overmind
/
matrix-docker-ansible-deploy
kopia lustrzana https://github.com/spantaleev/matrix-docker-ansible-deploy
1
0
Forkuj 0
Kod Zgłoszenia 0 Wydania 0 Wiki Aktywność
Matrix Docker Ansible eploy
Nie możesz wybrać więcej, niż 25 tematów Tematy muszą się zaczynać od litery lub cyfry, mogą zawierać myślniki ('-') i mogą mieć do 35 znaków.
4139 Commity
12 Gałęzie
1.2 GiB
 
 
Drzewo: 6abdb6e6f0
Gałęzie Tagi
${ item.name }
Utwórz gałąź ${ searchTerm }
z '6abdb6e6f0'
${ noResults }
matrix-docker-ansible-deploy/roles/matrix-nginx-proxy/templates/nginx/conf.d/matrix-synapse.conf.j2

273 wiersze
9.9 KiB
Czysty Wina Historia 

  1. #jinja2: lstrip_blocks: "True"

  2. 

  3. {% set generic_workers = matrix_nginx_proxy_synapse_workers_list|selectattr('type', 'equalto', 'generic_worker')|list %}

  4. {% set media_repository_workers = matrix_nginx_proxy_synapse_workers_list|selectattr('type', 'equalto', 'media_repository')|list %}

  5. {% set user_dir_workers = matrix_nginx_proxy_synapse_workers_list|selectattr('type', 'equalto', 'user_dir')|list %}

  6. {% set frontend_proxy_workers = matrix_nginx_proxy_synapse_workers_list|selectattr('type', 'equalto', 'frontend_proxy')|list %}

  7. {% if matrix_nginx_proxy_synapse_workers_enabled %}

  8. 	{% if matrix_nginx_proxy_synapse_cache_enabled %}

  9.     	proxy_cache_path  {{ matrix_nginx_proxy_synapse_cache_path }} levels=1:2 keys_zone={{ matrix_nginx_proxy_synapse_cache_keys_zone_name }}:{{ matrix_nginx_proxy_synapse_cache_keys_zone_size }} inactive={{ matrix_nginx_proxy_synapse_cache_inactive_time }} max_size={{ matrix_nginx_proxy_synapse_cache_max_size_mb }}m;

  10. 	{% endif %}

  11. 	# Round Robin "upstream" pools for workers

  12. 

  13. 	{% if generic_workers %}

  14. 	upstream generic_worker_upstream {

  15. 		# ensures that requests from the same client will always be passed

  16. 		# to the same server (except when this server is unavailable)

  17. 		hash $http_x_forwarded_for;

  18. 

  19. 		{% for worker in generic_workers %}

  20. 			{% if matrix_nginx_proxy_enabled %}

  21. 				server "matrix-synapse-worker-{{ worker.type }}-{{ worker.instanceId }}:{{ worker.port }}";

  22. 			{% else %}

  23. 				server "127.0.0.1:{{ worker.port }}";

  24. 			{% endif %}

  25. 		{% endfor %}

  26. 	}

  27. 	{% endif %}

  28. 

  29. 	{% if frontend_proxy_workers %}

  30. 	upstream frontend_proxy_upstream {

  31. 		{% for worker in frontend_proxy_workers %}

  32. 			{% if matrix_nginx_proxy_enabled %}

  33. 				server "matrix-synapse-worker-{{ worker.type }}-{{ worker.instanceId }}:{{ worker.port }}";

  34. 			{% else %}

  35. 				server "127.0.0.1:{{ worker.port }}";

  36. 			{% endif %}

  37. 		{% endfor %}

  38. 	}

  39. 	{% endif %}

  40. 

  41. 	{% if media_repository_workers %}

  42. 	upstream media_repository_upstream {

  43. 		{% for worker in media_repository_workers %}

  44. 			{% if matrix_nginx_proxy_enabled %}

  45. 				server "matrix-synapse-worker-{{ worker.type }}-{{ worker.instanceId }}:{{ worker.port }}";

  46. 			{% else %}

  47. 				server "127.0.0.1:{{ worker.port }}";

  48. 			{% endif %}

  49. 		{% endfor %}

  50. 	}

  51. 	{% endif %}

  52. 

