homelab/compose/services/matrix/homeserver.yaml

# Configuration file for Synapse.
#
# This is a YAML file: see [1] for a quick introduction. Note in particular
# that *indentation is important*: all the elements of a list or dictionary
# should have the same indentation.
#
# [1] https://docs.ansible.com/ansible/latest/reference_appendices/YAMLSyntax.html
#
# For more information on how to configure Synapse, including a complete accounting of
# each option, go to docs/usage/configuration/config_documentation.md or
# https://element-hq.github.io/synapse/latest/usage/configuration/config_documentation.html

## Server ##
server_name: "fig.systems"
pid_file: /data/homeserver.pid
web_client_location: https://chat.fig.systems
public_baseurl: https://matrix.fig.systems

## Ports ##
listeners:
  - port: 8008
    tls: false
    type: http
    x_forwarded: true
    bind_addresses: ['::']
    resources:
      - names: [client, federation]
        compress: false

## Database ##
database:
  name: psycopg2
  args:
    user: synapse
    password: 46d8cb2e8bdacf5a267a5f35bcdea4ded46e42ced008c4998e180f33e3ce07c5
    database: synapse
    host: postgres
    port: 5432
    cp_min: 5
    cp_max: 10

## Logging ##
log_config: "/data/fig.systems.log.config"

## Media Storage ##
media_store_path: /media
max_upload_size: 50M
max_image_pixels: 32M

## Registration ##
enable_registration: true
enable_registration_without_verification: true
registration_shared_secret: "8c9268b0d93d532139930396b22ffc97cad2210ad40f303a0d91fbf7eac5a855"
registration_requires_token: true
# registrations_require_3pid:
#   - email

## Email ##
email:
  smtp_host: smtp.mailgun.org
  smtp_port: 587
  smtp_user: "no-reply@fig.systems"
  smtp_pass: "1bc0de262fcfdb1398a3df54b8a14c07-32a0fef1-3f0b66d3"
  require_transport_security: true
  notif_from: "Matrix.Fig.Systems <no-reply@fig.systems>"
  enable_notifs: true
  notif_for_new_users: true
  client_base_url: "https://chat.fig.systems"
  validation_token_lifetime: 15m
  invite_client_location: "https://chat.fig.systems"

## Metrics ##
enable_metrics: true
report_stats: false
metrics_port: 9000

## Signing Keys ##
macaroon_secret_key: "c7374565104bc5a01c6ea2897e3c9bb3ab04948f17d1b29d342aede4e4406831"
form_secret: "E7V11MUnpi==wQJ:OX*Dv-uzd&geZ~4pP=QBr#I-Dek3zGHfcJ"
signing_key_path: "/data/fig.systems.signing.key"

## App Services (Bridges and Bots) ##
# Temporarily commented out until bridges generate registration files
# app_service_config_files:
#   - /data/bridges/telegram-registration.yaml
#   - /data/bridges/whatsapp-registration.yaml
#   - /data/bridges/googlechat-registration.yaml
#   - /data/bridges/discord-registration.yaml

## Federation ##
federation_domain_whitelist: null
allow_public_rooms_over_federation: true
allow_public_rooms_without_auth: false

## Trusted Key Servers ##
trusted_key_servers:
  - server_name: "matrix.org"

## URL Previews ##
url_preview_enabled: true
url_preview_ip_range_blacklist:
  - '127.0.0.0/8'
  - '10.0.0.0/8'
  - '172.16.0.0/12'
  - '192.168.0.0/16'
  - '100.64.0.0/10'
  - '169.254.0.0/16'
  - '::1/128'
  - 'fe80::/64'
  - 'fc00::/7'

## Room Settings ##
enable_search: true
encryption_enabled_by_default_for_room_type: invite
autocreate_auto_join_rooms: true

# Auto-join rooms - users automatically join these rooms on registration
auto_join_rooms:
  - "#general:fig.systems"
  - "#announcements:fig.systems"
  - "#support:fig.systems"

# Optionally set a room alias for the first auto-join room as the "default room"
# This can be used by clients to suggest a default place to start
# auto_join_mxid_localpart: general

# Room directory - make certain rooms publicly discoverable
# These rooms will appear in the public room list
# Note: The rooms must already exist and be set to "published" in their settings

# vim:ft=yaml