overmind
/
matrix-docker-ansible-deploy
kopia lustrzana https://github.com/spantaleev/matrix-docker-ansible-deploy
1
0
Forkuj 0
Kod Zgłoszenia 0 Wydania 0 Wiki Aktywność
Matrix Docker Ansible eploy
Nie możesz wybrać więcej, niż 25 tematów Tematy muszą się zaczynać od litery lub cyfry, mogą zawierać myślniki ('-') i mogą mieć do 35 znaków.
5887 Commity
14 Gałęzie
502 MiB
 
 
Drzewo: 606c1907bb
Gałęzie Tagi
${ item.name }
Utwórz gałąź ${ searchTerm }
z '606c1907bb'
${ noResults }
matrix-docker-ansible-deploy/roles/custom/matrix-synapse/vars/main.yml

241 wiersze
13 KiB
Czysty Wina Historia 

  1. ---

  2. 

  3. matrix_synapse_client_api_url_endpoint_public: "https://{{ matrix_server_fqn_matrix }}/_matrix/client/versions"

  4. matrix_synapse_federation_api_url_endpoint_public: "https://{{ matrix_server_fqn_matrix }}:{{ matrix_federation_public_port }}/_matrix/federation/v1/version"

  5. 

  6. matrix_synapse_media_store_directory_name: "{{ matrix_synapse_media_store_path | basename }}"

  7. 

  8. # A Synapse generic worker can handle both federation and client-server API endpoints.

  9. # We wish to split these, as we normally serve federation separately and don't want them mixed up.

  10. #

  11. # This is some ugly Ansible/Jinja2 hack (seen here: https://stackoverflow.com/a/47831492),

  12. # which takes a list of various strings and removes the ones NOT containing `/_matrix/client` anywhere in them.

  13. #

  14. # We intentionally don't do a diff between everything possible (`matrix_synapse_workers_generic_worker_endpoints`) and `matrix_synapse_workers_generic_worker_federation_endpoints`,

  15. # because `matrix_synapse_workers_generic_worker_endpoints` also contains things like `/_synapse/client/`, etc.

  16. # While /_synapse/client/ endpoints are somewhat client-server API-related, they're:

  17. # - neither part of the client-server API spec (and are thus, different)

  18. # - nor always OK to forward to a worker (we're supposed to obey `matrix_nginx_proxy_proxy_matrix_client_api_forwarded_location_synapse_client_api_enabled`)

  19. #

  20. # It's also not too many of these APIs (only `^/_synapse/client/password_reset/email/submit_token$` at the time of this writing / 2021-01-24),

  21. # so it's not that important whether we forward them or not.

  22. #

  23. # Basically, we aim to cover most things. Skipping `/_synapse/client` or a few other minor things doesn't matter too much.

  24. matrix_synapse_workers_generic_worker_client_server_endpoints: "{{ matrix_synapse_workers_generic_worker_endpoints | default([]) | map('regex_search', '.*/_matrix/client.*') | list | difference([none]) }}"

  25. 

  26. # A Synapse generic worker can handle both federation and client-server API endpoints.

  27. # We wish to split these, as we normally serve federation separately and don't want them mixed up.

  28. #

  29. # This is some ugly Ansible/Jinja2 hack (seen here: https://stackoverflow.com/a/47831492),

  30. # which takes a list of various strings and removes the ones NOT containing `/_matrix/federation` or `/_matrix/key` anywhere in them.

  31. matrix_synapse_workers_generic_worker_federation_endpoints: "{{ matrix_synapse_workers_generic_worker_endpoints | default([]) | map('regex_search', matrix_synapse_workers_generic_worker_federation_endpoints_regex) | list | difference([none]) }}"

  32. 

  33. # matrix_synapse_workers_generic_worker_federation_endpoints_regex contains the regex used in matrix_synapse_workers_generic_worker_federation_endpoints.

  34. # It's intentionally put in a separate variable, to avoid tripping ansible-lint's jinja[spacing] rule.

  35. matrix_synapse_workers_generic_worker_federation_endpoints_regex: '.*(/_matrix/federation|/_matrix/key).*'

  36. 

  37. # matrix_synapse_workers_stream_writer_typing_stream_worker_client_server_endpoints contains the endpoints serviced by the `typing` stream writer.

