overmind
/
matrix-docker-ansible-deploy
kopia lustrzana https://github.com/spantaleev/matrix-docker-ansible-deploy
1
0
Forkuj 0
Kod Zgłoszenia 0 Wydania 0 Wiki Aktywność
Matrix Docker Ansible eploy
Nie możesz wybrać więcej, niż 25 tematów Tematy muszą się zaczynać od litery lub cyfry, mogą zawierać myślniki ('-') i mogą mieć do 35 znaków.
4032 Commity
12 Gałęzie
644 MiB
 
 
Drzewo: da31eecdb7
Gałęzie Tagi
${ item.name }
Utwórz gałąź ${ searchTerm }
z 'da31eecdb7'
${ noResults }
matrix-docker-ansible-deploy/roles/matrix-nginx-proxy/templates/nginx/conf.d/matrix-synapse.conf.j2

254 wiersze
8.7 KiB
Czysty Wina Historia 

  1. #jinja2: lstrip_blocks: "True"

  2. 

  3. {% set generic_workers = matrix_nginx_proxy_synapse_workers_list|selectattr('type', 'equalto', 'generic_worker')|list %}

  4. {% set media_repository_workers = matrix_nginx_proxy_synapse_workers_list|selectattr('type', 'equalto', 'media_repository')|list %}

  5. {% set user_dir_workers = matrix_nginx_proxy_synapse_workers_list|selectattr('type', 'equalto', 'user_dir')|list %}

  6. {% set frontend_proxy_workers = matrix_nginx_proxy_synapse_workers_list|selectattr('type', 'equalto', 'frontend_proxy')|list %}

  7. {% if matrix_nginx_proxy_synapse_workers_enabled %}

  8. 	# Round Robin "upstream" pools for workers

  9. 

  10. 	{% if generic_workers %}

  11. 	upstream generic_worker_upstream {

  12. 		# ensures that requests from the same client will always be passed

  13. 		# to the same server (except when this server is unavailable)

  14. 		hash $http_x_forwarded_for;

  15. 

  16. 		{% for worker in generic_workers %}

  17. 			{% if matrix_nginx_proxy_enabled %}

  18. 				server "matrix-synapse-worker-{{ worker.type }}-{{ worker.instanceId }}:{{ worker.port }}";

  19. 			{% else %}

  20. 				server "127.0.0.1:{{ worker.port }}";

  21. 			{% endif %}

  22. 		{% endfor %}

  23. 	}

  24. 	{% endif %}

  25. 

  26. 	{% if frontend_proxy_workers %}

  27. 	upstream frontend_proxy_upstream {

  28. 		{% for worker in frontend_proxy_workers %}

  29. 			{% if matrix_nginx_proxy_enabled %}

  30. 				server "matrix-synapse-worker-{{ worker.type }}-{{ worker.instanceId }}:{{ worker.port }}";

  31. 			{% else %}

  32. 				server "127.0.0.1:{{ worker.port }}";

  33. 			{% endif %}

  34. 		{% endfor %}

  35. 	}

  36. 	{% endif %}

  37. 

  38. 	{% if media_repository_workers %}

  39. 	upstream media_repository_upstream {

  40. 		{% for worker in media_repository_workers %}

  41. 			{% if matrix_nginx_proxy_enabled %}

  42. 				server "matrix-synapse-worker-{{ worker.type }}-{{ worker.instanceId }}:{{ worker.port }}";

  43. 			{% else %}

  44. 				server "127.0.0.1:{{ worker.port }}";

  45. 			{% endif %}

  46. 		{% endfor %}

  47. 	}

  48. 	{% endif %}

  49. 

  50. 	{% if user_dir_workers %}

  51. 	upstream user_dir_upstream {

  52. 		{% for worker in user_dir_workers %}

  53. 			{% if matrix_nginx_proxy_enabled %}

  54. 				server "matrix-synapse-worker-{{ worker.type }}-{{ worker.instanceId }}:{{ worker.port }}";

  55. 			{% else %}

  56. 				server "127.0.0.1:{{ worker.port }}";

  57. 			{% endif %}

  58. 		{% endfor %}

  59. 	}

  60. 	{% endif %}

  61. {% endif %}

  62. 

  63. server {

  64. 	listen 12080;

  65. 	{% if matrix_nginx_proxy_enabled %}

  66. 		server_name {{ matrix_nginx_proxy_proxy_synapse_hostname }};

  67. 	{% endif %}

  68. 

  69. 	server_tokens off;

  70. 	root /dev/null;

  71. 

  72. 	gzip on;

  73. 	gzip_types text/plain application/json;

  74. 

  75. 	{% if matrix_nginx_proxy_synapse_workers_enabled %}

  76. 		{# Workers redirects BEGIN #}

  77. 

