overmind
/
matrix-docker-ansible-deploy
Mirror von https://github.com/spantaleev/matrix-docker-ansible-deploy
1
0
Fork 0
Code Issues 0 Releases 0 Wiki Aktivität
Matrix Docker Ansible eploy
Du kannst nicht mehr als 25 Themen auswählen Themen müssen entweder mit einem Buchstaben oder einer Ziffer beginnen. Sie können Bindestriche („-“) enthalten und bis zu 35 Zeichen lang sein.
11175 Commits
16 Branches
161 MiB
 
 
Struktur: 2949e0931f
Branches Tags
${ item.name }
Erstelle Branch ${ searchTerm }
von „2949e0931f“
${ noResults }
matrix-docker-ansible-deploy/roles/custom/matrix-continuwuity/defaults/main.yml

306 Zeilen
18 KiB
Originalformat Blame Verlauf 

  1. # SPDX-FileCopyrightText: 2025 MDAD project contributors

  2. # SPDX-FileCopyrightText: 2025 Slavi Pantaleev

  3. #

  4. # SPDX-License-Identifier: AGPL-3.0-or-later

  5. 

  6. ---

  7. # continuwuity is a continuation of conduwuit (https://conduwuit.puppyirl.gay/).

  8. # Project source code URL: https://forgejo.ellis.link/continuwuation/continuwuity/

  9. # See: https://continuwuity.org/

  10. 

  11. matrix_continuwuity_enabled: true

  12. 

  13. matrix_continuwuity_hostname: ''

  14. 

  15. # renovate: datasource=docker depName=forgejo.ellis.link/continuwuation/continuwuity

  16. matrix_continuwuity_version: v0.5.7

  17. 

  18. matrix_continuwuity_container_image: "{{ matrix_continuwuity_container_image_registry_prefix }}/continuwuation/continuwuity:{{ matrix_continuwuity_container_image_tag }}"

  19. matrix_continuwuity_container_image_tag: "{{ matrix_continuwuity_version }}"

  20. matrix_continuwuity_container_image_force_pull: "{{ matrix_continuwuity_container_image.endswith(':latest') }}"

  21. matrix_continuwuity_container_image_registry_prefix: "{{ matrix_continuwuity_container_image_registry_prefix_upstream }}"

  22. matrix_continuwuity_container_image_registry_prefix_upstream: "{{ matrix_continuwuity_container_image_registry_prefix_upstream_default }}"

  23. matrix_continuwuity_container_image_registry_prefix_upstream_default: forgejo.ellis.link

  24. 

  25. matrix_continuwuity_base_path: "{{ matrix_base_data_path }}/continuwuity"

  26. matrix_continuwuity_config_path: "{{ matrix_continuwuity_base_path }}/config"

  27. matrix_continuwuity_data_path: "{{ matrix_continuwuity_base_path }}/data"

  28. 

  29. matrix_continuwuity_config_port_number: 6167

  30. 

  31. matrix_continuwuity_tmp_directory_size_mb: 500

  32. 

  33. # List of systemd services that matrix-continuwuity.service depends on

  34. matrix_continuwuity_systemd_required_services_list: "{{ matrix_continuwuity_systemd_required_services_list_default + matrix_continuwuity_systemd_required_services_list_auto + matrix_continuwuity_systemd_required_services_list_custom }}"

  35. matrix_continuwuity_systemd_required_services_list_default: "{{ [devture_systemd_docker_base_docker_service_name] if devture_systemd_docker_base_docker_service_name else [] }}"

  36. matrix_continuwuity_systemd_required_services_list_auto: []

  37. matrix_continuwuity_systemd_required_services_list_custom: []

  38. 

  39. # List of systemd services that matrix-continuwuity.service wants

  40. matrix_continuwuity_systemd_wanted_services_list: "{{ matrix_continuwuity_systemd_wanted_services_list_default + matrix_continuwuity_systemd_wanted_services_list_auto + matrix_continuwuity_systemd_wanted_services_list_custom }}"

  41. matrix_continuwuity_systemd_wanted_services_list_default: []

  42. matrix_continuwuity_systemd_wanted_services_list_auto: []

  43. matrix_continuwuity_systemd_wanted_services_list_custom: []

  44. 

  45. # Controls how long to sleep for after starting the matrix-synapse container.

  46. #

  47. # Delaying, so that the homeserver can manage to fully start and various services

  48. # that depend on it (`matrix_continuwuity_systemd_required_services_list` and `matrix_continuwuity_systemd_wanted_services_list`)

  49. # may only start after the homeserver is up and running.

