nixos-config/config/services/mautrix-signal.nix

{
  pkgs,
  config,
  ...
}: {
  services.mautrix-signal = {
    enable = true;
    environmentFile = config.sops.secrets."services/mautrix/shared_secret".path;
    settings = {
      homeserver = {
        address = "https://matrix.chir.rs";
        domain = "chir.rs";
        async_media = true;
      };
      appservice = {
        max_body_size = 10;
      };
      metrics = {
        enabled = true;
        listen = "[::]:29329";
      };
      database = {
        type = "postgres";
        uri = "postgres:///mautrix_signal?sslmode=disable&host=/run/postgresql";
      };
      bridge = {
        relay.enabled = true;
        permissions = {
          "*" = "relay";
          "@miifox:chir.rs" = "user";
          "@lotte:chir.rs" = "admin";
        };
      };
      matrix = {
        delivery_receipts = true;
      };

      backfill = {
        enabled = true;
      };
      encryption = {
        allow = true;
        default = false;
        appservice = true;
        allow_key_sharing = true;
        pickle_key = "generate";
      };
      double_puppet = {
        secrets = {
          "chir.rs" = "as_token:$SHARED_AS_TOKEN";
        };
      };
    };
  };
  sops.secrets."services/mautrix/shared_secret" = {};
  services.postgresql.ensureDatabases = [
    "mautrix_signal"
  ];
}
reformat repo 2022-06-12 15:39:15 +00:00			`{`
			`pkgs,`
			`config,`
			`...`
			`}: {`
add mautrix-signal 2022-05-03 20:36:55 +00:00			`services.mautrix-signal = {`
			`enable = true;`
update matrix cfg 2024-06-26 05:11:44 +00:00			`environmentFile = config.sops.secrets."services/mautrix/shared_secret".path;`
add mautrix-signal 2022-05-03 20:36:55 +00:00			`settings = {`
			`homeserver = {`
move bridges to instance-20221213-1915 2023-04-18 18:28:10 +00:00			`address = "https://matrix.chir.rs";`
add mautrix-signal 2022-05-03 20:36:55 +00:00			`domain = "chir.rs";`
Revert "disable async media" This reverts commit 04b3d62c7e0e1d4009c8c42154abe0443b4f84f8. 2023-09-08 11:41:22 +00:00			`async_media = true;`
add mautrix-signal 2022-05-03 20:36:55 +00:00			`};`
			`appservice = {`
			`max_body_size = 10;`
			`};`
			`metrics = {`
			`enabled = true;`
			`listen = "[::]:29329";`
			`};`
update bridge configs 2024-10-27 05:50:41 +00:00			`database = {`
			`type = "postgres";`
			`uri = "postgres:///mautrix_signal?sslmode=disable&host=/run/postgresql";`
			`};`
add mautrix-signal 2022-05-03 20:36:55 +00:00			`bridge = {`
update bridge configs 2024-10-27 05:50:41 +00:00			`relay.enabled = true;`
add mautrix-signal 2022-05-03 20:36:55 +00:00			`permissions = {`
fix permissions for bridging 2023-03-21 19:33:25 +00:00			`"*" = "relay";`
update bridge config 2024-05-17 07:05:12 +00:00			`"@miifox:chir.rs" = "user";`
add mautrix-signal 2022-05-03 20:36:55 +00:00			`"@lotte:chir.rs" = "admin";`
			`};`
update bridge configs 2024-10-27 05:50:41 +00:00			`};`
			`matrix = {`
			`delivery_receipts = true;`
			`};`

			`backfill = {`
			`enabled = true;`
			`};`
			`encryption = {`
			`allow = true;`
			`default = false;`
			`appservice = true;`
			`allow_key_sharing = true;`
			`pickle_key = "generate";`
			`};`
			`double_puppet = {`
			`secrets = {`
update matrix cfg 2024-06-26 05:11:44 +00:00			`"chir.rs" = "as_token:$SHARED_AS_TOKEN";`
			`};`
add mautrix-signal 2022-05-03 20:36:55 +00:00			`};`
			`};`
			`};`
update matrix cfg 2024-06-26 05:11:44 +00:00			`sops.secrets."services/mautrix/shared_secret" = {};`
add mautrix-signal 2022-05-03 20:36:55 +00:00			`services.postgresql.ensureDatabases = [`
			`"mautrix_signal"`
			`];`
			`}`