  78. 		{% if generic_workers %}

  79. 			# https://github.com/matrix-org/synapse/blob/master/docs/workers.md#synapseappgeneric_worker

  80. 			{% for location in matrix_nginx_proxy_synapse_generic_worker_client_server_locations %}

  81. 			location ~ {{ location }} {

  82. 				proxy_pass http://generic_worker_upstream$request_uri;

  83. 				proxy_set_header Host $host;

  84. 			}

  85. 			{% endfor %}

  86. 		{% endif %}

  87. 

  88. 		{% if media_repository_workers %}

  89. 			# https://github.com/matrix-org/synapse/blob/master/docs/workers.md#synapseappmedia_repository

  90. 			{% for location in matrix_nginx_proxy_synapse_media_repository_locations %}

  91. 			location ~ {{ location }} {

  92. 				proxy_pass http://media_repository_upstream$request_uri;

  93. 				proxy_set_header Host $host;

  94. 

  95. 				client_body_buffer_size 25M;

  96. 				client_max_body_size {{ matrix_nginx_proxy_proxy_matrix_client_api_client_max_body_size_mb }}M;

  97. 				proxy_max_temp_file_size 0;

  98. 			}

  99. 			{% endfor %}

  100. 		{% endif %}

  101. 

  102. 		{% if user_dir_workers %}

  103. 			# FIXME: obsolete if matrix_nginx_proxy_proxy_matrix_user_directory_search_enabled is set

  104. 			# https://github.com/matrix-org/synapse/blob/master/docs/workers.md#synapseappuser_dir

  105. 			{% for location in matrix_nginx_proxy_synapse_user_dir_locations %}

  106. 			location ~ {{ location }} {

  107. 				proxy_pass http://user_dir_upstream$request_uri;

  108. 				proxy_set_header Host $host;

  109. 			}

  110. 			{% endfor %}

  111. 		{% endif %}

  112. 

  113. 		{% if frontend_proxy_workers %}

  114. 			# https://github.com/matrix-org/synapse/blob/master/docs/workers.md#synapseappfrontend_proxy

  115. 			{% for location in matrix_nginx_proxy_synapse_frontend_proxy_locations %}

  116. 			location ~ {{ location }} {

  117. 				proxy_pass http://frontend_proxy_upstream$request_uri;

  118. 				proxy_set_header Host $host;

  119. 			}

  120. 			{% endfor %}

  121. 			{% if matrix_nginx_proxy_synapse_presence_disabled %}

  122. 			# FIXME: keep in sync with synapse workers documentation manually

  123. 			location ~ ^/_matrix/client/(api/v1|r0|v3|unstable)/presence/[^/]+/status {

  124. 				proxy_pass http://frontend_proxy_upstream$request_uri;

  125. 				proxy_set_header Host $host;

  126. 			}

  127. 			{% endif %}

  128. 		{% endif %}

  129. 		{# Workers redirects END #}

  130. 	{% endif %}

  131. 

  132. 

  133. 	{% for configuration_block in matrix_nginx_proxy_proxy_synapse_additional_server_configuration_blocks %}

  134. 		{{- configuration_block }}

  135. 	{% endfor %}

  136. 

  137. 	{% if matrix_nginx_proxy_proxy_synapse_metrics %}

  138. 	location /_synapse/metrics {

  139. 		{% if matrix_nginx_proxy_enabled %}

  140. 			{# Use the embedded DNS resolver in Docker containers to discover the service #}

  141. 			resolver 127.0.0.11 valid=5s;

  142. 			set $backend "{{ matrix_nginx_proxy_proxy_synapse_metrics_addr_with_container }}";

  143. 			proxy_pass http://$backend;

  144. 		{% else %}

  145. 			{# Generic configuration for use outside of our container setup #}

  146. 			proxy_pass http://{{ matrix_nginx_proxy_proxy_synapse_metrics_addr_sans_container }};

  147. 		{% endif %}

  148. 

  149. 		proxy_set_header Host $host;

  150. 

  151. 		{% if matrix_nginx_proxy_proxy_synapse_metrics_basic_auth_enabled %}

  152. 			auth_basic "protected";

  153. 			auth_basic_user_file /nginx-data/matrix-synapse-metrics-htpasswd;

  154. 		{% endif %}

  155. 	}

  156. 	{% endif %}

  157. 

