# This is something which is provided to Let's Encrypt # when retrieving the SSL certificates for ``. # # In case SSL renewal fails at some point, you'll also get # an email notification there. # # If you decide to use another method for managing SSL certifites (different than the default Let's Encrypt), # you won't be required to define this variable # (see `docs/configuring-playbook-ssl-certificates.md`). # # Example value: someone@example.com matrix_ssl_lets_encrypt_support_email: "{{ MATRIX_SSL_LETS_ENCRYPT_SUPPORT_EMAIL }}" #host_specific_matrix_ssl_lets_encrypt_support_email: admin@awful.club # This is your bare domain name (``, # but it nevertheless requires to know the bare domain name # (for configuration purposes). # # Example value: example.com matrix_domain: "{{ MATRIX_DOMAIN }}" # disable the element web client; i don't need this. matrix_client_element_enabled: false # A shared secret (between Synapse and Coturn) used for authentication. # You can put any string here, but generating a strong one is preferred (e.g. `pwgen -s 64 1`). matrix_coturn_turn_static_auth_secret: "{{ MATRIX_COTURN_TURN_STATIC_AUTH_SECRET }}" # A secret used to protect access keys issued by the server. # You can put any string here, but generating a strong one is preferred (e.g. `pwgen -s 64 1`). matrix_synapse_macaroon_secret_key: "{{ MATRIX_SYNAPSE_MACAROON_SECRET_KEY }}" # added by jlj -- 11/25/19 # configures the slack bridge. matrix_appservice_slack_enabled: True matrix_appservice_slack_control_room_id: "{{ MATRIX_APPSERVICE_SLACK_CONTROL_ROOM_ID }}" # disabled -- 2020/12 because we never used it matrix_jitsi_enabled: false # added by jlj -- 2020/12 # discord bridging # matrix_appservice_discord_enabled: true # matrix_appservice_discord_auth_usePrivilegedIntents: true # matrix_appservice_discord_client_id: "{{ vault_matrix_appservice_discord_client_id }}" # matrix_appservice_discord_bot_token: "{{ vault_matrix_appservice_discord_bot_token }}" # added by jlj -- 2020/12 # discord bridging via NOT HALFSHOT. matrix_mx_puppet_discord_enabled: true matrix_mx_puppet_discord_client_id: "{{ vault_matrix_puppet_discord_client_id }}" matrix_mx_puppet_discord_client_secret: "{{ vault_matrix_puppet_discord_client_secret }}" matrix_mx_puppet_discord_mediaurl: "https://matrix.awful.club" # added by jlj -- 2021/1 # added because maybe it affects the discord puppet bridge? matrix_synapse_ext_password_provider_shared_secret_auth_enabled: true matrix_synapse_ext_password_provider_shared_secret_auth_shared_secret: "{{ vault_matrix_synapse_ext_password_provider_shared_secret_auth_shared_secret }}" # added by jlj -- 2021/1 # steam bridging matrix_mx_puppet_steam_enabled: true # these come from the matrix deploy repo but I can't find any supporting docs for them on the project repo? # matrix_mx_puppet_steam_client_id: "" # matrix_mx_puppet_steam_client_secret: "" # Run `bash inventory/scripts/jitsi-generate-passwords.sh` to generate these passwords, # or define your own strong passwords manually. matrix_jitsi_jicofo_component_secret: "{{ MATRIX_JITSI_JICOFO_COMPONENT_SECRET }}" matrix_jitsi_jicofo_auth_password: "{{ MATRIX_JITSI_JICOFO_AUTH_PASSWORD }}" matrix_jitsi_jvb_auth_password: "{{ MATRIX_JITSI_JVB_AUTH_PASSWORD }}" matrix_jitsi_jibri_recorder_password: "{{ MATRIX_JITSI_JIBRI_RECORDER_PASSWORD }}" matrix_jitsi_jibri_xmpp_password: "{{ MATRIX_JITSI_JIBRI_XMPP_PASSWORD }}" # added by jlj -- this has to be defined here too, dumb. ansible_become_pass: "{{ ANSIBLE_BECOME_PASS }}" # added by jlj -- twitter bullshit # consumer key is another way of sayign 'api key', no i don't know why they did it like that. matrix_mx_puppet_twitter_enabled: false matrix_mx_puppet_twitter_consumer_key: "{{ MATRIX_MX_PUPPET_TWITTER_CONSUMER_KEY }}" matrix_mx_puppet_twitter_consumer_secret: "{{ MATRIX_MX_PUPPET_TWITTER_CONSUMER_SECRET }}" matrix_mx_puppet_twitter_access_token: "{{ MATRIX_MX_PUPPET_TWITTER_ACCESS_TOKEN }}" matrix_mx_puppet_twitter_access_token_secret: "{{ MATRIX_MX_PUPPET_TWITTER_ACCESS_TOKEN_SECRET }}" matrix_mx_puppet_twitter_environment: "{{ MATRIX_MX_PUPPET_TWITTER_ENVIRONMENT }}" matrix_postgres_connection_password: "{{ vault_matrix_postgres_connection_password }}" matrix_postgres_backup_enabled: true matrix_postgres_backup_schedule: "@weekly" matrix_postgres_backup_keep_weeks: "5" matrix_postgres_backup_path: "/matrix/postgres/backups" # added by jlj 05/28/21 -- heisenbridge testing matrix_heisenbridge_enabled: true ## set owner (optional) matrix_heisenbridge_owner: "@jowj:awful.club" ## to enable identd on host port 113/TCP (optional); commenting out to see if i need it matrix_heisenbridge_identd_enabled: false # added by jlj 6/1/21 matrix_appservice_webhooks_enabled: true matrix_appservice_webhooks_api_secret: "{{ vault_matrix_appservice_webhooks_api_secret }}" matrix_appservice_webhooks_log_level: 'info' # added by jlj 6/1/21; apparently this is something you have to fuck with my default, interesting. # matrix_dimension_enabled: true # matrix_dimension_admins: # - "@jowj:{{ matrix_domain }}" matrix_dimension_access_token: "{{ vault_matrix_dimension_access_token }}" # stats shit matrix_prometheus_enabled: true matrix_prometheus_node_exporter_enabled: true matrix_grafana_enabled: true matrix_grafana_anonymous_access: false ## This has no relation to your Matrix user id. It can be any username you'd like. ## Changing the username subsequently won't work. matrix_grafana_default_admin_user: "{{ vault_matrix_grafana_default_admin_user }}" ## Changing the password subsequently won't work. matrix_grafana_default_admin_password: "{{ vault_matrix_grafana_default_admin_password }}" ## explicitly enable postgres exporter to get db stats, too matrix_prometheus_postgres_exporter_enabled: true