You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
---
# The bare domain name which represents your Matrix identity.# Matrix user ids for your server will be of the form (`@user:<matrix-domain>`).## Note: this playbook does not touch the server referenced here.# Installation happens on another server ("matrix.<matrix-domain>").## If you've deployed using the wrong domain, you'll have to run the Uninstalling step,# because you can't change the Domain after deployment.## Example value: example.commatrix_domain: [link]# The Matrix homeserver software to install.# See:# - `roles/custom/matrix-base/defaults/main.yml` for valid options# - the `docs/configuring-playbook-IMPLEMENTATION_NAME.md` documentation page, if one is available for your implementation choicematrix_homeserver_implementation: synapse# A secret used as a base, for generating various other secrets.# You can put any string here, but generating a strong one is preferred (e.g. `pwgen -s 64 1`).matrix_homeserver_generic_secret_key: '[key]'# By default, the playbook manages its own Traefik (https://doc.traefik.io/traefik/) reverse-proxy server.# It will retrieve SSL certificates for you on-demand and forward requests to all other components.# For alternatives, see `docs/configuring-playbook-own-webserver.md`.matrix_playbook_reverse_proxy_type: playbook-managed-traefik# Ensure that public urls use httpsmatrix_playbook_ssl_enabled: true# Disable the web-secure (port 443) endpoint, which also disables SSL certificate retrieval.# This has the side-effect of also automatically disabling TLS for the matrix-federation entrypoint# (by toggling `matrix_federation_traefik_entrypoint_tls`).devture_traefik_config_entrypoint_web_secure_enabled: false# If your reverse-proxy runs on another machine, consider using `0.0.0.0:81`, just `81` or `SOME_IP_ADDRESS_OF_THIS_MACHINE:81`devture_traefik_container_web_host_bind_port: '127.0.0.1:8081'We bind to `127.0.0.1` by default (see above), so trusting `X-Forwarded-*` headers from# a reverse-proxy running on the local machine is safe enough.# If you're publishing the port (`devture_traefik_container_web_host_bind_port` above) to a public network interface:# - remove the `devture_traefik_config_entrypoint_web_forwardedHeaders_insecure` variable definition below# - uncomment and adjust the `devture_traefik_config_entrypoint_web_forwardedHeaders_trustedIPs` line belowdevture_traefik_config_entrypoint_web_forwardedHeaders_insecure: true# devture_traefik_config_entrypoint_web_forwardedHeaders_trustedIPs: ['IP-ADDRESS-OF-YOUR-REVERSE-PROXY']# Expose the federation entrypoint on a custom port (other than port 8448, which is normally used publicly).## We bind to `127.0.0.1` by default (see above), so trusting `X-Forwarded-*` headers from# a reverse-proxy running on the local machine is safe enough.## If your reverse-proxy runs on another machine, consider:# - using `0.0.0.0:8449`, just `8449` or `SOME_IP_ADDRESS_OF_THIS_MACHINE:8449` below# - adjusting `matrix_playbook_public_matrix_federation_api_traefik_entrypoint_config_custom` (below) - removing `insecure: true` and enabling/configuring `trustedIPs`matrix_playbook_public_matrix_federation_api_traefik_entrypoint_host_bind_port: '127.0.0.1:81'# Disable HTTP/3 for the federation entrypoint.# If you'd like HTTP/3, consider configuring it for your other reverse-proxy.## Disabling this also sets `matrix_playbook_public_matrix_federation_api_traefik_entrypoint_host_bind_port_udp` to an empty value.# If you'd like to keep HTTP/3 enabled here (for whatever reason), you may wish to explicitly# set `matrix_playbook_public_matrix_federation_api_traefik_entrypoint_host_bind_port_udp` to something like '127.0.0.1:8449'.matrix_playbook_public_matrix_federation_api_traefik_entrypoint_config_http3_enabled: false# Depending on the value of `matrix_playbook_public_matrix_federation_api_traefik_entrypoint_host_bind_port` above,# this may need to be reconfigured. See the comments above.matrix_playbook_public_matrix_federation_api_traefik_entrypoint_config_custom:
forwardedHeaders:
insecure: true# trustedIPs: ['IP-ADDRESS-OF-YOUR-REVERSE-PROXY']# This is something which is provided to Let's Encrypt when retrieving SSL certificates for domains.## In case SSL renewal fails at some point, you'll also get an email notification there.##A Postgres password to use for the superuser Postgres user (called `matrix` by default).## The playbook creates additional Postgres users and databases (one for each enabled service)# using this superuser account.devture_postgres_connection_password: '[key]'# By default, we configure Coturn's external IP address using the value specified for `ansible_host` in your `inventory/hosts` file.# If this value is an external IP address, you can skip this section.## If `ansible_host` is not the server's external IP address, you have 2 choices:# 1. Uncomment the line below, to allow IP address auto-detection to happen (more on this below)# 2. Uncomment and adjust the line below to specify an IP address manually## By default, auto-detection will be attempted using the `https://ifconfig.co/json` API.# Default values for this are specified in `matrix_coturn_turn_external_ip_address_auto_detection_*` variables in the Coturn role# (see `roles/custom/matrix-coturn/defaults/main.yml`).## If your server has multiple IP addresses, you may define them in another variable which allows a list of addresses.# Example: `matrix_coturn_turn_external_ip_addresses: ['1.2.3.4', '4.5.6.7']`## matrix_coturn_turn_external_ip_address: ''
Matrix Server:
OS: Ubuntu 22.04
Architecture amd64
Ansible:
If your problem appears to be with Ansible, tell us:
where you run Ansible -- e.g. on the Matrix server itself; on another computer (which OS? distro? standard installation or containerized Ansible?) Matrix server
what version of Ansible you're running (see ansible --version) 2.16.3
Problem description: 502 Bad Gateway error
Describe what you're doing, what you expect to happen and what happens instead here. I'm not doing anything out of the ordinary. I'm running Nginx Proxy Manager as my reverse proxy, so I've "disabled" Traefik. It's causing the aforementioned error.
Tell us what you've tried and what you're aiming to achieve. I've tried nothing because I don't know where the problem lies
Additional context
Add any other context about the problem here.
The text was updated successfully, but these errors were encountered:
Playbook Configuration:
My
vars.yml
file looks like this:Matrix Server:
Ansible:
If your problem appears to be with Ansible, tell us:
ansible --version
) 2.16.3Problem description: 502 Bad Gateway error
Describe what you're doing, what you expect to happen and what happens instead here. I'm not doing anything out of the ordinary. I'm running Nginx Proxy Manager as my reverse proxy, so I've "disabled" Traefik. It's causing the aforementioned error.
Tell us what you've tried and what you're aiming to achieve. I've tried nothing because I don't know where the problem lies
Additional context
Add any other context about the problem here.
The text was updated successfully, but these errors were encountered: