overmind
/
matrix-docker-ansible-deploy
réplica de https://github.com/spantaleev/matrix-docker-ansible-deploy
1
0
Fork 0
Código Incidencias 0 Lanzamientos 0 Wiki Actividad
Matrix Docker Ansible eploy
No puede seleccionar más de 25 temas Los temas deben comenzar con una letra o número, pueden incluir guiones ('-') y pueden tener hasta 35 caracteres de largo.
6024 Commits
13 Ramas
153 MiB
 
 
Árbol: e04894de7c
Ramas Etiquetas
${ item.name }
Crear rama ${ searchTerm }
desde 'e04894de7c'
${ noResults }
matrix-docker-ansible-deploy/roles/custom/matrix-bot-mjolnir/templates/production.yaml.j2

247 líneas
10 KiB
Original Blame Histórico 

  1. # Endpoint URL that Mjolnir uses to interact with the matrix homeserver (client-server API),

  2. # set this to the pantalaimon URL if you're using that.

  3. homeserverUrl: "{{ matrix_homeserver_url }}"

  4. 

  5. # Endpoint URL that Mjolnir could use to fetch events related to reports (client-server API and /_synapse/),

  6. # only set this to the public-internet homeserver client API URL, do NOT set this to the pantalaimon URL.

  7. rawHomeserverUrl: "{{ matrix_homeserver_url }}"

  8. 

  9. # Matrix Access Token to use, Mjolnir will only use this if pantalaimon.use is false.

  10. accessToken: "{{ matrix_bot_mjolnir_access_token }}"

  11. 

  12. # Options related to Pantalaimon (https://github.com/matrix-org/pantalaimon)

  13. #pantalaimon:

  14. #  # Whether or not Mjolnir will use pantalaimon to access the matrix homeserver,

  15. #  # set to `true` if you're using pantalaimon.

  16. #  #

  17. #  # Be sure to point homeserverUrl to the pantalaimon instance.

  18. #  #

  19. #  # Mjolnir will log in using the given username and password once,

  20. #  # then store the resulting access token in a file under dataPath.

  21. #  use: false

  22. #

  23. #  # The username to login with.

  24. #  username: mjolnir

  25. #

  26. #  # The password Mjolnir will login with.

  27. #  #

  28. #  # After successfully logging in once, this will be ignored, so this value can be blanked after first startup.

  29. #  password: your_password

  30. 

  31. # The path Mjolnir will store its state/data in, leave default ("/data/storage") when using containers.

  32. dataPath: "/data"

  33. 

  34. # If true (the default), Mjolnir will only accept invites from users present in managementRoom.

  35. autojoinOnlyIfManager: true

  36. 

  37. # If `autojoinOnlyIfManager` is false, only the members in this space can invite

  38. # the bot to new rooms.

  39. #acceptInvitesFromSpace: "!example:example.org"

  40. 

  41. # Whether Mjolnir should report ignored invites to the management room (if autojoinOnlyIfManager is true).

  42. recordIgnoredInvites: false

  43. 

  44. # The room ID (or room alias) of the management room, anyone in this room can issue commands to Mjolnir.

  45. #

  46. # Mjolnir has no more granular access controls other than this, be sure you trust everyone in this room - secure it!

  47. #

  48. # This should be a room alias or room ID - not a matrix.to URL.

  49. #

  50. # Note: By default, Mjolnir is fairly verbose - expect a lot of messages in this room.

  51. # (see verboseLogging to adjust this a bit.)

  52. managementRoom: "{{ matrix_bot_mjolnir_management_room }}"

  53. 

  54. # Whether Mjolnir should log a lot more messages in the room,

  55. # mainly involves "all-OK" messages, and debugging messages for when mjolnir checks bans in a room.

  56. verboseLogging: false

  57. 

  58. # The log level of terminal (or container) output,

  59. # can be one of DEBUG, INFO, WARN and ERROR, in increasing order of importance and severity.

  60. #

  61. # This should be at INFO or DEBUG in order to get support for Mjolnir problems.

  62. logLevel: "INFO"

  63. 

  64. # Whether or not Mjolnir should synchronize policy lists immediately after startup.

