overmind
/
matrix-docker-ansible-deploy
zrcadlo https://github.com/spantaleev/matrix-docker-ansible-deploy
1
0
Rozštěpit 0
Zdrojový kód Úkoly 0 Vydání 0 Wiki Aktivita
Matrix Docker Ansible eploy
Nelze vybrat více než 25 témat Téma musí začínat písmenem nebo číslem, může obsahovat pomlčky („-“) a může být dlouhé až 35 znaků.
2406 Revize
12 Větve
900 MiB
 
 
Strom: d33483b8ce
Větve Značky
${ item.name }
Vytvořit větev ${ searchTerm }
z „d33483b8ce“
${ noResults }
matrix-docker-ansible-deploy/roles/matrix-synapse/vars/workers.yml

310 řádky
12 KiB
Surový Blame Historie 

  1. ---

  2. 

  3. matrix_synapse_workers_generic_worker_endpoints:

  4.   # This worker can handle API requests matching the following regular

  5.   # expressions:

  6. 

  7.   # Sync requests

  8.   - ^/_matrix/client/(v2_alpha|r0)/sync$

  9.   - ^/_matrix/client/(api/v1|v2_alpha|r0)/events$

  10.   - ^/_matrix/client/(api/v1|r0)/initialSync$

  11.   - ^/_matrix/client/(api/v1|r0)/rooms/[^/]+/initialSync$

  12. 

  13.   # Federation requests

  14.   - ^/_matrix/federation/v1/event/

  15.   - ^/_matrix/federation/v1/state/

  16.   - ^/_matrix/federation/v1/state_ids/

  17.   - ^/_matrix/federation/v1/backfill/

  18.   - ^/_matrix/federation/v1/get_missing_events/

  19.   - ^/_matrix/federation/v1/publicRooms

  20.   - ^/_matrix/federation/v1/query/

  21.   - ^/_matrix/federation/v1/make_join/

  22.   - ^/_matrix/federation/v1/make_leave/

  23.   - ^/_matrix/federation/v1/send_join/

  24.   - ^/_matrix/federation/v2/send_join/

  25.   - ^/_matrix/federation/v1/send_leave/

  26.   - ^/_matrix/federation/v2/send_leave/

  27.   - ^/_matrix/federation/v1/invite/

  28.   - ^/_matrix/federation/v2/invite/

  29.   - ^/_matrix/federation/v1/query_auth/

  30.   - ^/_matrix/federation/v1/event_auth/

  31.   - ^/_matrix/federation/v1/exchange_third_party_invite/

  32.   - ^/_matrix/federation/v1/user/devices/

  33.   - ^/_matrix/federation/v1/get_groups_publicised$

  34.   - ^/_matrix/key/v2/query

  35. 

  36.   # Inbound federation transaction request

  37.   - ^/_matrix/federation/v1/send/

  38. 

  39.   # Client API requests

  40.   - ^/_matrix/client/(api/v1|r0|unstable)/publicRooms$

  41.   - ^/_matrix/client/(api/v1|r0|unstable)/rooms/.*/joined_members$

  42.   - ^/_matrix/client/(api/v1|r0|unstable)/rooms/.*/context/.*$

  43.   - ^/_matrix/client/(api/v1|r0|unstable)/rooms/.*/members$

  44.   - ^/_matrix/client/(api/v1|r0|unstable)/rooms/.*/state$

  45.   - ^/_matrix/client/(api/v1|r0|unstable)/account/3pid$

  46.   - ^/_matrix/client/(api/v1|r0|unstable)/devices$

  47.   - ^/_matrix/client/(api/v1|r0|unstable)/keys/query$

  48.   - ^/_matrix/client/(api/v1|r0|unstable)/keys/changes$

  49.   - ^/_matrix/client/versions$

  50.   - ^/_matrix/client/(api/v1|r0|unstable)/voip/turnServer$

  51.   - ^/_matrix/client/(api/v1|r0|unstable)/joined_groups$

  52.   - ^/_matrix/client/(api/v1|r0|unstable)/publicised_groups$

  53.   - ^/_matrix/client/(api/v1|r0|unstable)/publicised_groups/

  54.   - ^/_synapse/client/password_reset/email/submit_token$

  55. 

