From 8a26def21c68c0ecfd13a5a4c4ef9d43826e798c Mon Sep 17 00:00:00 2001 From: Franziska Kunsmann Date: Sun, 5 Apr 2020 11:38:31 +0200 Subject: [PATCH] add matrix-synapse bundle --- bundles/matrix-synapse/files/homeserver.yaml | 85 +++++++++++++++++++ bundles/matrix-synapse/items.py | 35 ++++++++ bundles/matrix-synapse/metadata.py | 32 +++++++ bundles/mx-puppet-discord/items.py | 3 + bundles/mx-puppet-discord/metadata.py | 23 +++++ .../AAF9AE843A7584B5A3E4CD2BCF45A512DE2DA058 | 65 ++++++++++++++ .../homeserver_signing.key.vault | 1 + nodes/htz/ex42-1048908.py | 29 +++++-- 8 files changed, 267 insertions(+), 6 deletions(-) create mode 100644 bundles/matrix-synapse/files/homeserver.yaml create mode 100644 bundles/matrix-synapse/items.py create mode 100644 bundles/matrix-synapse/metadata.py create mode 100644 data/apt/files/gpg-keys/AAF9AE843A7584B5A3E4CD2BCF45A512DE2DA058 create mode 100644 data/matrix-synapse/htz.ex42-1048908/homeserver_signing.key.vault diff --git a/bundles/matrix-synapse/files/homeserver.yaml b/bundles/matrix-synapse/files/homeserver.yaml new file mode 100644 index 0000000..bf3f239 --- /dev/null +++ b/bundles/matrix-synapse/files/homeserver.yaml @@ -0,0 +1,85 @@ +server_name: "${server_name}" +pid_file: "/var/run/matrix-synapse.pid" +public_baseurl: https://${baseurl}/ +use_presence: true +allow_public_rooms_without_auth: false +allow_public_rooms_over_federation: false + +federation_ip_range_blacklist: + - '127.0.0.0/8' + - '10.0.0.0/8' + - '172.16.0.0/12' + - '192.168.0.0/16' + - '100.64.0.0/10' + - '169.254.0.0/16' + - '::1/128' + - 'fe80::/64' + - 'fc00::/7' + +listeners: + - port: 8009 + tls: false + bind_addresses: ['::1'] + type: http + x_forwarded: true + + resources: + - names: [metrics] + compress: false + + - port: 8008 + tls: false + bind_addresses: ['::1'] + type: http + x_forwarded: true + + resources: + - names: [client, federation] + compress: false + +admin_contact: '${admin_contact}' +database: + name: "psycopg2" + args: + user: "${database['user']}" + database: "${database['database']}" + password: "${database['password']}" + host: "${database.get('host', 'localhost')}" + cp_min: 5 + cp_max: 10 + +event_cache_size: 1M +log_config: "/etc/matrix-synapse/log.yaml" + +enable_media_repo: false +enable_registration: false +registration_shared_secret: "${registration_shared_secret}" +allow_guest_access: false +#default_identity_server: https://matrix.org +#trusted_third_party_id_servers: +# - matrix.org +# - vector.im + +enable_metrics: True + +app_service_config_files: +% for config in sorted(appservice_configs): + - "${config}" +% endfor + +signing_key_path: "/etc/matrix-synapse/homeserver.signing.key" +trusted_key_servers: +% for server in sorted(trusted_key_servers): + - server_name: "${server}" +% endfor + +password_config: + enabled: true + +email: + enable_notifs: false + notif_from: "Matrix