Raw refactoring of roles

roles/docker-matomo/meta/schema.yml

@@ -0,0 +1,15 @@
+credentials:
+  database_password:
+    description: "Password for the Matomo database user"
+    algorithm: "bcrypt"
+    validation: "^\\$2[aby]\\$.{56}$"
+
+  auth_token:
+    description: "Authentication token for the Matomo HTTP API (used for automation and integrations)"
+    algorithm: "sha256"
+    validation: "^[a-f0-9]{64}$"
+
+  oauth2_proxy_cookie_secret:
+    description: "Secret used to encrypt cookies in the OAuth2 Proxy (hex-encoded, 16 bytes)"
+    algorithm: "sha256"
+    validation: "^[a-f0-9]{32}$"

roles/docker-matomo/vars/configuration.yml

@@ -0,0 +1,7 @@
+version:              "latest"
+features:
+  matomo:             true
+  css:                false
+  landingpage_iframe: false
+  central_database:   true
+  oauth2:             false

roles/docker-matomo/vars/main.yml

@@ -1,7 +1,7 @@
 ---
 application_id:  	  "matomo"
 database_type:      "mariadb"
-database_password:  "{{applications.matomo.credentials.database.password}}"
+database_password:  "{{applications.matomo.credentials.database_password}}"
 
 # I don't know if this is still necessary
-domain:             "{{domains.matomo}}"                         
+domain:             "{{domains.matomo}}"