  56.   # Registration/login requests

  57.   - ^/_matrix/client/(api/v1|r0|unstable)/login$

  58.   - ^/_matrix/client/(r0|unstable)/register$

  59.   # FIXME: possible bug with SSO and multiple generic workers

  60.   # see https://github.com/matrix-org/synapse/issues/7530

  61.   # ^/_matrix/client/(r0|unstable)/auth/.*/fallback/web$

  62. 

  63.   # Event sending requests

  64.   - ^/_matrix/client/(api/v1|r0|unstable)/rooms/.*/redact

  65.   - ^/_matrix/client/(api/v1|r0|unstable)/rooms/.*/send

  66.   - ^/_matrix/client/(api/v1|r0|unstable)/rooms/.*/state/

  67.   - ^/_matrix/client/(api/v1|r0|unstable)/rooms/.*/(join|invite|leave|ban|unban|kick)$

  68.   - ^/_matrix/client/(api/v1|r0|unstable)/join/

  69.   - ^/_matrix/client/(api/v1|r0|unstable)/profile/

  70. 

  71. 

  72.   # Additionally, the following REST endpoints can be handled for GET requests:

  73. 

  74.   # FIXME: ADDITIONAL CONDITIONS REQUIRED: to be enabled manually

  75.   # ^/_matrix/federation/v1/groups/

  76. 

  77.   # Pagination requests can also be handled, but all requests for a given

  78.   # room must be routed to the same instance. Additionally, care must be taken to

  79.   # ensure that the purge history admin API is not used while pagination requests

  80.   # for the room are in flight:

  81. 

  82.   # FIXME: ADDITIONAL CONDITIONS REQUIRED: to be enabled manually

  83.   # ^/_matrix/client/(api/v1|r0|unstable)/rooms/.*/messages$

  84. 

  85.   # Additionally, the following endpoints should be included if Synapse is configured

  86.   # to use SSO (you only need to include the ones for whichever SSO provider you're

  87.   # using):

  88. 

  89.   # OpenID Connect requests.

  90.   # FIXME: ADDITIONAL CONDITIONS REQUIRED: to be enabled manually

  91.   # ^/_matrix/client/(api/v1|r0|unstable)/login/sso/redirect$

  92.   # ^/_synapse/oidc/callback$

  93. 

  94.   # SAML requests.

  95.   # FIXME: ADDITIONAL CONDITIONS REQUIRED: to be enabled manually

  96.   # ^/_matrix/client/(api/v1|r0|unstable)/login/sso/redirect$

  97.   # ^/_matrix/saml2/authn_response$

  98. 

  99.   # CAS requests.

  100.   # FIXME: ADDITIONAL CONDITIONS REQUIRED: to be enabled manually

  101.   # ^/_matrix/client/(api/v1|r0|unstable)/login/(cas|sso)/redirect$

  102.   # ^/_matrix/client/(api/v1|r0|unstable)/login/cas/ticket$

  103. 

  104.   # Note that a HTTP listener with `client` and `federation` resources must be

  105.   # configured in the `worker_listeners` option in the worker config.

  106. 

  107.   # Ensure that all SSO logins go to a single process (usually the main process). 

  108.   # For multiple workers not handling the SSO endpoints properly, see

  109.   # [#7530](https://github.com/matrix-org/synapse/issues/7530).

  110. 

  111.   # #### Load balancing

  112. 

  113.   # It is possible to run multiple instances of this worker app, with incoming requests

  114.   # being load-balanced between them by the reverse-proxy. However, different endpoints

  115.   # have different characteristics and so admins

  116.   # may wish to run multiple groups of workers handling different endpoints so that

  117.   # load balancing can be done in different ways.

  118. 

