-
Notifications
You must be signed in to change notification settings - Fork 0
/
homeserver.yaml
136 lines (136 loc) · 4.12 KB
/
homeserver.yaml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
server_name: "chat.nz.example.com"
pid_file: "/var/run/matrix-synapse.pid"
web_client_location: "https://chat.nz.example.com/"
public_baseurl: "https://matrix.chat.nz.example.com/"
use_presence: true
require_auth_for_profile_requests: true
allow_public_rooms_without_auth: false
allow_public_rooms_over_federation: true
trusted_key_servers: [{server_name: chat.au.example.com}, {server_name: chat.eu.example.com}]
federation_domain_whitelist: [chat.au.example.com, chat.eu.example.com]
listeners:
# HTTP interface exposed via Nginx
- port: 8008
tls: false
type: http
x_forwarded: true
bind_addresses: ["::1", "127.0.0.1"]
resources:
- names: [client, federation, consent]
compress: false
# HTTP replication port used by workers to contact main synapse process
- port: 9093
bind_address: "127.0.0.1"
type: http
resources:
- names: [replication]
admin_contact: "mailto:matrix@nz.example.com"
redaction_retention_period: null
user_ips_max_age: null
database:
name: psycopg2
args:
user: "synapse"
password: "secret redacted"
database: "synapse"
host: "matrixdb1.servers.nz.example.com"
cp_min: 5
cp_max: 10
redis:
enabled: true
password: "secret redacted"
worker_replication_secret: "secret redacted"
federation_sender_instances:
- federation_sender1
instance_map:
main:
host: localhost
port: 9093
events_persister1:
host: localhost
port: 9111
receipts_writer:
host: localhost
port: 9112
stream_writers:
events:
- events_persister1
receipts: receipts_writer
typing: receipts_writer
log_config: "/etc/matrix-synapse/log.yaml"
templates:
custom_template_directory: "/etc/matrix-synapse/templates"
media_store_path: "/var/lib/matrix-synapse/media"
url_preview_enabled: true
url_preview_ip_range_blacklist: [127.0.0.0/8, 10.0.0.0/8, 172.16.0.0/12, 192.168.0.0/16, 100.64.0.0/10, 169.254.0.0/16,
'::1/128', 'fe80::/64', 'fc00::/7']
url_preview_url_blacklist:
- username: '*'
- scheme: 'http'
- netloc: 'chat.au.example.com'
- netloc: '*.chat.au.example.com'
- netloc: 'chat.eu.example.com'
- netloc: '*.chat.eu.example.com'
- netloc: 'chat.nz.example.com'
- netloc: '*.chat.nz.example.com'
session_lifetime: 156h
enable_registration: false
registrations_require_3pid: [email]
allowed_local_3pids:
- medium: email
pattern: '^[^@]+@nz\.example\.com$'
registration_shared_secret: secret redacted
allow_guest_access: false
enable_set_displayname: true
enable_set_avatar_url: true
enable_3pid_lookup: true
enable_3pid_changes: true
auto_join_rooms: ['#help:chat.nz.example.com']
autocreate_auto_join_rooms: false
autocreate_auto_join_room_preset: public_chat
autocreate_auto_join_rooms_federated: false
report_stats: false
encryption_enabled_by_default_for_room_type: "off"
macaroon_secret_key: "secret redacted"
signing_key_path: "/etc/matrix-synapse/homeserver.signing.key"
enable_group_creation: true
user_directory:
enabled: true
search_all_users: true
enable_room_list_search: true
password_config:
enabled: false
server_notices:
system_mxid_localpart: notices
system_mxid_display_name: "Example Chat"
room_name: "Example Chat"
form_secret: "secret redacted"
oidc_providers:
- idp_id: keycloak
idp_name: "Example OIDC IdP"
issuer: "https://my.nz.example.com/auth/realms/my-idp"
client_id: "matrix"
client_secret: "secret redacted"
scopes: ["openid", "profile"]
user_mapping_provider:
config:
subject_claim: "sub"
localpart_template: "{{ user.preferred_username }}"
display_name_template: "{{ user.given_name }} {{ user.last_name }}"
sso:
client_whitelist:
- "https://chat.nz.example.com/"
user_consent:
policy_name: Example Chat Usage Guidelines
template_dir: /etc/matrix-synapse/privacy_policy
require_at_registration: true
send_server_notice_to_guests: true
version: 0.1
server_notice_content:
msgtype: m.text
body: >-
To continue using this service you must review and agree to the
usage guidelines at %(consent_uri)s.
block_events_error: >-
To continue using this service you must review and agree to the
usage guidelines at %(consent_uri)s.