  65. # Equivalent to running '!mjolnir sync'.

  66. syncOnStartup: true

  67. 

  68. # Whether or not Mjolnir should check moderation permissions in all protected rooms on startup.

  69. # Equivalent to running `!mjolnir verify`.

  70. verifyPermissionsOnStartup: true

  71. 

  72. # Whether or not Mjolnir should actually apply bans and policy lists,

  73. # turn on to trial some untrusted configuration or lists.

  74. noop: false

  75. 

  76. # Whether Mjolnir should check member lists quicker (by using a different endpoint),

  77. # keep in mind that enabling this will miss invited (but not joined) users.

  78. #

  79. # Turn on if your bot is in (very) large rooms, or in large amounts of rooms.

  80. fasterMembershipChecks: false

  81. 

  82. # A case-insensitive list of ban reasons to have the bot also automatically redact the user's messages for.

  83. #

  84. # If the bot sees you ban a user with a reason that is an (exact case-insensitive) match to this list,

  85. # it will also remove the user's messages automatically.

  86. #

  87. # Typically this is useful to avoid having to give two commands to the bot.

  88. # Advanced: Use asterisks to have the reason match using "globs"

  89. # (f.e. "spam*testing" would match "spam for testing" as well as "spamtesting").

  90. #

  91. # See here for more info: https://www.digitalocean.com/community/tools/glob

  92. # Note: Keep in mind that glob is NOT regex!

  93. automaticallyRedactForReasons:

  94.   - "spam"

  95.   - "advertising"

  96. 

  97. # A list of rooms to protect. Mjolnir will add this to the list it knows from its account data.

  98. #

  99. # It won't, however, add it to the account data.

  100. # Manually add the room via '!mjolnir rooms add' to have it stay protected regardless if this config value changes.

  101. #

  102. # Note: These must be matrix.to URLs

  103. #protectedRooms:

  104. #  - "https://matrix.to/#/#yourroom:example.org"

  105. 

  106. # Whether or not to add all joined rooms to the "protected rooms" list

  107. # (excluding the management room and watched policy list rooms, see below).

  108. #

  109. # Note that this effectively makes the protectedRooms and associated commands useless

  110. # for regular rooms.

  111. #

  112. # Note: the management room is *excluded* from this condition.

  113. # Explicitly add it as a protected room to protect it.

  114. #

  115. # Note: Ban list rooms the bot is watching but didn't create will not be protected.

  116. # Explicitly add these rooms as a protected room list if you want them protected.

  117. protectAllJoinedRooms: false

  118. 

  119. # Increase this delay to have Mjölnir wait longer between two consecutive backgrounded

  120. # operations. The total duration of operations will be longer, but the homeserver won't

  121. # be affected as much. Conversely, decrease this delay to have Mjölnir chain operations

  122. # faster. The total duration of operations will generally be shorter, but the performance

  123. # of the homeserver may be more impacted.

  124. backgroundDelayMS: 500

  125. 

  126. # Server administration commands, these commands will only work if Mjolnir is

  127. # a global server administrator, and the bot's server is a Synapse instance.

  128. #admin:

  129. #  # Whether or not Mjolnir can temporarily take control of any eligible account from the local homeserver who's in the room

  130. #  # (with enough permissions) to "make" a user an admin.

  131. #  #

  132. #  # This only works if a local user with enough admin permissions is present in the room.

  133. #  enableMakeRoomAdminCommand: false

  134. 

  135. # Misc options for command handling and commands

  136. commands:

  137.   # Whether or not the `!mjolnir` prefix is necessary to submit commands.

  138.   #

  139.   # If `true`, will allow commands like `!ban`, `!help`, etc.

  140.   #

  141.   # Note: Mjolnir can also be pinged by display name instead of having to use

  142.   # the !mjolnir prefix. For example, "my_moderator_bot: ban @spammer:example.org"

  143.   # will address only my_moderator_bot.

  144.   allowNoPrefix: false

  145. 

  146.   # Any additional bot prefixes that Mjolnir will listen to. i.e. adding `mod` will allow `!mod help`.

  147.   additionalPrefixes:

  148.     - "mjolnir_bot"

  149. 