  119.   # For `/sync` and `/initialSync` requests it will be more efficient if all

  120.   # requests from a particular user are routed to a single instance. Extracting a

  121.   # user ID from the access token or `Authorization` header is currently left as an

  122.   # exercise for the reader. Admins may additionally wish to separate out `/sync`

  123.   # requests that have a `since` query parameter from those that don't (and

  124.   # `/initialSync`), as requests that don't are known as "initial sync" that happens

  125.   # when a user logs in on a new device and can be *very* resource intensive, so

  126.   # isolating these requests will stop them from interfering with other users ongoing

  127.   # syncs.

  128. 

  129.   # Federation and client requests can be balanced via simple round robin.

  130. 

  131.   # The inbound federation transaction request `^/_matrix/federation/v1/send/`

  132.   # should be balanced by source IP so that transactions from the same remote server

  133.   # go to the same process.

  134. 

  135.   # Registration/login requests can be handled separately purely to help ensure that

  136.   # unexpected load doesn't affect new logins and sign ups.

  137. 

  138.   # Finally, event sending requests can be balanced by the room ID in the URI (or

  139.   # the full URI, or even just round robin), the room ID is the path component after

  140.   # `/rooms/`. If there is a large bridge connected that is sending or may send lots

  141.   # of events, then a dedicated set of workers can be provisioned to limit the

  142.   # effects of bursts of events from that bridge on events sent by normal users.

  143. 

  144.   # #### Stream writers

  145. 

  146.   # Additionally, there is *experimental* support for moving writing of specific

  147.   # streams (such as events) off of the main process to a particular worker. (This

  148.   # is only supported with Redis-based replication.)

  149. 

  150.   # Currently supported streams are `events` and `typing`.

  151. 

  152.   # To enable this, the worker must have a HTTP replication listener configured,

  153.   # have a `worker_name` and be listed in the `instance_map` config. For example to

  154.   # move event persistence off to a dedicated worker, the shared configuration would

  155.   # include:

  156. 

  157.   # ```yaml

  158.   # instance_map:

  159.   #     event_persister1:

  160.   #         host: localhost

  161.   #         port: 8034

  162. 

  163.   # stream_writers:

  164.   #     events: event_persister1

  165.   # ```

  166. 

  167.   # The `events` stream also experimentally supports having multiple writers, where

  168.   # work is sharded between them by room ID. Note that you *must* restart all worker

  169.   # instances when adding or removing event persisters. An example `stream_writers`

  170.   # configuration with multiple writers:

  171. 

  172.   # ```yaml

  173.   # stream_writers:

  174.   #     events:

  175.   #         - event_persister1

  176.   #         - event_persister2

  177.   # ```

  178. 

  179.   # #### Background tasks

  180. 

  181.   # There is also *experimental* support for moving background tasks to a separate

  182.   # worker. Background tasks are run periodically or started via replication. Exactly

  183.   # which tasks are configured to run depends on your Synapse configuration (e.g. if

  184.   # stats is enabled).

  185. 

  186.   # To enable this, the worker must have a `worker_name` and can be configured to run

  187.   # background tasks. For example, to move background tasks to a dedicated worker,

  188.   # the shared configuration would include:

  189. 

  190.   # ```yaml

  191.   # run_background_tasks_on: background_worker

  192.   # ```

  193. 

  194.   # You might also wish to investigate the `update_user_directory` and

  195.   # `media_instance_running_background_jobs` settings.

  196. 

  197. # pusher worker (no API endpoints) [

  198.   # Handles sending push notifications to sygnal and email. Doesn't handle any

  199.   # REST endpoints itself, but you should set `start_pushers: False` in the

  200.   # shared configuration file to stop the main synapse sending push notifications.

  201. 

  202.   # Note this worker cannot be load-balanced: only one instance should be active.

  203. # ]

  204. 

  205. # appservice worker (no API endpoints) [

  206.   # Handles sending output traffic to Application Services. Doesn't handle any

  207.   # REST endpoints itself, but you should set `notify_appservices: False` in the

  208.   # shared configuration file to stop the main synapse sending appservice notifications.

  209. 

  210.   # Note this worker cannot be load-balanced: only one instance should be active.

  211. 

  212. # ]

  213. 

