea7cb5d18	Remove various init.yml files - initialize systemd services, etc., statically (not at runtime)	пре 3 година
Slavi Pantaleev	e9e84341a9	Reverse-proxy to Synapse via matrix-synapse-reverse-proxy-companion Fixes https://github.com/spantaleev/matrix-docker-ansible-deploy/issues/2090	пре 3 година

1 Комити (28afbde971f24b5ce80b43ae37510573a43a0f61)