  53. 	{% if user_dir_workers %}

  54. 	upstream user_dir_upstream {

  55. 		{% for worker in user_dir_workers %}

  56. 			{% if matrix_nginx_proxy_enabled %}

  57. 				server "matrix-synapse-worker-{{ worker.type }}-{{ worker.instanceId }}:{{ worker.port }}";

  58. 			{% else %}

  59. 				server "127.0.0.1:{{ worker.port }}";

  60. 			{% endif %}

  61. 		{% endfor %}

  62. 	}

  63. 	{% endif %}

  64. {% endif %}

  65. 

  66. server {

  67. 	listen 12080;

  68. 	{% if matrix_nginx_proxy_enabled %}

  69. 		server_name {{ matrix_nginx_proxy_proxy_synapse_hostname }};

  70. 	{% endif %}

  71. 

  72. 	server_tokens off;

  73. 	root /dev/null;

  74. 

  75. 	gzip on;

  76. 	gzip_types text/plain application/json;

  77. 

  78. 	{% if matrix_nginx_proxy_synapse_workers_enabled %}

  79. 		{# Workers redirects BEGIN #}

  80. 

  81. 		{% if generic_workers %}

  82. 			# https://github.com/matrix-org/synapse/blob/master/docs/workers.md#synapseappgeneric_worker

  83. 			{% for location in matrix_nginx_proxy_synapse_generic_worker_client_server_locations %}

  84. 			location ~ {{ location }} {

  85. 				proxy_pass http://generic_worker_upstream$request_uri;

  86. 				proxy_set_header Host $host;

  87. 			}

  88. 			{% endfor %}

  89. 		{% endif %}

  90. 

  91. 		{% if media_repository_workers %}

  92. 			# https://github.com/matrix-org/synapse/blob/master/docs/workers.md#synapseappmedia_repository

  93. 			{% for location in matrix_nginx_proxy_synapse_media_repository_locations %}

  94. 			location ~ {{ location }} {

  95. 				proxy_pass http://media_repository_upstream$request_uri;

  96. 				proxy_set_header Host $host;

  97. 

  98. 				client_body_buffer_size 25M;

  99. 				client_max_body_size {{ matrix_nginx_proxy_proxy_matrix_client_api_client_max_body_size_mb }}M;

  100. 				proxy_max_temp_file_size 0;

  101. 

  102. 				{% if matrix_nginx_proxy_synapse_cache_enabled %}

  103. 					proxy_buffering        on;

  104. 					proxy_cache            {{ matrix_nginx_proxy_synapse_cache_keys_zone_name }};

  105. 					proxy_cache_valid      any  {{ matrix_nginx_proxy_synapse_cache_proxy_cache_valid_time }};

  106. 					proxy_force_ranges on;

  107. 					add_header X-Cache-Status $upstream_cache_status;

  108. 				{% endif %}

  109. 			}

  110. 			{% endfor %}

  111. 		{% endif %}

  112. 

  113. 		{% if user_dir_workers %}

  114. 			# FIXME: obsolete if matrix_nginx_proxy_proxy_matrix_user_directory_search_enabled is set

  115. 			# https://github.com/matrix-org/synapse/blob/master/docs/workers.md#synapseappuser_dir

  116. 			{% for location in matrix_nginx_proxy_synapse_user_dir_locations %}

  117. 			location ~ {{ location }} {

  118. 				proxy_pass http://user_dir_upstream$request_uri;

  119. 				proxy_set_header Host $host;

  120. 			}

  121. 			{% endfor %}

  122. 		{% endif %}

  123. 

