kevinveenbirkenbach/computer-playbook
1
0
Fork 0
mirror of https://github.com/kevinveenbirkenbach/computer-playbook.git synced 2025-12-03 07:59:42 +00:00
Code Issues Packages Projects Releases Wiki Activity
Files
8314d7e6a6a250b8ac73cf2acd205ded9a4c63ed
computer-playbook/roles/web-app-matomo/config/main.yml
Kevin Veen-Birkenbach edec4f3722 Fix Matomo bootstrap logic and dependency ordering to prevent recursion (see conversation: https://chatgpt.com/share/692cb23b-fb3c-800f-98b6-ce7f61595305 ) 
This commit introduces several improvements to the Matomo initialization workflow:

- Moves the Matomo reachability check into sys-front-inj-all/tasks/01_dependencies.yml.
- Ensures web-app-matomo is only initialized when the endpoint is unreachable.
- Avoids condition inheritance on include_role by removing block-level when conditions.
- Adds explicit guarding conditions (inj_enabled.matomo, run_once_web_app_matomo usage).
- Ensures Matomo-dependent injections (CSS, Desktop, Logout, CDN) are skipped for Matomo itself.
- Fixes incorrect status_code format (now using YAML list format).
- Moves utils/run_once.yml to the top of 01_core.yml to prevent recursive re-invocation of web-app-matomo.
- Cleans Matomo config/main.yml feature definitions and clarifies which features are disabled during initial bootstrap.
- Removes legacy global Matomo bootstrap from 02_server.yml, centralizing logic in sys-front-inj-all.
- Fixes typo in inj_enabled task name.

This results in a robust, idempotent, recursion-safe Matomo bootstrap sequence that works across all injected web domains.
2025-11-30 22:08:46 +01:00

46 lines
1.1 KiB
YAML
Raw Blame History

features:
central_database: true
oauth2: false
# Matomo can't use the following settings - At least not on the initial setup run
desktop: false # Didn't work in frame didn't have high priority @todo figure out why and solve it
css: false
logout: false
matomo: false
server:
csp:
whitelist:
script-src-elem:
- https://cdn.matomo.cloud
style-src-elem:
- https://fonts.googleapis.com
flags:
script-src-attr:
unsafe-eval: true
script-src-elem:
unsafe-inline: true
unsafe-eval: true
style-src-attr:
unsafe-inline: true
unsafe-eval: true
domains:
canonical:
- "matomo.{{ PRIMARY_DOMAIN }}"
aliases: []
excluded_ips: "{{ networks.internet.values() | list }}"
docker:
services:
matomo:
image: "matomo"
version: "latest"
name: "matomo"
backup:
no_stop_required: true
database:
enabled: true
redis:
enabled: false
volumes:
data: matomo_data
Reference in New Issue View Git Blame Copy Permalink