0k
/
0k-charms
6
3
Fork 2
Code Issues 11 Pull Requests 6 Releases Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
487 Commits
29 Branches
14 Tags
41 MiB
Tree: 1601a26c76
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '1601a26c76'
${ noResults }
0k-charms/synapse/lib/common

258 lines
5.1 KiB
Raw Normal View History

new: [synapse] new charm.
6 years ago
new: [synapse] rewrite charm for full configurability.
6 years ago
[NEW] update synapse to latest version.
3 years ago
new: [synapse] rewrite charm for full configurability.
6 years ago
[NEW] update synapse to latest version.
3 years ago
new: [synapse] rewrite charm for full configurability.
6 years ago
[NEW] update synapse to latest version.
3 years ago
new: [synapse] rewrite charm for full configurability.
6 years ago
fix: [mongo,odoo-tecnativa,mattermost,peertube,synapse,rocketchat,redis] avoid using ``find``'s ``-exec`` option as it fails With large compose, shell environment is too big to be handled correctly by ``find``. Signed-off-by: Valentin Lab <valentin.lab@kalysto.org>
5 years ago
new: [synapse] rewrite charm for full configurability.
6 years ago
[NEW] update synapse to latest version.
3 years ago
new: [synapse] rewrite charm for full configurability.
6 years ago
[NEW] update synapse to latest version.
3 years ago
new: [synapse] rewrite charm for full configurability.
6 years ago
[NEW] update synapse to latest version.
3 years ago
new: [synapse] rewrite charm for full configurability.
6 years ago
[NEW] update synapse to latest version.
3 years ago
new: [synapse] rewrite charm for full configurability.
6 years ago
[NEW] update synapse to latest version.
3 years ago
new: [synapse] rewrite charm for full configurability.
6 years ago
  1. # -*- mode: shell-script -*-
  4. yaml_opt_flatten() {
  5. local prefix="$1" key value
  6. while read-0 key value; do
  7. if [ "$prefix" ]; then
  8. new_prefix="${prefix}-${key}"
  9. else
  10. new_prefix="${key}"
  11. fi
  12. if [[ "$(echo "$value" | shyaml get-type)" == "struct" ]]; then
  13. echo "$value" | yaml_opt_flatten "${new_prefix}"
  14. else
  15. printf "%s\0%s\0" "${new_prefix}" "$value"
  16. fi
  17. done < <(shyaml key-values-0)
  18. }
  21. CFG_DIR=/etc/synapse
  22. DATA_DIR=/data
  23. CONFIG_FILE="$DATA_DIR/homeserver.yaml"
  24. HOST_CONFIG_FILE="${SERVICE_DATASTORE}$CONFIG_FILE"
  27. setup_dirs() {
  28. local dirs dir
  30. dirs=("$SERVICE_DATASTORE/data")
  31. uid_gid=($(docker_get_uid_gid "$SERVICE_NAME" "root" "root")) || {
  32. err "Could not fetch uid/gid on image of service ${DARKYELLOW}$SERVICE_NAME${NORMAL}."
  33. return 1
  34. }
  35. uid="991"
  36. gid="991"
  37. for dir in "${dirs[@]}"; do
  38. mkdir -p "$dir"
  39. find "$dir" \! -uid "$uid" -print0 | while read-0 f; do
  40. chown -v "$uid" "$f" || return 1
  41. done
  42. find "$dir" \! -gid "$gid" -print0 | while read-0 f; do
  43. chgrp -v "$gid" "$f" || return 1
  44. done
  45. done
  47. dirs=(
  48. "${SERVICE_CONFIGSTORE}/$CFG_DIR"
  49. "${SERVICE_DATASTORE}/$DATA_DIR/keys"
  50. "${SERVICE_DATASTORE}/$DATA_DIR/media"
  51. )
  52. for dir in "${dirs[@]}"; do
  53. mkdir -p "$dir"
  54. chown "$uid:$gid" "$dir"
  55. done
  56. }
  59. cfg-merge() {
  60. local yaml="$1"
  61. merge_yaml_str "$(cat "$HOST_CONFIG_FILE" 2>/dev/null)" \
  62. "$yaml" > "$HOST_CONFIG_FILE.tmp" || return 1
  63. mv "$HOST_CONFIG_FILE.tmp" "$HOST_CONFIG_FILE"
  64. }
  69. cfg-base() {
  70. cat <<EOF > "$HOST_CONFIG_FILE"
  72. ## Server
  74. ## Not running as a daemon
  75. # pid_file: /var/run/synapse/synapse.pid
  76. web_client: False
  77. soft_file_limit: 0
  78. log_config: "$DATA_DIR/logging.yml"
  80. ## Ports
  82. listeners:
  83. - port: 8008
  84. tls: false
  85. bind_addresses: ['::']
  86. type: http
  87. x_forwarded: false
  89. resources:
  90. - names: [client]
  91. compress: true
  92. - names: [federation]
  93. compress: false
  95. ## Database ##
  97. database:
  98. name: "sqlite3"
  99. args:
  100. database: "$DATA_DIR/homeserver.db"
  102. ## Performance ##
  104. event_cache_size: 10K
  106. ## Ratelimiting ##
  108. rc_messages_per_second: 0.2
  109. rc_message_burst_count: 10.0
  110. federation_rc_window_size: 1000
  111. federation_rc_sleep_limit: 10
  112. federation_rc_sleep_delay: 500
  113. federation_rc_reject_limit: 50
  114. federation_rc_concurrent: 3
  116. ## Files ##
  118. media_store_path: "$DATA_DIR/media"
  119. uploads_path: "$DATA_DIR/uploads"
  120. max_upload_size: "10M"
  121. max_image_pixels: "32M"
  122. dynamic_thumbnails: false
  124. # List of thumbnail to precalculate when an image is uploaded.
