dotfiles/system/nixos/dendrite.nix

{ secret, ... }:

let
  connectionString = "postgres://${secret.dendrite.database.user}:${secret.dendrite.database.password}@10.99.99.3/dendrite?sslmode=disable";
in
{
  services.dendrite = {
    enable = true;

    environmentFile = "/var/lib/dendrite-secrets/environment";

    loadCredential = [
      "private_key:/var/lib/dendrite-secrets/matrix_key.pem"
    ];

    settings = {
      global = {
        server_name = "kempkens.io";
        private_key = "$CREDENTIALS_DIRECTORY/private_key";
        metrics.enabled = false;
        report_stats.enabled = false;
      };

      app_service_api.database.connection_string = connectionString;
      federation_api.database.connection_string = connectionString;
      key_server.database.connection_string = connectionString;
      media_api.database.connection_string = connectionString;
      mscs.database.connection_string = connectionString;
      room_server.database.connection_string = connectionString;
      sync_api.database.connection_string = connectionString;
      user_api.account_database.connection_string = connectionString;
      user_api.device_database.connection_string = connectionString;

      client_api = {
        registration_shared_secret = "$REGISTRATION_SHARED_SECRET";
        registration_disabled = true;
      };

      mscs.mscs = [
        # threading
        "msc2946"
        # spaces
        "msc2836"
      ];
    };
  };

  networking.firewall.allowedTCPPorts = [ 8008 ];
}
wip 2022-11-27 16:12:49 +00:00			`{ secret, ... }:`

			`let`
			`connectionString = "postgres://${secret.dendrite.database.user}:${secret.dendrite.database.password}@10.99.99.3/dendrite?sslmode=disable";`
			`in`
			`{`
			`services.dendrite = {`
			`enable = true;`

Fix dendrite secrets 2022-11-27 16:31:25 +00:00			`environmentFile = "/var/lib/dendrite-secrets/environment";`
wip 2022-11-27 16:12:49 +00:00
			`loadCredential = [`
Fix dendrite secrets 2022-11-27 16:31:25 +00:00			`"private_key:/var/lib/dendrite-secrets/matrix_key.pem"`
wip 2022-11-27 16:12:49 +00:00			`];`

			`settings = {`
			`global = {`
			`server_name = "kempkens.io";`
			`private_key = "$CREDENTIALS_DIRECTORY/private_key";`
			`metrics.enabled = false;`
			`report_stats.enabled = false;`
			`};`

			`app_service_api.database.connection_string = connectionString;`
			`federation_api.database.connection_string = connectionString;`
			`key_server.database.connection_string = connectionString;`
			`media_api.database.connection_string = connectionString;`
			`mscs.database.connection_string = connectionString;`
			`room_server.database.connection_string = connectionString;`
			`sync_api.database.connection_string = connectionString;`
			`user_api.account_database.connection_string = connectionString;`
			`user_api.device_database.connection_string = connectionString;`

			`client_api = {`
			`registration_shared_secret = "$REGISTRATION_SHARED_SECRET";`
			`registration_disabled = true;`
			`};`

			`mscs.mscs = [`
			`# threading`
			`"msc2946"`
			`# spaces`
			`"msc2836"`
			`];`
			`};`
			`};`
dendrite: Allow TCP port 2022-11-27 17:16:38 +00:00
			`networking.firewall.allowedTCPPorts = [ 8008 ];`
wip 2022-11-27 16:12:49 +00:00			`}`