matrix-docker-ansible-deploy/inventory/host_vars/matrix.awful.club/vars.yml

# This is something which is provided to Let's Encrypt
# when retrieving the SSL certificates for `<your-domain>`.
#
# In case SSL renewal fails at some point, you'll also get
# an email notification there.
#
# If you decide to use another method for managing SSL certifites (different than the default Let's Encrypt),
# you won't be required to define this variable
# (see `docs/configuring-playbook-ssl-certificates.md`).
#
# Example value: someone@example.com
matrix_ssl_lets_encrypt_support_email: "{{ MATRIX_SSL_LETS_ENCRYPT_SUPPORT_EMAIL }}"
#host_specific_matrix_ssl_lets_encrypt_support_email: admin@awful.club

# This is your bare domain name (`<your-domain`).
#
# Note: the server specified here is not touched.
#
# This playbook only installs to `matrix.<your-domain>`,
# but it nevertheless requires to know the bare domain name
# (for configuration purposes).
#
# Example value: example.com
matrix_domain: "{{ MATRIX_DOMAIN }}"

# disable the element web client; i don't need this.
matrix_client_element_enabled: false

# A shared secret (between Synapse and Coturn) used for authentication.
# You can put any string here, but generating a strong one is preferred (e.g. `pwgen -s 64 1`).
matrix_coturn_turn_static_auth_secret: "{{ MATRIX_COTURN_TURN_STATIC_AUTH_SECRET }}"

# A secret used to protect access keys issued by the server.
# You can put any string here, but generating a strong one is preferred (e.g. `pwgen -s 64 1`).
matrix_synapse_macaroon_secret_key: "{{ MATRIX_SYNAPSE_MACAROON_SECRET_KEY }}"

# added by jlj -- 11/25/19
# configures the slack bridge.
matrix_appservice_slack_enabled: True
matrix_appservice_slack_control_room_id: "{{ MATRIX_APPSERVICE_SLACK_CONTROL_ROOM_ID }}"

# disabled -- 2020/12 because we never used it
matrix_jitsi_enabled: false

# added by jlj -- 2020/12
# discord bridging
# matrix_appservice_discord_enabled: true
# matrix_appservice_discord_auth_usePrivilegedIntents: true
# matrix_appservice_discord_client_id: "{{ vault_matrix_appservice_discord_client_id }}"
# matrix_appservice_discord_bot_token: "{{ vault_matrix_appservice_discord_bot_token }}"

# added by jlj -- 2020/12
# discord bridging via NOT HALFSHOT.
matrix_mx_puppet_discord_enabled: true
matrix_mx_puppet_discord_client_id: "{{ vault_matrix_puppet_discord_client_id }}"
matrix_mx_puppet_discord_client_secret: "{{ vault_matrix_puppet_discord_client_secret }}"
matrix_mx_puppet_discord_mediaurl: "https://matrix.awful.club"

# added by jlj -- 2021/1
# added because maybe it affects the discord puppet bridge?
matrix_synapse_ext_password_provider_shared_secret_auth_enabled: true
matrix_synapse_ext_password_provider_shared_secret_auth_shared_secret: "{{ vault_matrix_synapse_ext_password_provider_shared_secret_auth_shared_secret }}"

# added by jlj -- 2021/1
# steam bridging
matrix_mx_puppet_steam_enabled: true

# these come from the matrix deploy repo but I can't find any supporting docs for them on the project repo?
# matrix_mx_puppet_steam_client_id: ""
# matrix_mx_puppet_steam_client_secret: ""

# Run `bash inventory/scripts/jitsi-generate-passwords.sh` to generate these passwords,
# or define your own strong passwords manually.
matrix_jitsi_jicofo_component_secret: "{{ MATRIX_JITSI_JICOFO_COMPONENT_SECRET }}"
matrix_jitsi_jicofo_auth_password: "{{ MATRIX_JITSI_JICOFO_AUTH_PASSWORD }}"
matrix_jitsi_jvb_auth_password: "{{ MATRIX_JITSI_JVB_AUTH_PASSWORD }}"
matrix_jitsi_jibri_recorder_password: "{{ MATRIX_JITSI_JIBRI_RECORDER_PASSWORD }}"
matrix_jitsi_jibri_xmpp_password: "{{ MATRIX_JITSI_JIBRI_XMPP_PASSWORD }}"

# added by jlj -- this has to be defined here too, dumb.
ansible_become_pass: "{{ ANSIBLE_BECOME_PASS }}"

# added by jlj -- twitter bullshit
# consumer key is another way of sayign 'api key', no i don't know why they did it like that.

matrix_mx_puppet_twitter_enabled: false
matrix_mx_puppet_twitter_consumer_key: "{{ MATRIX_MX_PUPPET_TWITTER_CONSUMER_KEY }}"
matrix_mx_puppet_twitter_consumer_secret: "{{ MATRIX_MX_PUPPET_TWITTER_CONSUMER_SECRET }}"
matrix_mx_puppet_twitter_access_token: "{{ MATRIX_MX_PUPPET_TWITTER_ACCESS_TOKEN }}"
matrix_mx_puppet_twitter_access_token_secret: "{{ MATRIX_MX_PUPPET_TWITTER_ACCESS_TOKEN_SECRET }}"
matrix_mx_puppet_twitter_environment: "{{ MATRIX_MX_PUPPET_TWITTER_ENVIRONMENT }}"

matrix_postgres_connection_password: "{{ vault_matrix_postgres_connection_password }}"
matrix_postgres_backup_enabled: true
matrix_postgres_backup_schedule: "@weekly"
matrix_postgres_backup_keep_weeks: "5"
matrix_postgres_backup_path: "/matrix/postgres/backups"

# added by jlj 05/28/21 -- heisenbridge testing
matrix_heisenbridge_enabled: true

## set owner (optional)
matrix_heisenbridge_owner: "@jowj:awful.club"

## to enable identd on host port 113/TCP (optional); commenting out to see if i need it
matrix_heisenbridge_identd_enabled: false

# added by jlj 6/1/21
matrix_appservice_webhooks_enabled: true
matrix_appservice_webhooks_api_secret: "{{ vault_matrix_appservice_webhooks_api_secret }}"
matrix_appservice_webhooks_log_level: 'info'

# added by jlj 6/1/21; apparently this is something you have to fuck with my default, interesting.
# matrix_dimension_enabled: true
# matrix_dimension_admins:
#   - "@jowj:{{ matrix_domain }}"

matrix_dimension_access_token: "{{ vault_matrix_dimension_access_token }}"

# stats shit
matrix_prometheus_enabled: true
matrix_prometheus_node_exporter_enabled: true
matrix_grafana_enabled: true
matrix_grafana_anonymous_access: false

## This has no relation to your Matrix user id. It can be any username you'd like.
## Changing the username subsequently won't work.
matrix_grafana_default_admin_user: "{{ vault_matrix_grafana_default_admin_user }}"

## Changing the password subsequently won't work.
matrix_grafana_default_admin_password: "{{ vault_matrix_grafana_default_admin_password }}"

## explicitly enable postgres exporter to get db stats, too
matrix_prometheus_postgres_exporter_enabled: true