  50. #

  51. # This can be set to 0 to remove the delay.

  52. matrix_continuwuity_systemd_service_post_start_delay_seconds: 3

  53. 

  54. # The base container network. It will be auto-created by this role if it doesn't exist already.

  55. matrix_continuwuity_container_network: ""

  56. 

  57. # A list of additional container networks that the container would be connected to.

  58. # The role does not create these networks, so make sure they already exist.

  59. # Use this to expose this container to another reverse proxy, which runs in a different container network.

  60. matrix_continuwuity_container_additional_networks: "{{ matrix_continuwuity_container_additional_networks_auto + matrix_continuwuity_container_additional_networks_custom }}"

  61. matrix_continuwuity_container_additional_networks_auto: []

  62. matrix_continuwuity_container_additional_networks_custom: []

  63. 

  64. # matrix_continuwuity_container_labels_traefik_enabled controls whether labels to assist a Traefik reverse-proxy will be attached to the container.

  65. # See `../templates/labels.j2` for details.

  66. #

  67. # To inject your own other container labels, see `matrix_continuwuity_container_labels_additional_labels`.

  68. matrix_continuwuity_container_labels_traefik_enabled: true

  69. matrix_continuwuity_container_labels_traefik_docker_network: "{{ matrix_continuwuity_container_network }}"

  70. matrix_continuwuity_container_labels_traefik_entrypoints: web-secure

  71. matrix_continuwuity_container_labels_traefik_tls_certResolver: default  # noqa var-naming

  72. 

  73. # Controls whether labels will be added for handling the root (/) path on a public Traefik entrypoint.

  74. matrix_continuwuity_container_labels_public_client_root_enabled: true

  75. matrix_continuwuity_container_labels_public_client_root_traefik_hostname: "{{ matrix_continuwuity_hostname }}"

  76. matrix_continuwuity_container_labels_public_client_root_traefik_rule: "Host(`{{ matrix_continuwuity_container_labels_public_client_root_traefik_hostname }}`) && Path(`/`)"

  77. matrix_continuwuity_container_labels_public_client_root_traefik_priority: 0

  78. matrix_continuwuity_container_labels_public_client_root_traefik_entrypoints: "{{ matrix_continuwuity_container_labels_traefik_entrypoints }}"

  79. matrix_continuwuity_container_labels_public_client_root_traefik_tls: "{{ matrix_continuwuity_container_labels_public_client_root_traefik_entrypoints != 'web' }}"

  80. matrix_continuwuity_container_labels_public_client_root_traefik_tls_certResolver: "{{ matrix_continuwuity_container_labels_traefik_tls_certResolver }}"  # noqa var-naming

  81. matrix_continuwuity_container_labels_public_client_root_redirection_enabled: false

  82. matrix_continuwuity_container_labels_public_client_root_redirection_url: ""

  83. 

  84. # Controls whether labels will be added that expose the Client-Server API on a public Traefik entrypoint.

  85. matrix_continuwuity_container_labels_public_client_api_enabled: true

  86. matrix_continuwuity_container_labels_public_client_api_traefik_hostname: "{{ matrix_continuwuity_hostname }}"

  87. matrix_continuwuity_container_labels_public_client_api_traefik_path_prefix: /_matrix

  88. matrix_continuwuity_container_labels_public_client_api_traefik_rule: "Host(`{{ matrix_continuwuity_container_labels_public_client_api_traefik_hostname }}`) && PathPrefix(`{{ matrix_continuwuity_container_labels_public_client_api_traefik_path_prefix }}`)"

  89. matrix_continuwuity_container_labels_public_client_api_traefik_priority: 0

  90. matrix_continuwuity_container_labels_public_client_api_traefik_entrypoints: "{{ matrix_continuwuity_container_labels_traefik_entrypoints }}"

  91. matrix_continuwuity_container_labels_public_client_api_traefik_tls: "{{ matrix_continuwuity_container_labels_public_client_api_traefik_entrypoints != 'web' }}"

  92. matrix_continuwuity_container_labels_public_client_api_traefik_tls_certResolver: "{{ matrix_continuwuity_container_labels_traefik_tls_certResolver }}"  # noqa var-naming

  93. 

  94. # Controls whether labels will be added that expose the Client-Server API on the internal Traefik entrypoint.

  95. # This is similar to `matrix_continuwuity_container_labels_public_client_api_enabled`, but the entrypoint and intent is different.