  124. 		{% if frontend_proxy_workers %}

  125. 			# https://github.com/matrix-org/synapse/blob/master/docs/workers.md#synapseappfrontend_proxy

  126. 			{% for location in matrix_nginx_proxy_synapse_frontend_proxy_locations %}

  127. 			location ~ {{ location }} {

  128. 				proxy_pass http://frontend_proxy_upstream$request_uri;

  129. 				proxy_set_header Host $host;

  130. 			}

  131. 			{% endfor %}

  132. 			{% if matrix_nginx_proxy_synapse_presence_disabled %}

  133. 			# FIXME: keep in sync with synapse workers documentation manually

  134. 			location ~ ^/_matrix/client/(api/v1|r0|v3|unstable)/presence/[^/]+/status {

  135. 				proxy_pass http://frontend_proxy_upstream$request_uri;

  136. 				proxy_set_header Host $host;

  137. 			}

  138. 			{% endif %}

  139. 		{% endif %}

  140. 		{# Workers redirects END #}

  141. 	{% endif %}

  142. 

  143. 

  144. 	{% for configuration_block in matrix_nginx_proxy_proxy_synapse_additional_server_configuration_blocks %}

  145. 		{{- configuration_block }}

  146. 	{% endfor %}

  147. 

  148. 	{% if matrix_nginx_proxy_proxy_synapse_metrics %}

  149. 	location /_synapse/metrics {

  150. 		{% if matrix_nginx_proxy_enabled %}

  151. 			{# Use the embedded DNS resolver in Docker containers to discover the service #}

  152. 			resolver 127.0.0.11 valid=5s;

  153. 			set $backend "{{ matrix_nginx_proxy_proxy_synapse_metrics_addr_with_container }}";

  154. 			proxy_pass http://$backend;

  155. 		{% else %}

  156. 			{# Generic configuration for use outside of our container setup #}

  157. 			proxy_pass http://{{ matrix_nginx_proxy_proxy_synapse_metrics_addr_sans_container }};

  158. 		{% endif %}

  159. 

  160. 		proxy_set_header Host $host;

  161. 

  162. 		{% if matrix_nginx_proxy_proxy_synapse_metrics_basic_auth_enabled %}

  163. 			auth_basic "protected";

  164. 			auth_basic_user_file {{ matrix_nginx_proxy_proxy_synapse_metrics_basic_auth_path }};

  165. 		{% endif %}

  166. 	}

  167. 	{% endif %}

  168. 

  169. 	{% if matrix_nginx_proxy_enabled and matrix_nginx_proxy_proxy_synapse_metrics %}

  170. 		{% for worker in matrix_nginx_proxy_proxy_synapse_workers_enabled_list %}

  171. 			{% if worker.metrics_port != 0 %}

  172. 				location /_synapse-worker-{{ worker.type }}-{{ worker.instanceId }}/metrics {

  173. 					resolver 127.0.0.11 valid=5s;

  174. 					set $backend "matrix-synapse-worker-{{ worker.type }}-{{ worker.instanceId }}:{{ worker.metrics_port }}";

  175. 					proxy_pass http://$backend/_synapse/metrics;

  176. 					proxy_set_header Host $host;

  177. 

  178. 					{% if matrix_nginx_proxy_proxy_synapse_metrics_basic_auth_enabled %}

  179. 						auth_basic "protected";

  180. 						auth_basic_user_file {{ matrix_nginx_proxy_proxy_synapse_metrics_basic_auth_path }};

  181. 					{% endif %}

  182. 				}

  183. 			{% endif %}

  184. 		{% endfor %}

  185. 	{% endif %}

  186. 

  187. 	{# Everything else just goes to the API server ##}

  188. 	location / {

  189. 		{% if matrix_nginx_proxy_enabled %}

  190. 			{# Use the embedded DNS resolver in Docker containers to discover the service #}

  191. 			resolver 127.0.0.11 valid=5s;

  192. 			set $backend "{{ matrix_nginx_proxy_proxy_synapse_client_api_addr_with_container }}";

  193. 			proxy_pass http://$backend;

  194. 		{% else %}

  195. 			{# Generic configuration for use outside of our container setup #}

  196. 			proxy_pass http://{{ matrix_nginx_proxy_proxy_synapse_client_api_addr_sans_container }};

  197. 		{% endif %}

  198. 

