95 lines
2.5 KiB
YAML
95 lines
2.5 KiB
YAML
|
server_name: "localhost"
|
||
|
pid_file: /data/homeserver.pid
|
||
|
public_baseurl: "{{PUBLIC_BASEURL}}"
|
||
|
listeners:
|
||
|
- port: 8008
|
||
|
tls: false
|
||
|
bind_addresses: ["::"]
|
||
|
type: http
|
||
|
x_forwarded: true
|
||
|
|
||
|
resources:
|
||
|
- names: [client]
|
||
|
compress: false
|
||
|
|
||
|
database:
|
||
|
name: "sqlite3"
|
||
|
args:
|
||
|
database: ":memory:"
|
||
|
|
||
|
log_config: "/data/log.config"
|
||
|
|
||
|
rc_messages_per_second: 10000
|
||
|
rc_message_burst_count: 10000
|
||
|
rc_registration:
|
||
|
per_second: 10000
|
||
|
burst_count: 10000
|
||
|
rc_joins:
|
||
|
local:
|
||
|
per_second: 9999
|
||
|
burst_count: 9999
|
||
|
remote:
|
||
|
per_second: 9999
|
||
|
burst_count: 9999
|
||
|
rc_joins_per_room:
|
||
|
per_second: 9999
|
||
|
burst_count: 9999
|
||
|
rc_3pid_validation:
|
||
|
per_second: 1000
|
||
|
burst_count: 1000
|
||
|
|
||
|
rc_invites:
|
||
|
per_room:
|
||
|
per_second: 1000
|
||
|
burst_count: 1000
|
||
|
per_user:
|
||
|
per_second: 1000
|
||
|
burst_count: 1000
|
||
|
|
||
|
rc_login:
|
||
|
address:
|
||
|
per_second: 10000
|
||
|
burst_count: 10000
|
||
|
account:
|
||
|
per_second: 10000
|
||
|
burst_count: 10000
|
||
|
failed_attempts:
|
||
|
per_second: 10000
|
||
|
burst_count: 10000
|
||
|
|
||
|
media_store_path: "/data/media_store"
|
||
|
uploads_path: "/data/uploads"
|
||
|
enable_registration: true
|
||
|
enable_registration_without_verification: true
|
||
|
disable_msisdn_registration: false
|
||
|
registration_shared_secret: "{{REGISTRATION_SECRET}}"
|
||
|
report_stats: false
|
||
|
macaroon_secret_key: "{{MACAROON_SECRET_KEY}}"
|
||
|
form_secret: "{{FORM_SECRET}}"
|
||
|
signing_key_path: "/data/localhost.signing.key"
|
||
|
|
||
|
trusted_key_servers:
|
||
|
- server_name: "matrix.org"
|
||
|
suppress_key_server_warning: true
|
||
|
|
||
|
ui_auth:
|
||
|
session_timeout: "300s"
|
||
|
|
||
|
oidc_providers:
|
||
|
- idp_id: test
|
||
|
idp_name: "OAuth test"
|
||
|
issuer: "http://localhost:{{OAUTH_SERVER_PORT}}/oauth"
|
||
|
authorization_endpoint: "http://localhost:{{OAUTH_SERVER_PORT}}/oauth/auth.html"
|
||
|
# the token endpoint receives requests from synapse, rather than the webapp, so needs to escape the docker container.
|
||
|
# Hence, HOST_DOCKER_INTERNAL rather than localhost. This is set to
|
||
|
# host.docker.internal on Docker and host.containers.internal on Podman.
|
||
|
token_endpoint: "http://{{HOST_DOCKER_INTERNAL}}:{{OAUTH_SERVER_PORT}}/oauth/token"
|
||
|
userinfo_endpoint: "http://{{HOST_DOCKER_INTERNAL}}:{{OAUTH_SERVER_PORT}}/oauth/userinfo"
|
||
|
client_id: "synapse"
|
||
|
discover: false
|
||
|
scopes: ["profile"]
|
||
|
skip_verification: true
|
||
|
user_mapping_provider:
|
||
|
config:
|
||
|
display_name_template: "{{ user.name }}"
|