  96. matrix_continuwuity_container_labels_internal_client_api_enabled: false

  97. matrix_continuwuity_container_labels_internal_client_api_traefik_path_prefix: "{{ matrix_continuwuity_container_labels_public_client_api_traefik_path_prefix }}"

  98. matrix_continuwuity_container_labels_internal_client_api_traefik_rule: "PathPrefix(`{{ matrix_continuwuity_container_labels_internal_client_api_traefik_path_prefix }}`)"

  99. matrix_continuwuity_container_labels_internal_client_api_traefik_priority: "{{ matrix_continuwuity_container_labels_public_client_api_traefik_priority }}"

  100. matrix_continuwuity_container_labels_internal_client_api_traefik_entrypoints: ""

  101. 

  102. # Controls whether labels will be added that expose the Server-Server API (Federation API) on a public Traefik entrypoint.

  103. matrix_continuwuity_container_labels_public_federation_api_enabled: "{{ matrix_continuwuity_config_allow_federation }}"

  104. matrix_continuwuity_container_labels_public_federation_api_traefik_hostname: "{{ matrix_continuwuity_hostname }}"

  105. matrix_continuwuity_container_labels_public_federation_api_traefik_path_prefix: /_matrix

  106. matrix_continuwuity_container_labels_public_federation_api_traefik_rule: "Host(`{{ matrix_continuwuity_container_labels_public_federation_api_traefik_hostname }}`) && PathPrefix(`{{ matrix_continuwuity_container_labels_public_federation_api_traefik_path_prefix }}`)"

  107. matrix_continuwuity_container_labels_public_federation_api_traefik_priority: 0

  108. matrix_continuwuity_container_labels_public_federation_api_traefik_entrypoints: ''

  109. # TLS is force-enabled here, because the spec (https://spec.matrix.org/v1.9/server-server-api/#tls) says that the federation API must use HTTPS.

  110. matrix_continuwuity_container_labels_public_federation_api_traefik_tls: true

  111. matrix_continuwuity_container_labels_public_federation_api_traefik_tls_certResolver: "{{ matrix_continuwuity_container_labels_traefik_tls_certResolver }}"  # noqa var-naming

  112. 

  113. # Controls whether labels will be added that expose the `/_continuwuity` path prefix on a public Traefik entrypoint.

  114. matrix_continuwuity_container_labels_public_continuwuity_api_enabled: true

  115. matrix_continuwuity_container_labels_public_continuwuity_api_traefik_hostname: "{{ matrix_continuwuity_hostname }}"

  116. matrix_continuwuity_container_labels_public_continuwuity_api_traefik_path_prefix: /_continuwuity

  117. matrix_continuwuity_container_labels_public_continuwuity_api_traefik_rule: "Host(`{{ matrix_continuwuity_container_labels_public_continuwuity_api_traefik_hostname }}`) && PathPrefix(`{{ matrix_continuwuity_container_labels_public_continuwuity_api_traefik_path_prefix }}`)"

  118. matrix_continuwuity_container_labels_public_continuwuity_api_traefik_priority: 0

  119. matrix_continuwuity_container_labels_public_continuwuity_api_traefik_entrypoints: "{{ matrix_continuwuity_container_labels_traefik_entrypoints }}"

  120. matrix_continuwuity_container_labels_public_continuwuity_api_traefik_tls: "{{ matrix_continuwuity_container_labels_public_continuwuity_api_traefik_entrypoints != 'web' }}"

  121. matrix_continuwuity_container_labels_public_continuwuity_api_traefik_tls_certResolver: "{{ matrix_continuwuity_container_labels_traefik_tls_certResolver }}"  # noqa var-naming

  122. 

  123. # matrix_continuwuity_container_labels_additional_labels contains a multiline string with additional labels to add to the container label file.

  124. # See `../templates/labels.j2` for details.

  125. #

  126. # Example:

  127. # matrix_continuwuity_container_labels_additional_labels: |

  128. #   my.label=1

  129. #   another.label="here"

  130. matrix_continuwuity_container_labels_additional_labels: ''

  131. 

  132. # Extra arguments for the Docker container

  133. matrix_continuwuity_container_extra_arguments: []

  134. 

  135. # Specifies which template files to use when configuring continuwuity.

  136. # If you'd like to have your own different configuration, feel free to copy and paste

  137. # the original files into your inventory (e.g. in `inventory/host_vars/matrix.example.com/`)

  138. # and then change the specific host's `vars.yml` file like this:

  139. # matrix_continuwuity_template_continuwuity_config: "{{ playbook_dir }}/inventory/host_vars/matrix.example.com/continuwuity.toml.j2"

  140. matrix_continuwuity_template_continuwuity_config: "{{ role_path }}/templates/continuwuity.toml.j2"

  141. 