  158. 	{% if matrix_nginx_proxy_enabled and matrix_nginx_proxy_proxy_synapse_metrics %}

  159. 		{% for worker in matrix_nginx_proxy_proxy_synapse_workers_enabled_list %}

  160. 			{% if worker.metrics_port != 0 %}

  161. 				location /_synapse-worker-{{ worker.type }}-{{ worker.instanceId }}/metrics {

  162. 					resolver 127.0.0.11 valid=5s;

  163. 					set $backend "matrix-synapse-worker-{{ worker.type }}-{{ worker.instanceId }}:{{ worker.metrics_port }}";

  164. 					proxy_pass http://$backend/_synapse/metrics;

  165. 					proxy_set_header Host $host;

  166. 

  167. 					{% if matrix_nginx_proxy_proxy_synapse_metrics_basic_auth_enabled %}

  168. 						auth_basic "protected";

  169. 						auth_basic_user_file /nginx-data/matrix-synapse-metrics-htpasswd;

  170. 					{% endif %}

  171. 				}

  172. 			{% endif %}

  173. 		{% endfor %}

  174. 	{% endif %}

  175. 

  176. 	{# Everything else just goes to the API server ##}

  177. 	location / {

  178. 		{% if matrix_nginx_proxy_enabled %}

  179. 			{# Use the embedded DNS resolver in Docker containers to discover the service #}

  180. 			resolver 127.0.0.11 valid=5s;

  181. 			set $backend "{{ matrix_nginx_proxy_proxy_synapse_client_api_addr_with_container }}";

  182. 			proxy_pass http://$backend;

  183. 		{% else %}

  184. 			{# Generic configuration for use outside of our container setup #}

  185. 			proxy_pass http://{{ matrix_nginx_proxy_proxy_synapse_client_api_addr_sans_container }};

  186. 		{% endif %}

  187. 

  188. 		proxy_set_header Host $host;

  189. 

  190. 		client_body_buffer_size 25M;

  191. 		client_max_body_size {{ matrix_nginx_proxy_proxy_matrix_client_api_client_max_body_size_mb }}M;

  192. 		proxy_max_temp_file_size 0;

  193. 	}

  194. }

  195. 

  196. {% if matrix_nginx_proxy_proxy_synapse_federation_api_enabled %}

  197. server {

  198. 	listen 12088;

  199. 	{% if matrix_nginx_proxy_enabled %}

  200. 		server_name {{ matrix_nginx_proxy_proxy_synapse_hostname }};

  201. 	{% endif %}

  202. 

  203. 	server_tokens off;

  204. 

  205. 	root /dev/null;

  206. 

  207. 	gzip on;

  208. 	gzip_types text/plain application/json;

  209. 

  210. 	{% if matrix_nginx_proxy_synapse_workers_enabled %}

  211. 		{% if generic_workers %}

  212. 			# https://github.com/matrix-org/synapse/blob/master/docs/workers.md#synapseappgeneric_worker

  213. 			{% for location in matrix_nginx_proxy_synapse_generic_worker_federation_locations %}

  214. 			location ~ {{ location }} {

  215. 				proxy_pass http://generic_worker_upstream$request_uri;

  216. 				proxy_set_header Host $host;

  217. 			}

  218. 			{% endfor %}

  219. 		{% endif %}

  220. 		{% if media_repository_workers %}

  221. 			# https://github.com/matrix-org/synapse/blob/master/docs/workers.md#synapseappmedia_repository

  222. 			{% for location in matrix_nginx_proxy_synapse_media_repository_locations %}

  223. 			location ~ {{ location }} {

  224. 				proxy_pass http://media_repository_upstream$request_uri;

  225. 				proxy_set_header Host $host;

  226. 

  227. 				client_body_buffer_size 25M;

  228. 				client_max_body_size {{ matrix_nginx_proxy_proxy_matrix_federation_api_client_max_body_size_mb }}M;

  229. 				proxy_max_temp_file_size 0;

  230. 			}

  231. 			{% endfor %}

  232. 		{% endif %}

  233. 	{% endif %}

  234. 

  235. 	location / {

  236. 		{% if matrix_nginx_proxy_enabled %}

  237. 			{# Use the embedded DNS resolver in Docker containers to discover the service #}

  238. 			resolver 127.0.0.11 valid=5s;

  239. 			set $backend "{{ matrix_nginx_proxy_proxy_synapse_federation_api_addr_with_container }}";

  240. 			proxy_pass http://$backend;

  241. 		{% else %}

  242. 			{# Generic configuration for use outside of our container setup #}

  243. 			proxy_pass http://{{ matrix_nginx_proxy_proxy_synapse_federation_api_addr_sans_container }};

  244. 		{% endif %}

  245. 

  246. 		proxy_set_header Host $host;

  247. 

  248. 		client_body_buffer_size 25M;

  249. 		client_max_body_size {{ matrix_nginx_proxy_proxy_matrix_federation_api_client_max_body_size_mb }}M;

  250. 		proxy_max_temp_file_size 0;

  251. 	}

  252. }

  253. {% endif %}