  199. 		proxy_set_header Host $host;

  200. 

  201. 		client_body_buffer_size 25M;

  202. 		client_max_body_size {{ matrix_nginx_proxy_proxy_matrix_client_api_client_max_body_size_mb }}M;

  203. 		proxy_max_temp_file_size 0;

  204. 	}

  205. }

  206. 

  207. {% if matrix_nginx_proxy_proxy_synapse_federation_api_enabled %}

  208. server {

  209. 	listen 12088;

  210. 	{% if matrix_nginx_proxy_enabled %}

  211. 		server_name {{ matrix_nginx_proxy_proxy_synapse_hostname }};

  212. 	{% endif %}

  213. 

  214. 	server_tokens off;

  215. 

  216. 	root /dev/null;

  217. 

  218. 	gzip on;

  219. 	gzip_types text/plain application/json;

  220. 

  221. 	{% if matrix_nginx_proxy_synapse_workers_enabled %}

  222. 		{% if generic_workers %}

  223. 			# https://github.com/matrix-org/synapse/blob/master/docs/workers.md#synapseappgeneric_worker

  224. 			{% for location in matrix_nginx_proxy_synapse_generic_worker_federation_locations %}

  225. 			location ~ {{ location }} {

  226. 				proxy_pass http://generic_worker_upstream$request_uri;

  227. 				proxy_set_header Host $host;

  228. 			}

  229. 			{% endfor %}

  230. 		{% endif %}

  231. 		{% if media_repository_workers %}

  232. 			# https://github.com/matrix-org/synapse/blob/master/docs/workers.md#synapseappmedia_repository

  233. 			{% for location in matrix_nginx_proxy_synapse_media_repository_locations %}

  234. 			location ~ {{ location }} {

  235. 				proxy_pass http://media_repository_upstream$request_uri;

  236. 				proxy_set_header Host $host;

  237. 

  238. 				client_body_buffer_size 25M;

  239. 				client_max_body_size {{ matrix_nginx_proxy_proxy_matrix_federation_api_client_max_body_size_mb }}M;

  240. 				proxy_max_temp_file_size 0;

  241. 

  242. 				{% if matrix_nginx_proxy_synapse_cache_enabled %}

  243. 					proxy_buffering        on;

  244. 					proxy_cache            {{ matrix_nginx_proxy_synapse_cache_keys_zone_name }};

  245. 					proxy_cache_valid      any  {{ matrix_nginx_proxy_synapse_cache_proxy_cache_valid_time }};

  246. 					proxy_force_ranges on;

  247. 					add_header X-Cache-Status $upstream_cache_status;

  248. 				{% endif %}

  249. 			}

  250. 			{% endfor %}

  251. 		{% endif %}

  252. 	{% endif %}

  253. 

  254. 	location / {

  255. 		{% if matrix_nginx_proxy_enabled %}

  256. 			{# Use the embedded DNS resolver in Docker containers to discover the service #}

  257. 			resolver 127.0.0.11 valid=5s;

  258. 			set $backend "{{ matrix_nginx_proxy_proxy_synapse_federation_api_addr_with_container }}";

  259. 			proxy_pass http://$backend;

  260. 		{% else %}

  261. 			{# Generic configuration for use outside of our container setup #}

  262. 			proxy_pass http://{{ matrix_nginx_proxy_proxy_synapse_federation_api_addr_sans_container }};

  263. 		{% endif %}

  264. 

  265. 		proxy_set_header Host $host;

  266. 

  267. 		client_body_buffer_size 25M;

  268. 		client_max_body_size {{ matrix_nginx_proxy_proxy_matrix_federation_api_client_max_body_size_mb }}M;

  269. 		proxy_max_temp_file_size 0;

  270. 	}

  271. }

  272. {% endif %}