bvm-matrix: set more secrets

This commit is contained in:
Luke Granger-Brown 2021-05-23 01:35:10 +00:00
parent 169524b65a
commit 1c08774667

View file

@ -123,7 +123,8 @@ in {
services.matrix-synapse = { services.matrix-synapse = {
enable = true; enable = true;
server_name = "zxcvbnm.ninja"; server_name = "zxcvbnm.ninja";
macaroon_secret_key = machineSecrets.macaroonSecretKey; macaroon_secret_key = machineSecrets.matrix.macaroonSecretKey;
registration_shared_secret = machineSecrets.matrix.registrationSecret;
turn_uris = [ turn_uris = [
"turn:matrix.zxcvbnm.ninja:3478?transport=udp" "turn:matrix.zxcvbnm.ninja:3478?transport=udp"
"turn:matrix.zxcvbnm.ninja:3478?transport=tcp" "turn:matrix.zxcvbnm.ninja:3478?transport=tcp"
@ -153,6 +154,9 @@ in {
compress = false; compress = false;
}]; }];
}]; }];
extraConfig = ''
form_secret: "${machineSecrets.matrix.formSecret}"
'';
}; };
# Users allowed to use SSL certificate for matrix.zxcvbnm.ninja. # Users allowed to use SSL certificate for matrix.zxcvbnm.ninja.