  38. # See: https://matrix-org.github.io/synapse/latest/workers.html#the-typing-stream

  39. matrix_synapse_workers_stream_writer_typing_stream_worker_client_server_endpoints:

  40.   - ^/_matrix/client/(api/v1|r0|v3|unstable)/rooms/.*/typing

  41. 

  42. # matrix_synapse_workers_stream_writer_to_device_stream_worker_client_server_endpoints contains the endpoints serviced by the `to_device` stream writer.

  43. # See: https://matrix-org.github.io/synapse/latest/workers.html#the-to_device-stream

  44. matrix_synapse_workers_stream_writer_to_device_stream_worker_client_server_endpoints:

  45.   - ^/_matrix/client/(r0|v3|unstable)/sendToDevice/

  46. 

  47. # matrix_synapse_workers_stream_writer_account_data_stream_worker_client_server_endpoints contains the endpoints serviced by the `account_data` stream writer.

  48. # See: https://matrix-org.github.io/synapse/latest/workers.html#the-account_data-stream

  49. matrix_synapse_workers_stream_writer_account_data_stream_worker_client_server_endpoints:

  50.   - ^/_matrix/client/(r0|v3|unstable)/.*/tags

  51.   - ^/_matrix/client/(r0|v3|unstable)/.*/account_data

  52. 

  53. # matrix_synapse_workers_stream_writer_receipts_stream_worker_client_server_endpoints contains the endpoints serviced by the `recepts` stream writer.

  54. # See: https://matrix-org.github.io/synapse/latest/workers.html#the-receipts-stream

  55. matrix_synapse_workers_stream_writer_receipts_stream_worker_client_server_endpoints:

  56.   - ^/_matrix/client/(r0|v3|unstable)/rooms/.*/receipt

  57.   - ^/_matrix/client/(r0|v3|unstable)/rooms/.*/read_markers

  58. 

  59. # matrix_synapse_workers_stream_writer_presence_stream_worker_client_server_endpoints contains the endpoints serviced by the `presence` stream writer.

  60. # See: https://matrix-org.github.io/synapse/latest/workers.html#the-presence-stream

  61. matrix_synapse_workers_stream_writer_presence_stream_worker_client_server_endpoints:

  62.   - ^/_matrix/client/(api/v1|r0|v3|unstable)/presence/

  63. 

  64. # matrix_synapse_workers_user_dir_worker_client_server_endpoints contains the endpoints serviced by the `type = user_dir` (`app = generic_worker`) worker.

  65. # See: https://matrix-org.github.io/synapse/latest/workers.html#updating-the-user-directory

  66. matrix_synapse_workers_user_dir_worker_client_server_endpoints:

  67.   - ^/_matrix/client/(r0|v3|unstable)/user_directory/search$

  68. 

  69. # matrix_synapse_workers_known_stream_writer_stream_types contains the list of stream writer stream types that the playbook recognizes.

  70. # This is used for validation purposes. If adding support for a new type, besides adding it to this list,

  71. # don't forget to actually configure it where appropriate (see worker.yaml.j2`, the nginx proxy configuration, etc).

  72. matrix_synapse_workers_known_stream_writer_stream_types: ['events', 'typing', 'to_device', 'account_data', 'receipts', 'presence']

  73. 

  74. # matrix_synapse_workers_webserving_stream_writer_types contains a list of stream writer types that serve web (client) requests.

  75. # Not all stream writers serve web requests. Some just perform background tasks.

  76. matrix_synapse_workers_webserving_stream_writer_types: ['typing', 'to_device', 'account_data', 'receipts', 'presence']

  77. 

  78. # matrix_synapse_workers_systemd_services_list contains a list of systemd services (one for each worker systemd service which serves web requests).

  79. # This list is built during runtime.

  80. # Not all workers serve web requests. Those that don't won't be injected here.

  81. matrix_synapse_webserving_workers_systemd_services_list: []

  82. 

  83. # matrix_synapse_known_worker_types contains the list of known worker types.

  84. #

  85. # A worker type is different than a worker app (e.g. `generic_worker`).

  86. # For example, the `stream_writer` worker type is served by the `generic_worker` app, but is a separate type that we recognize.

  87. #

  88. # Some other types (`appservice` and `user_dir`) used to be Synapse worker apps, which got subsequently deprecated.

  89. # We still allow these types of workers and map them to the `generic_worker` app,

  90. # which is why we make sure they're part of the list below.

  91. # We use the `unique` filter because they're part of `matrix_synapse_workers_avail_list` too (for now; scheduled for removal).