  142. # Max size for uploads, in bytes

  143. matrix_continuwuity_config_server_name: "{{ matrix_domain }}"

  144. 

  145. # Max size for uploads, in bytes

  146. matrix_continuwuity_config_max_request_size: 20_000_000

  147. 

  148. # Enables registration. If set to false, no users can register on this server.

  149. matrix_continuwuity_config_allow_registration: false

  150. 

  151. # Controls if newly registered users are automatically suspended, requiring admin approval.

  152. matrix_continuwuity_config_suspend_on_register: false

  153. 

  154. # Controls the `yes_i_am_very_very_sure_i_want_an_open_registration_server_prone_to_abuse` setting.

  155. # This is only used when `matrix_continuwuity_config_allow_registration` is set to true and no registration token is configured.

  156. matrix_continuwuity_config_yes_i_am_very_very_sure_i_want_an_open_registration_server_prone_to_abuse: false

  157. 

  158. # Controls the `registration_token` setting.

  159. # When registration is enabled (`matrix_continuwuity_config_allow_registration`) you:

  160. # - either need to set a token to protect registration from abuse

  161. # - or you need to enable the `yes_i_am_very_very_sure_i_want_an_open_registration_server_prone_to_abuse` setting

  162. #   (see `matrix_continuwuity_config_yes_i_am_very_very_sure_i_want_an_open_registration_server_prone_to_abuse`),

  163. #   to allow registration without any form of 2nd-step.

  164. matrix_continuwuity_config_registration_token: ''

  165. 

  166. # Controls the `new_user_displayname_suffix` setting.

  167. # This is the suffix that will be added to the displayname of new users.

  168. # Upstream defaults this to "🏳️‍⚧️", but we keep this consistent across all homeserver implementations and do not enable a suffix.

  169. matrix_continuwuity_config_new_user_displayname_suffix: ""

  170. 

  171. # Controls the `allow_announcements_check` setting.

  172. matrix_continuwuity_config_allow_announcements_check: true

  173. 

  174. # Controls the `emergency_password` setting.

  175. matrix_continuwuity_config_emergency_password: ''

  176. 

  177. # Controls the `matrix_continuwuity_trusted_servers`` setting.

  178. matrix_continuwuity_config_trusted_servers:

  179.  - "matrix.org"

  180. 

  181. # Controls the `matrix_continuwuity_config_log` setting.

  182. matrix_continuwuity_config_log: "info,state_res=warn,rocket=off,_=off,sled=off"

  183. 

  184. # TURN integration.

  185. # See: https://continuwuity.org/turn

  186. matrix_continuwuity_config_turn_uris: []

  187. matrix_continuwuity_config_turn_secret: ''

  188. matrix_continuwuity_config_turn_username: ''

  189. matrix_continuwuity_config_turn_password: ''

  190. 

  191. # Controls whether the self-check feature should validate SSL certificates.

  192. matrix_continuwuity_self_check_validate_certificates: true

  193. 

  194. # If set, registration will require Google ReCAPTCHA verification.

  195. matrix_continuwuity_config_recaptcha_site_key: ''

  196. matrix_continuwuity_config_recaptcha_private_site_key: ''

  197. 

  198. # Controls whether encrypted rooms and events are allowed.

  199. matrix_continuwuity_config_allow_encryption: true

  200. 

  201. # Controls whether standard users can create new rooms.

  202. # Appservices and admins are always allowed to create new rooms.

  203. matrix_continuwuity_config_allow_room_creation: true

  204. 

  205. # Controls the default room version continuwuity will create rooms with.

  206. # Per spec, room version '12' is the default (According to spec release 1.18).

  207. matrix_continuwuity_config_default_room_version: '12'

  208. 

  209. # List/vector of room IDs or room aliases that continuwuity will make

  210. # newly registered users join. The rooms specified must be rooms that you

  211. # have joined at least once on the server, and must be public.

  212. #

  213. # example: ["#continuwuity:continuwuity.org",

  214. # "!main-1:continuwuity.org"]

  215. #

  216. matrix_continuwuity_config_auto_join_rooms: []

  217. 

  218. # Forces users to always forget rooms they have left (MSC4267).

  219. matrix_continuwuity_config_forget_forced_upon_leave: false

  220. 

  221. # Controls server (de)federation settings.

