Slavi Pantaleev
130f9ad0a3
Move prometheus to matrix_monitoring_container_network
2024-01-13 19:55:27 +02:00
Slavi Pantaleev
17d80cb9e8
Move wsproxy to the matrix-addons network and adjust its Postgres connectivity
...
This is a bit of a compatibility break.
The role was defaulting the Postgres password to `some-password` and we
auto-generate it now.
However, rebuilding both Postgres and this service should unify the
database credentials and the service configs to the new value.
2024-01-13 18:13:06 +02:00
Slavi Pantaleev
ed63068e22
Make maubot talk to the homeserver via matrix_addons_homeserver_client_api_url
2024-01-13 18:04:21 +02:00
Slavi Pantaleev
c79f354dce
Move Dimension to the addons network and connect to Homeserver via matrix_addons_homeserver_client_api_url
2024-01-13 17:58:41 +02:00
Slavi Pantaleev
0ceea3895e
Move all monitoring-related services to their own container network (matrix_monitoring_container_network
)
2024-01-13 17:46:52 +02:00
Slavi Pantaleev
782f1f5b1c
Run postgres-backup in its own container network (not in matrix_docker_network)
2024-01-13 17:42:01 +02:00
Slavi Pantaleev
cdf28c39d3
Move matrix-user-verification service to its own container network
2024-01-13 17:31:03 +02:00
Slavi Pantaleev
0921087a21
Make Rageshake use its own container network
2024-01-13 17:29:14 +02:00
Slavi Pantaleev
c96a0156c0
Make matrix-dynamic-dns use its own container network
2024-01-13 17:18:22 +02:00
Slavi Pantaleev
c86cff2708
Fix NeDB to Postgres importing task for matrix-bridge-appservice-slack
...
Same as 250b91a40968e, but for Slack
2024-01-13 17:18:22 +02:00
Slavi Pantaleev
6b73073012
Fix NeDB to Postgres importing task for matrix-bridge-appservice-irc
...
Postgres is not in `matrix_docker_network` anymore, so what we had
before could not possibly work anymore.
2024-01-13 17:18:22 +02:00
Slavi Pantaleev
3f212feb1f
Move matrix-email2matrix to its own container network
2024-01-13 17:18:22 +02:00
Slavi Pantaleev
e2157517af
Hook matrix-homeserver-proxy to matrix-prometheus-nginxlog-exporter
2024-01-13 16:51:09 +02:00
Slavi Pantaleev
262caf0d59
Add native Traefik support to matrix-prometheus-nginxlog-exporter
2024-01-13 16:50:44 +02:00
Slavi Pantaleev
5d76b91dc2
Restore matrix-corporal functionality when matrix-nginx-proxy is not involved
2024-01-13 15:29:47 +02:00
Slavi Pantaleev
c23022ff86
Merge branch 'master' into bye-bye-nginx-proxy
2024-01-13 15:07:07 +02:00
Slavi Pantaleev
71e0022d9a
Upgrade prometheus-postgres-exporter (v0.14.0-2 -> v0.14.0-3) and stop using prometheus_postgres_exporter_server_fqn
2024-01-13 15:06:29 +02:00
Slavi Pantaleev
48e6344c9e
Merge branch 'master' into bye-bye-nginx-proxy
2024-01-13 10:25:35 +02:00
Slavi Pantaleev
22dce1d4cc
Upgrade matrix-reminder-bot and lock it down via the new allowlist setting
2024-01-13 10:22:06 +02:00
Slavi Pantaleev
48311bb96a
Stop using deprecated variable name (prometheus_node_exporter_server_fqn)
2024-01-13 09:05:43 +02:00
Slavi Pantaleev
3c81d0b06a
Only expose prometheus-node-exporter/prometheus-postgres-exporter metrics publicly if matrix_metrics_exposure_enabled
2024-01-12 17:58:11 +02:00
Slavi Pantaleev
c468a860f8
Switch to exposing prometheus-postgres-exporter via native Traefik labels, not via matrix-prometheus-services-proxy-connect.. and remove matrix-prometheus-services-proxy-connect
role
...
This requires at least `v0.14.0-2` of the `prometheus-postgres-exporter`
Ansible role.
2024-01-12 17:54:54 +02:00
Slavi Pantaleev
beb0f2387d
Switch to exposing prometheus-node-exporter via native Traefik labels, not via matrix-prometheus-services-proxy-connect
...
This requires at least `v1.7.0-2` of the `prometheus-node-exporter`
Ansible role.
2024-01-12 17:41:54 +02:00
Slavi Pantaleev
7fba83924c
Remove etherpad-proxy-connect role
2024-01-12 17:22:46 +02:00
Slavi Pantaleev
4018aa38b3
Move matrix-registration service to its own network and add native Traefik support
2024-01-12 17:17:12 +02:00
Slavi Pantaleev
41a52945d6
Add support for exposing metrics for Synapse workers
2024-01-12 12:16:06 +02:00
Slavi Pantaleev
22f5f0ba75
Add support for exposing metrics for Synapse (without workers)
2024-01-12 12:15:57 +02:00
Slavi Pantaleev
18254cd0b2
Remvoe all Traefik labels from matrix-nginx-proxy and update docs for delegation via SRV
2024-01-11 12:31:56 +02:00
Slavi Pantaleev
c4d6144bb9
Add metrics-exposure support for Dendrite
2024-01-11 12:02:15 +02:00
Slavi Pantaleev
e902214070
Automatically expose /_synapse/admin for Dendrite when synapse-admin is enabled
...
This is what we do for Synapse as well.
2024-01-11 11:31:12 +02:00
Slavi Pantaleev
d8eb768e03
Add native Traefik support to matrix-dendrite
2024-01-11 11:30:42 +02:00
Slavi Pantaleev
f78adfde47
Remove Synapse support from matrix-nginx-proxy
2024-01-11 09:24:01 +02:00
Slavi Pantaleev
030e8065e4
Remove Conduit support from matrix-nginx-proxy
2024-01-11 09:21:00 +02:00
Slavi Pantaleev
9ae8ccac36
Add matrix_conduit_hostname
2024-01-11 09:17:13 +02:00
Slavi Pantaleev
4639eebf12
Add native Traefik support to matrix-conduit
2024-01-11 08:56:51 +02:00
Slavi Pantaleev
53b5d8286f
Merge branch 'master' into bye-bye-nginx-proxy
2024-01-11 08:35:53 +02:00
Slavi Pantaleev
6766216fcb
Wire Conduit to advertise usage of the Coturn TURN server
...
Fixes https://github.com/spantaleev/matrix-docker-ansible-deploy/issues/3089
2024-01-11 07:52:48 +02:00
Slavi Pantaleev
f54b68956d
Adapt matrix-media-repo to new container network setup, etc.
2024-01-09 18:52:38 +02:00
Slavi Pantaleev
db272ab995
Move ma1sd out matrix-addons and into matrix-homeserver container network
...
Such a core service probably belongs better when it's in the homeserver network
2024-01-09 18:51:25 +02:00
Slavi Pantaleev
fc79afadd1
Merge branch 'master' into bye-bye-nginx-proxy
2024-01-09 16:07:54 +02:00
Slavi Pantaleev
3e19c8b102
Define matrix_media_repo_homeservers_auto in group vars
...
This is mostly so as to avoid referring to variables from other roles,
like `matrix_nginx_proxy_proxy_matrix_client_api_addr_with_container`.
2024-01-09 16:07:23 +02:00
Slavi Pantaleev
c7a637bfde
Merge branch 'master' into bye-bye-nginx-proxy
2024-01-09 16:03:01 +02:00
Slavi Pantaleev
883afa11dc
Do not hardcode devture_postgres_identifier in matrix-media-repo role
...
This should come (and already does) from group_vars/matrix_servers
2024-01-09 16:02:31 +02:00
Slavi Pantaleev
aea66442a1
Move matrix-ma1sd to its own container network and add native Traefik support
2024-01-09 15:27:13 +02:00
Slavi Pantaleev
61216d51cc
Move matrix-ldap-registration-proxy to its own container network and add native Traefik support
...
This also makes it handle the `/_matrix/client/v3/register` endpoint,
not just `/_matrix/client/r0/register`
2024-01-09 11:28:20 +02:00
Slavi Pantaleev
998e9ce655
Revert "Auto-generate matrix_bot_matrix_registration_bot_bot_password via group vars"
...
This reverts commit bf95ad2235
.
This was a bad idea.
It's better to have people manually define the password.
Otherwise, `matrix_homeserver_generic_secret_key` changing some day in
the future would break the bot and one would have to figure out how to
reset its password manually.
Using an explicit password is more stable.
2024-01-09 10:22:20 +02:00
Slavi Pantaleev
bf95ad2235
Auto-generate matrix_bot_matrix_registration_bot_bot_password via group vars
2024-01-09 10:19:57 +02:00
Slavi Pantaleev
fce84a2b3c
Rename variable for consistency (matrix_homeserver_proxy_ident -> matrix_homeserver_proxy_identifier)
2024-01-09 09:54:42 +02:00
Slavi Pantaleev
2f27a57d00
Rename variable for consistency (matrix_static_files_ident -> matrix_static_files_identifier)
2024-01-09 09:54:00 +02:00
Slavi Pantaleev
ea992496a3
Add matrix-cactus-comments-client role
...
This is split out from matrix-cactus-comments (see 241779b583
),
but also heavily inspired by `matrix-static-files`.
2024-01-09 09:53:01 +02:00