From 1c08774667c2a7a0f368359a089b1df1cee73e8b Mon Sep 17 00:00:00 2001 From: Luke Granger-Brown Date: Sun, 23 May 2021 01:35:10 +0000 Subject: [PATCH] bvm-matrix: set more secrets --- ops/nixos/bvm-matrix/default.nix | 6 +++++- 1 file changed, 5 insertions(+), 1 deletion(-) diff --git a/ops/nixos/bvm-matrix/default.nix b/ops/nixos/bvm-matrix/default.nix index 3dc5cacc18..e3cd91f8dc 100644 --- a/ops/nixos/bvm-matrix/default.nix +++ b/ops/nixos/bvm-matrix/default.nix @@ -123,7 +123,8 @@ in { services.matrix-synapse = { enable = true; server_name = "zxcvbnm.ninja"; - macaroon_secret_key = machineSecrets.macaroonSecretKey; + macaroon_secret_key = machineSecrets.matrix.macaroonSecretKey; + registration_shared_secret = machineSecrets.matrix.registrationSecret; turn_uris = [ "turn:matrix.zxcvbnm.ninja:3478?transport=udp" "turn:matrix.zxcvbnm.ninja:3478?transport=tcp" @@ -153,6 +154,9 @@ in { compress = false; }]; }]; + extraConfig = '' + form_secret: "${machineSecrets.matrix.formSecret}" + ''; }; # Users allowed to use SSL certificate for matrix.zxcvbnm.ninja.