  150.   # Whether or not commands with a wildcard (*) will require an additional `--force` argument

  151.   # in the command to be able to be submitted.

  152.   confirmWildcardBan: true

  153. 

  154. # Configuration specific to certain toggle-able protections

  155. #protections:

  156. #  # Configuration for the wordlist plugin, which can ban users based if they say certain

  157. #  # blocked words shortly after joining.

  158. #  wordlist:

  159. #    # A list of case-insensitive keywords that the WordList protection will watch for from new users.

  160. #    #

  161. #    # WordList will ban users who use these words when first joining a room, so take caution when selecting them.

  162. #    #

  163. #    # For advanced usage, regex can also be used, see the following links for more information;

  164. #    #  - https://www.digitalocean.com/community/tutorials/an-introduction-to-regular-expressions

  165. #    #  - https://regexr.com/

  166. #    #  - https://regexone.com/

  167. #    words:

  168. #      - "LoReM"

  169. #      - "IpSuM"

  170. #      - "DoLoR"

  171. #      - "aMeT"

  172. #

  173. #    # For how long (in minutes) the user is "new" to the WordList plugin.

  174. #    #

  175. #    # After this time, the user will no longer be banned for using a word in the above wordlist.

  176. #    #

  177. #    # Set to zero to disable the timeout and make users *always* appear "new".

  178. #    # (users will always be banned if they say a bad word)

  179. #    minutesBeforeTrusting: 20

  180. 

  181. # Options for advanced monitoring of the health of the bot.

  182. health:

  183.   # healthz options. These options are best for use in container environments

  184.   # like Kubernetes to detect how healthy the service is. The bot will report

  185.   # that it is unhealthy until it is able to process user requests. Typically

  186.   # this means that it'll flag itself as unhealthy for a number of minutes

  187.   # before saying "Now monitoring rooms" and flagging itself healthy.

  188.   #

  189.   # Health is flagged through HTTP status codes, defined below.

  190.   healthz:

  191.     # Whether the healthz integration should be enabled (default false)

  192.     enabled: false

  193. 

  194.     # The port to expose the webserver on. Defaults to 8080.

  195.     port: 8080

  196. 

  197.     # The address to listen for requests on. Defaults to all addresses.

  198.     address: "0.0.0.0"

  199. 

  200.     # The path to expose the monitoring endpoint at. Defaults to `/healthz`

  201.     endpoint: "/healthz"

  202. 

  203.     # The HTTP status code which reports that the bot is healthy/ready to

  204.     # process requests. Typically this should not be changed. Defaults to

  205.     # 200.

  206.     healthyStatus: 200

  207. 

  208.     # The HTTP status code which reports that the bot is not healthy/ready.

  209.     # Defaults to 418.

  210.     unhealthyStatus: 418

  211. 

  212. # Options for exposing web APIs.

  213. #web:

  214. #  # Whether to enable web APIs.

  215. #  enabled: false

  216. #

  217. #  # The port to expose the webserver on. Defaults to 8080.

  218. #  port: 8080

  219. #

  220. #  # The address to listen for requests on. Defaults to only the current

  221. #  # computer.

  222. #  address: localhost

  223. #

  224. #  # Alternative setting to open to the entire web. Be careful,

  225. #  # as this will increase your security perimeter:

  226. #  #

  227. #  #  address: "0.0.0.0"

  228. #

  229. #  # A web API designed to intercept Matrix API

  230. #  # POST /_matrix/client/r0/rooms/{roomId}/report/{eventId}

  231. #  # and display readable abuse reports in the moderation room.

  232. #  #

  233. #  # If you wish to take advantage of this feature, you will need

  234. #  # to configure a reverse proxy, see e.g. test/nginx.conf

  235. #  abuseReporting:

  236. #    # Whether to enable this feature.

  237. #    enabled: false

  238. 

  239. # Whether or not to actively poll synapse for abuse reports, to be used

  240. # instead of intercepting client calls to synapse's abuse endpoint, when that

  241. # isn't possible/practical.

  242. pollReports: false

  243. 

  244. # Whether or not new reports, received either by webapi or polling,

  245. # should be printed to our managementRoom.

  246. displayReports: false