overmind
/
matrix-docker-ansible-deploy
mirror of https://github.com/spantaleev/matrix-docker-ansible-deploy
1
0
Fork 0
Code Issues 0 Releases 0 Wiki Activity
Matrix Docker Ansible eploy
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
328 Commits
12 Branches
590 MiB
 
 
Tree: 2d711555fe
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from '2d711555fe'
${ noResults }
matrix-docker-ansible-deploy/roles/matrix-mxisd/defaults/main.yml

101 lines
4.5 KiB
Raw Blame History 

  1. # By default, this playbook installs the mxisd identity server on the same domain as Synapse (`hostname_matrix`).

  2. # If you wish to use the public identity servers (matrix.org, vector.im, riot.im) instead of your own,

  3. # you may wish to disable this.

  4. matrix_mxisd_enabled: true

  5. matrix_mxisd_docker_image: "kamax/mxisd:1.2.2"

  6. matrix_mxisd_base_path: "{{ matrix_base_data_path }}/mxisd"

  7. matrix_mxisd_config_path: "{{ matrix_mxisd_base_path }}/config"

  8. matrix_mxisd_data_path: "{{ matrix_mxisd_base_path }}/data"

  9. 

  10. # Controls whether the mxisd web server's port is exposed outside of the container.

  11. # Normally, matrix-nginx-proxy is enabled and nginx can reach mxisd over the container network.

  12. # If matrix-nginx-proxy is not enabled, or you otherwise have a need for it, you can expose

  13. # mxisd's web-server port to the local host (`127.0.0.1:8090`).

  14. matrix_mxisd_container_expose_port: "{{ not matrix_nginx_proxy_enabled }}"

  15. 

  16. # Your identity server is private by default.

  17. # To ensure maximum discovery, you can make your identity server

  18. # also forward lookups to the central matrix.org Identity server

  19. # (at the cost of potentially leaking all your contacts information).

  20. # Enabling this is discouraged. Learn more here: https://github.com/kamax-io/mxisd/blob/master/docs/features/identity.md#lookups

  21. matrix_mxisd_matrixorg_forwarding_enabled: false

  22. 

  23. # mxisd has serveral supported identity stores.

  24. # One of them (which we enable by default) is storing identities directly in Synapse's database.

  25. # Learn more here: https://github.com/kamax-matrix/mxisd/blob/master/docs/stores/synapse.md

  26. #

  27. # If you need to disable this in favor of some other store, you can toggle it to disabled here

  28. # and add your own mxisd configuration for the other store in `matrix_mxisd_configuration_extension_yaml`.

  29. matrix_mxisd_synapsesql_enabled: true

  30. matrix_mxisd_synapsesql_type: postgresql

  31. matrix_mxisd_synapsesql_connection: //{{ matrix_postgres_connection_hostname }}/{{ matrix_postgres_db_name }}?user={{ matrix_postgres_connection_username }}&password={{ matrix_postgres_connection_password }}

  32. 

  33. # Default mxisd configuration template which covers the generic use case.

  34. # You can customize it by controlling the various variables inside it.

  35. #

  36. # For a more advanced customization, you can extend the default (see `matrix_mxisd_configuration_extension_yaml`)

  37. # or completely replace this variable with your own template.

  38. matrix_mxisd_configuration_yaml: |

  39.   matrix:

  40.     domain: {{ hostname_identity }}

  41. 

  42.   server:

  43.     name: {{ hostname_matrix }}

  44. 

  45.   key:

  46.     path: /var/mxisd/sign.key

  47. 

  48.   storage:

  49.     provider:

  50.       sqlite:

  51.         database: /var/mxisd/mxisd.db

  52. 

  53.   {% if matrix_mxisd_matrixorg_forwarding_enabled %}

  54.   forward:

  55.     servers: ['matrix-org']

  56.   {% endif %}

  57. 

  58.   threepid:

  59.     medium:

  60.       email:

  61.         identity:

  62.           from: {{ matrix_mailer_sender_address }}

  63.         connectors:

  64.           smtp:

  65.             host: matrix-mailer

  66.             port: 587

  67.             tls: 0

  68. 

  69.   synapseSql:

  70.     enabled: {{ matrix_mxisd_synapsesql_enabled }}

  71.     type: {{ matrix_mxisd_synapsesql_type }}

  72.     connection: {{ matrix_mxisd_synapsesql_connection }}

  73. 

  74. matrix_mxisd_configuration_extension_yaml: |

  75.   # Your custom YAML configuration for mxisd goes here.

  76.   # This configuration extends the default starting configuration (`matrix_mxisd_configuration_yaml`).

  77.   #

  78.   # You can override individual variables from the default configuration, or introduce new ones.

  79.   #

  80.   # If you need something more special, you can take full control by

  81.   # completely redefining `matrix_mxisd_configuration_yaml`.

  82.   #

  83.   # Example configuration extension follows:

  84.   #

  85.   # ldap:

  86.   #   enabled: true

  87.   #   connection:

  88.   #     host: ldapHostnameOrIp

  89.   #     tls: false

  90.   #     port: 389

  91.   #     baseDns: ['OU=Users,DC=example,DC=org']

  92.   #     bindDn: CN=My Mxisd User,OU=Users,DC=example,DC=org

  93.   #     bindPassword: TheUserPassword

  94. 

  95. # Doing `|from_yaml` when the extension contains nothing yields an empty string ("").

  96. # We need to ensure it's a dictionary or `|combine` (when building `matrix_mxisd_configuration`) will fail later.

  97. matrix_mxisd_configuration_extension: "{{ matrix_mxisd_configuration_extension_yaml|from_yaml if matrix_mxisd_configuration_extension_yaml|from_yaml else {} }}"

  98. 

  99. # Holds the final mxisd configuration (a combination of the default and its extension).

  100. # You most likely don't need to touch this variable. Instead, see `matrix_mxisd_configuration_yaml`.

  101. matrix_mxisd_configuration: "{{ matrix_mxisd_configuration_yaml|from_yaml|combine(matrix_mxisd_configuration_extension, recursive=True) }}"