  222. matrix_continuwuity_config_allow_federation: true

  223. matrix_continuwuity_config_allowed_remote_server_names: []

  224. matrix_continuwuity_config_forbidden_remote_server_names: []

  225. matrix_continuwuity_config_forbidden_remote_room_directory_server_names: []

  226. matrix_continuwuity_config_prevent_media_downloads_from: []

  227. matrix_continuwuity_config_ignore_messages_from_server_names: []

  228. 

  229. # Allow outgoing presence updates/requests.

  230. #

  231. # Note that outgoing presence is very heavy on the CPU and network, and

  232. # will typically cause extreme strain and slowdowns for no real benefit.

  233. # There are only a few clients that even implement presence, so you

  234. # probably don't want to enable this.

  235. matrix_continuwuity_config_allow_outgoing_presence: false

  236. 

  237. # Controls MatrixRTC foci served via `/_matrix/client/v1/rtc/transports`

  238. # and `/_matrix/client/unstable/org.matrix.msc4143/rtc/transports` (MSC4143)

  239. matrix_continuwuity_config_rtc_foci: "{{ matrix_continuwuity_config_rtc_foci_auto + matrix_continuwuity_config_rtc_foci_custom }}"

  240. matrix_continuwuity_config_rtc_foci_auto: |-

  241.   {{

  242.     (

  243.       [{'type': 'livekit', 'livekit_service_url': matrix_continuwuity_config_rtc_foci_livekit_url}] if matrix_continuwuity_config_rtc_foci_livekit_url != '' else []

  244.     )

  245.   }}

  246. matrix_continuwuity_config_rtc_foci_custom: []

  247. 

  248. # Controls MatrixRTC Livekit URL auto-added to `matrix_continuwuity_config_rtc_foci`.

  249. #

  250. # This is set automatically if you are using the playbook MatrixRTC stack.

  251. matrix_continuwuity_config_rtc_foci_livekit_url: ''

  252. 

  253. # Controls the `url_preview_domain_contains_allowlist` setting.

  254. matrix_continuwuity_config_url_preview_domain_contains_allowlist: []

  255. 

  256. # Controls the `url_preview_domain_explicit_allowlist` setting.

  257. matrix_continuwuity_config_url_preview_domain_explicit_allowlist: []

  258. 

  259. # Controls the `url_preview_check_root_domain` setting.

  260. matrix_continuwuity_config_url_preview_check_root_domain: false

  261. 

  262. # Controls the value of `global.well_known.client`.

  263. matrix_continuwuity_config_well_known_client: ''

  264. 

  265. # Controls whether SMTP features will be enabled

  266. # (such as setting the server's SMTP connection URL,

  267. #  enabling self-service password resets via email,

  268. #  requiring email for registration, etc.)

  269. matrix_continuwuity_config_smtp_enabled: false

  270. 

  271. # Controls the value of `global.smtp.connection_uri` (if any).

  272. # Must be set to a non-empty value

  273. # together with `matrix_continuwuity_config_smtp_sender` to have effect.

  274. matrix_continuwuity_config_smtp_connection_uri: ''

  275. 

  276. # Controls the value of `global.smtp.sender` (if any).

  277. # Must be set to a non-empty value

  278. # together with `matrix_continuwuity_config_smtp_connection_uri` to have effect.

  279. matrix_continuwuity_config_smtp_sender: ''

  280. 

  281. # Controls the `global.smtp.require_email_for_registration` setting.

  282. matrix_continuwuity_config_smtp_require_email_for_registration: false

  283. 

  284. # Controls the `global.smtp.require_email_for_token_registration ` setting.

  285. matrix_continuwuity_config_smtp_require_email_for_token_registration: false

  286. 

  287. # Additional environment variables to pass to the container.

  288. #

  289. # Environment variables take priority over settings in the configuration file.

  290. #

  291. # Example:

  292. # matrix_continuwuity_environment_variables_extension: |

  293. #   CONTINUWUITY_MAX_REQUEST_SIZE=50000000

  294. #   CONTINUWUITY_REQUEST_TIMEOUT=60

  295. matrix_continuwuity_environment_variables_extension: ''

  296. 

  297. # matrix_continuwuity_restart_necessary controls whether the service

  298. # will be restarted (when true) or merely started (when false) by the

  299. # systemd service manager role (when conditional restart is enabled).

  300. #

  301. # This value is automatically computed during installation based on whether

  302. # any configuration files, the systemd service file, or the container image changed.

  303. # The default of `false` means "no restart needed" — appropriate when the role's

  304. # installation tasks haven't run (e.g., due to --tags skipping them).

  305. matrix_continuwuity_restart_necessary: false