  92. matrix_synapse_known_worker_types: |

  93.   {{

  94.     (

  95.       matrix_synapse_workers_avail_list

  96.       +

  97.       ['stream_writer']

  98.       +

  99.       ['appservice']

  100.       +

  101.       ['user_dir']

  102.       +

  103.       ['background']

  104.     ) | unique

  105.   }}

  106. 

  107. # matrix_synapse_known_instance_map_eligible_worker_types contains the list of worker types that are to be injected into `matrix_synapse_instance_map`.

  108. matrix_synapse_known_instance_map_eligible_worker_types:

  109.   - stream_writer

  110. 

  111. # The following section contains content that had previously been generated by a script (`workers-doc-to-yaml.awk`) processing https://github.com/matrix-org/synapse/raw/master/docs/workers.md,

  112. # but is now maintained manually due to:

  113. # - the script being tripped up by the content and generating somewhat inaccurate definitions, which had to be fixed up manually.

  114. # - the script being complicated and unmaintainable

  115. ### workers:start

  116. matrix_synapse_workers_generic_worker_endpoints:

  117.   # Sync requests

  118.   - ^/_matrix/client/(r0|v3)/sync$

  119.   - ^/_matrix/client/(api/v1|r0|v3)/events$

  120.   - ^/_matrix/client/(api/v1|r0|v3)/initialSync$

  121.   - ^/_matrix/client/(api/v1|r0|v3)/rooms/[^/]+/initialSync$

  122. 

  123.   # Federation requests

  124.   - ^/_matrix/federation/v1/event/

  125.   - ^/_matrix/federation/v1/state/

  126.   - ^/_matrix/federation/v1/state_ids/

  127.   - ^/_matrix/federation/v1/backfill/

  128.   - ^/_matrix/federation/v1/get_missing_events/

  129.   - ^/_matrix/federation/v1/publicRooms

  130.   - ^/_matrix/federation/v1/query/

  131.   - ^/_matrix/federation/v1/make_join/

  132.   - ^/_matrix/federation/v1/make_leave/

  133.   - ^/_matrix/federation/(v1|v2)/send_join/

  134.   - ^/_matrix/federation/(v1|v2)/send_leave/

  135.   - ^/_matrix/federation/(v1|v2)/invite/

  136.   - ^/_matrix/federation/v1/event_auth/

  137.   - ^/_matrix/federation/v1/timestamp_to_event/

  138.   - ^/_matrix/federation/v1/exchange_third_party_invite/

  139.   - ^/_matrix/federation/v1/user/devices/

  140.   - ^/_matrix/key/v2/query

  141.   - ^/_matrix/federation/v1/hierarchy/

  142. 

  143.   # Inbound federation transaction request

  144.   - ^/_matrix/federation/v1/send/

  145. 

  146.   # Client API requests

  147.   - ^/_matrix/client/(api/v1|r0|v3|unstable)/createRoom$

  148.   - ^/_matrix/client/(api/v1|r0|v3|unstable)/publicRooms$

  149.   - ^/_matrix/client/(api/v1|r0|v3|unstable)/rooms/.*/joined_members$

  150.   - ^/_matrix/client/(api/v1|r0|v3|unstable)/rooms/.*/context/.*$

  151.   - ^/_matrix/client/(api/v1|r0|v3|unstable)/rooms/.*/members$

  152.   - ^/_matrix/client/(api/v1|r0|v3|unstable)/rooms/.*/state$

  153.   - ^/_matrix/client/v1/rooms/.*/hierarchy$

  154.   - ^/_matrix/client/(v1|unstable)/rooms/.*/relations/

  155.   - ^/_matrix/client/v1/rooms/.*/threads$

  156.   - ^/_matrix/client/unstable/org.matrix.msc2716/rooms/.*/batch_send$

  157.   - ^/_matrix/client/unstable/im.nheko.summary/rooms/.*/summary$

  158.   - ^/_matrix/client/(r0|v3|unstable)/account/3pid$

  159.   - ^/_matrix/client/(r0|v3|unstable)/account/whoami$

  160.   - ^/_matrix/client/(r0|v3|unstable)/devices$

  161.   - ^/_matrix/client/versions$

  162.   - ^/_matrix/client/(api/v1|r0|v3|unstable)/voip/turnServer$

  163.   - ^/_matrix/client/(api/v1|r0|v3|unstable)/rooms/.*/event/

  164.   - ^/_matrix/client/(api/v1|r0|v3|unstable)/joined_rooms$

  165.   - ^/_matrix/client/v1/rooms/.*/timestamp_to_event$

  166.   - ^/_matrix/client/(api/v1|r0|v3|unstable)/search$

  167. 

