theo/homelab-docker-compose
1
0
Fork 0
mirror of https://github.com/theoleuthardt/homelab-docker-compose.git synced 2026-06-05 15:41:07 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions
homelab-docker-compose/matrix/docker-compose.yml

108 lines
4 KiB
YAML
Raw Permalink Blame History

######################################################
##### MATRIX WITH TOKEN-BASED REGISTRATION ONLY #####
######################################################
#
# User anlegen:
# 1. Admin-Token holen (nach erstem Login):
# docker exec -it synapse register_new_matrix_user -u admin -p PASSWORT --admin http://localhost:8008
#
# 2. Einladungstoken erstellen:
# curl -X POST 'http://localhost:8008/_synapse/admin/v1/registration_tokens/new' \
# -H 'Authorization: Bearer DEIN_ACCESS_TOKEN' \
# -H 'Content-Type: application/json' \
# -d '{"uses_allowed": 1}'
#
# 3. Link an Freund schicken:
# https://matrix.theocloud.dev/#/register?token=TOKEN_AUS_SCHRITT_2
#
######################################################
services:
synapse:
image: matrixdotorg/synapse:latest
container_name: synapse
restart: unless-stopped
ports:
- 8008:8008
environment:
- SYNAPSE_SERVER_NAME=matrix.theocloud.dev
- SYNAPSE_REPORT_STATS=no
- REGISTRATION_SHARED_SECRET=${REGISTRATION_SHARED_SECRET:?Bitte REGISTRATION_SHARED_SECRET in .env setzen}
entrypoint:
- /bin/sh
- -c
- |
if [ ! -f /data/homeserver.yaml ]; then
echo "Generating initial configuration..."
/start.py generate
fi
echo "Configuring token-based registration..."
# Sicherstellen dass enable_registration vorhanden und auf true gesetzt ist
if grep -q "^enable_registration:" /data/homeserver.yaml; then
sed -i 's/^enable_registration:.*/enable_registration: true/' /data/homeserver.yaml
else
printf '\nenable_registration: true\n' >> /data/homeserver.yaml
fi
# Nur per Token registrieren erlauben
if grep -q "^registration_requires_token:" /data/homeserver.yaml; then
sed -i 's/^registration_requires_token:.*/registration_requires_token: true/' /data/homeserver.yaml
else
printf '\nregistration_requires_token: true\n' >> /data/homeserver.yaml
fi
# Shared Secret für register_new_matrix_user CLI
if grep -q "^registration_shared_secret:" /data/homeserver.yaml; then
sed -i "s/^registration_shared_secret:.*/registration_shared_secret: ${REGISTRATION_SHARED_SECRET}/" /data/homeserver.yaml
else
printf '\nregistration_shared_secret: %s\n' "${REGISTRATION_SHARED_SECRET}" >> /data/homeserver.yaml
fi
# Email-Verifizierung deaktiviert (kein SMTP nötig)
if grep -q "^enable_registration_without_verification:" /data/homeserver.yaml; then
sed -i 's/^enable_registration_without_verification:.*/enable_registration_without_verification: true/' /data/homeserver.yaml
else
printf '\nenable_registration_without_verification: true\n' >> /data/homeserver.yaml
fi
# ===== BRIDGES: App-Service Registration-Dateien eintragen =====
if ! grep -q "app_service_config_files:" /data/homeserver.yaml; then
printf '\napp_service_config_files:\n - /data/discord-registration.yaml\n - /data/whatsapp-registration.yaml\n' >> /data/homeserver.yaml
fi
echo "Starting Synapse..."
exec /start.py
volumes:
- synapse_data:/data
mautrix-discord:
image: dock.mau.dev/mautrix/discord:latest
container_name: mautrix-discord
restart: unless-stopped
depends_on:
- synapse
volumes:
- ./mautrix-discord:/data
mautrix-whatsapp:
image: dock.mau.dev/mautrix/whatsapp:latest
container_name: mautrix-whatsapp
restart: unless-stopped
depends_on:
- synapse
volumes:
- ./mautrix-whatsapp:/data
well-known:
image: nginx:alpine
container_name: matrix-well-known
restart: unless-stopped
ports:
- 8070:80
volumes:
- ./nginx/well-known.conf:/etc/nginx/conf.d/default.conf:ro
invite-app:
build: ./invite-app
container_name: matrix-invite
restart: unless-stopped
ports:
- 8050:8090
volumes:
synapse_data:
Reference in a new issue View git blame Copy permalink