darkkirb/nixos-config
1
0
Fork 0
Code Issues 1 Pull requests 2 Projects Releases Packages Wiki Activity Actions
nixos-config/config/services/matrix-sliding-sync.nix

50 lines
1.3 KiB
Nix
Raw Blame History

{
pkgs,
config,
...
}: {
systemd.services.sliding-sync = {
description = "Sliding sync proxy for matrix";
after = ["network.target" "matrix-synapse.service"];
wantedBy = ["multi-user.target"];
environment = {
SYNCV3_SERVER = "https://matrix.int.chir.rs/";
SYNCV3_DB = "postgresql:///sliding_sync?sslmode=disable&host=/run/postgresql";
SYNCV3_BINDADDR = "127.0.0.1:45587";
};
serviceConfig = {
Type = "simple";
User = "sliding-sync";
Group = "sliding-sync";
Restart = "always";
EnvironmentFile = config.sops.secrets."services/mautrix/sliding-sync".path;
ExecStart = "${pkgs.sliding-sync}/bin/syncv3";
};
};
sops.secrets."services/mautrix/sliding-sync" = {};
users.users.sliding-sync = {
description = "Matrix sliding sync proxy";
isSystemUser = true;
group = "sliding-sync";
};
users.groups.sliding-sync = {};
services.postgresql.ensureDatabases = ["sliding_sync"];
services.postgresql.ensureUsers = [
{
name = "sliding-sync";
ensurePermissions = {
"DATABASE sliding_sync" = "ALL PRIVILEGES";
};
}
];
services.caddy.virtualHosts."sliding-sync.chir.rs" = {
useACMEHost = "chir.rs";
logFormat = pkgs.lib.mkForce "";
extraConfig = ''
import baseConfig
reverse_proxy http://127.0.0.1:45587
'';
};
}
Reference in a new issue View git blame Copy permalink