  168.   # Encryption requests

  169.   # Note that ^/_matrix/client/(r0|v3|unstable)/keys/upload/ requires `worker_main_http_uri`

  170.   - ^/_matrix/client/(r0|v3|unstable)/keys/query$

  171.   - ^/_matrix/client/(r0|v3|unstable)/keys/changes$

  172.   - ^/_matrix/client/(r0|v3|unstable)/keys/claim$

  173.   - ^/_matrix/client/(r0|v3|unstable)/room_keys/

  174.   - ^/_matrix/client/(r0|v3|unstable)/keys/upload/

  175. 

  176.   # Registration/login requests

  177.   - ^/_matrix/client/(api/v1|r0|v3|unstable)/login$

  178.   - ^/_matrix/client/(r0|v3|unstable)/register$

  179.   - ^/_matrix/client/v1/register/m.login.registration_token/validity$

  180. 

  181.   # Event sending requests

  182.   - ^/_matrix/client/(api/v1|r0|v3|unstable)/rooms/.*/redact

  183.   - ^/_matrix/client/(api/v1|r0|v3|unstable)/rooms/.*/send

  184.   - ^/_matrix/client/(api/v1|r0|v3|unstable)/rooms/.*/state/

  185.   - ^/_matrix/client/(api/v1|r0|v3|unstable)/rooms/.*/(join|invite|leave|ban|unban|kick)$

  186.   - ^/_matrix/client/(api/v1|r0|v3|unstable)/join/

  187.   - ^/_matrix/client/(api/v1|r0|v3|unstable)/profile/

  188. 

  189.   # Start of intentionally-ignored-endpoints

  190.   #

  191.   # We ignore these below, because they're better sent to dedicated workers (various stream writers).

  192.   # If a stream writer is enabled, the endpoint should be routed to the stream writer, not to a generic worker.

  193.   # If a stream writer of a given type is not enabled, then a generic worker may process it.

  194.   # Because it's difficult to handle these individually based on which stream writer is enabled and which isn't,

  195.   # we just disable them here.

  196.   #

  197.   # # Account data requests

  198.   # - ^/_matrix/client/(r0|v3|unstable)/.*/tags

  199.   # - ^/_matrix/client/(r0|v3|unstable)/.*/account_data

  200.   #

  201.   # # Receipts requests

  202.   # - ^/_matrix/client/(r0|v3|unstable)/rooms/.*/receipt

  203.   # - ^/_matrix/client/(r0|v3|unstable)/rooms/.*/read_markers

  204.   #

  205.   # # Presence requests

  206.   # - ^/_matrix/client/(api/v1|r0|v3|unstable)/presence/

  207.   #

  208.   # # User directory search requests

  209.   # - ^/_matrix/client/(r0|v3|unstable)/user_directory/search$

  210.   # End of intentionally-ignored-endpoints

  211. 

  212. 

  213. matrix_synapse_workers_media_repository_endpoints:

  214.   # Handles the media repository. It can handle all endpoints starting with:

  215. 

  216.   - ^/_matrix/media/

  217. 

  218.   # ... and the following regular expressions matching media-specific administration APIs:

  219. 

  220.   - ^/_synapse/admin/v1/purge_media_cache$

  221.   - ^/_synapse/admin/v1/room/.*/media.*$

  222.   - ^/_synapse/admin/v1/user/.*/media.*$

  223.   - ^/_synapse/admin/v1/media/.*$

  224.   - ^/_synapse/admin/v1/quarantine_media/.*$

  225.   - ^/_synapse/admin/v1/users/.*/media$

  226. 

  227. matrix_synapse_workers_user_dir_endpoints:

  228.   # Handles searches in the user directory. It can handle REST endpoints matching

  229.   # the following regular expressions:

  230. 

  231.   - ^/_matrix/client/(r0|v3|unstable)/user_directory/search$

  232. 

  233. matrix_synapse_workers_avail_list:

  234.   - appservice

  235.   - federation_sender

  236.   - generic_worker

  237.   - media_repository

  238.   - pusher

  239.   - user_dir

  240. ### workers:end