  214. # federation_sender worker (no API endpoints) [

  215.   # Handles sending federation traffic to other servers. Doesn't handle any

  216.   # REST endpoints itself, but you should set `send_federation: False` in the

  217.   # shared configuration file to stop the main synapse sending this traffic.

  218. 

  219.   # If running multiple federation senders then you must list each

  220.   # instance in the `federation_sender_instances` option by their `worker_name`.

  221.   # All instances must be stopped and started when adding or removing instances.

  222.   # For example:

  223. 

  224.   # ```yaml

  225.   # federation_sender_instances:

  226.   #     - federation_sender1

  227.   #     - federation_sender2

  228.   # ```

  229. # ]

  230. 

  231. matrix_synapse_workers_media_repository_endpoints:

  232.   # Handles the media repository. It can handle all endpoints starting with:

  233. 

  234.   - ^/_matrix/media/

  235. 

  236.   # ... and the following regular expressions matching media-specific administration APIs:

  237. 

  238.   - ^/_synapse/admin/v1/purge_media_cache$

  239.   - ^/_synapse/admin/v1/room/.*/media.*$

  240.   - ^/_synapse/admin/v1/user/.*/media.*$

  241.   - ^/_synapse/admin/v1/media/.*$

  242.   - ^/_synapse/admin/v1/quarantine_media/.*$

  243. 

  244.   # You should also set `enable_media_repo: False` in the shared configuration

  245.   # file to stop the main synapse running background jobs related to managing the

  246.   # media repository.

  247. 

  248.   # In the `media_repository` worker configuration file, configure the http listener to

  249.   # expose the `media` resource. For example:

  250. 

  251.   # ```yaml

  252.   #     worker_listeners:

  253.   #      - type: http

  254.   #        port: 8085

  255.   #        resources:

  256.   #          - names:

  257.   #            - media

  258.   # ```

  259. 

  260.   # Note that if running multiple media repositories they must be on the same server

  261.   # and you must configure a single instance to run the background tasks, e.g.:

  262. 

  263.   # ```yaml

  264.   #     media_instance_running_background_jobs: "media-repository-1"

  265.   # ```

  266. 

  267.   # Note that if a reverse proxy is used , then `/_matrix/media/` must be routed for both inbound client and federation requests (if they are handled separately).

  268. 

  269. matrix_synapse_workers_user_dir_endpoints:

  270.   # Handles searches in the user directory. It can handle REST endpoints matching

  271.   # the following regular expressions:

  272. 

  273.   - ^/_matrix/client/(api/v1|r0|unstable)/user_directory/search$

  274. 

  275.   # When using this worker you must also set `update_user_directory: False` in the

  276.   # shared configuration file to stop the main synapse running background

  277.   # jobs related to updating the user directory.

  278. 

  279. matrix_synapse_workers_frontend_proxy_endpoints:

  280.   # Proxies some frequently-requested client endpoints to add caching and remove

  281.   # load from the main synapse. It can handle REST endpoints matching the following

  282.   # regular expressions:

  283. 

  284.   - ^/_matrix/client/(api/v1|r0|unstable)/keys/upload

  285. 

  286.   # If `use_presence` is False in the homeserver config, it can also handle REST

  287.   # endpoints matching the following regular expressions:

  288. 

  289.   # FIXME: ADDITIONAL CONDITIONS REQUIRED: to be enabled manually

  290.   # ^/_matrix/client/(api/v1|r0|unstable)/presence/[^/]+/status

  291. 

  292.   # This "stub" presence handler will pass through `GET` request but make the

  293.   # `PUT` effectively a no-op.

  294. 

  295.   # It will proxy any requests it cannot handle to the main synapse instance. It

  296.   # must therefore be configured with the location of the main instance, via

  297.   # the `worker_main_http_uri` setting in the `frontend_proxy` worker configuration

  298.   # file. For example:

  299. 

  300.   #     worker_main_http_uri: http://127.0.0.1:8008

  301. 

  302. matrix_synapse_workers_avail_list:

  303.   - appservice

  304.   - federation_sender

  305.   - frontend_proxy

  306.   - generic_worker

  307.   - media_repository

  308.   - pusher

  309.   - user_dir