  125. thumbnail_sizes:
  126. - width: 32
  127. height: 32
  128. method: crop
  129. - width: 96
  130. height: 96
  131. method: crop
  132. - width: 320
  133. height: 240
  134. method: scale
  135. - width: 640
  136. height: 480
  137. method: scale
  138. - width: 800
  139. height: 600
  140. method: scale
  142. url_preview_enabled: false
  143. max_spider_size: "10M"
  145. ## Registration ##
  147. enable_registration: false
  148. enable_registration_captcha: false
  150. bcrypt_rounds: 12
  151. allow_guest_access: true
  152. enable_group_creation: true
  154. ## TURN
  156. turn_allow_guests: true
  157. turn_shared_secret: YOUR_SHARED_SECRET
  158. turn_uris: []
  159. turn_user_lifetime: 1h
  162. # The list of identity servers trusted to verify third party
  163. # identifiers by this server.
  164. #
  165. # Also defines the ID server which will be called when an account is
  166. # deactivated (one will be picked arbitrarily).
  167. trusted_third_party_id_servers:
  168. - matrix.org
  169. - vector.im
  170. suppress_key_server_warning: true
  171. ## Metrics
  173. enable_metrics: false
  174. report_stats: false
  176. ## API Configuration
  178. room_invite_state_types:
  179. - "m.room.join_rules"
  180. - "m.room.canonical_alias"
  181. - "m.room.avatar"
  182. - "m.room.name"
  184. expire_access_token: False
  186. ## Signing Keys ##
  188. signing_key_path: "$DATA_DIR/keys/synapse.signing.key"
  189. old_signing_keys: {}
  190. key_refresh_interval: "1d" # 1 Day.
  193. # The trusted servers to download signing keys from.
  194. perspectives:
  195. servers:
  196. "matrix.org":
  197. verify_keys:
  198. "ed25519:auto":
  199. key: "Noi6WqcDj0QmPxCNQqgezwTlBKrfqehY1u2FyWP9uYw"
  202. password_config:
  203. enabled: true
  206. recaptcha_siteverify_api: https://www.google.com/recaptcha/api/siteverify
  208. app_service_config_files: []
  210. EOF
  212. cat <<EOF > "$SERVICE_DATASTORE$DATA_DIR"/logging.yml
  213. version: 1
  215. formatters:
  216. precise:
  217. format: '%(asctime)s - %(name)s - %(lineno)d - %(levelname)s - %(request)s- %(message)s'
  219. filters:
  220. context:
  221. (): synapse.util.logcontext.LoggingContextFilter
  222. request: ""
  224. handlers:
  225. console:
  226. class: logging.StreamHandler
  227. formatter: precise
  228. filters: [context]
  230. loggers:
  231. synapse:
  232. level: WARNING
  234. synapse.storage.SQL:
  235. # beware: increasing this to DEBUG will make synapse log sensitive
  236. # information such as access tokens.
  237. level: WARNING
  239. root:
  240. level: WARNING
  241. handlers: [console]
  243. EOF
  244. }
  247. config_hash() {
  248. debug "Adding config hash to enable recreating upon config change."
  249. config_hash=$({
  250. cat "$HOST_CONFIG_FILE"
  251. } | md5_compat) || exit 1
  252. init-config-add "
  253. $SERVICE_NAME:
  254. labels:
  255. - compose.config_hash=$config_hash
  256. "
  257. }