2023-01-17 07:57:24 +00:00
|
|
|
# config options:
|
|
|
|
# - <https://github.com/mautrix/signal/blob/master/mautrix_signal/example-config.yaml>
|
2023-01-16 11:43:17 +00:00
|
|
|
{ config, pkgs, ... }:
|
2023-01-16 09:03:56 +00:00
|
|
|
{
|
2023-01-25 05:57:46 +00:00
|
|
|
sane.persist.sys.plaintext = [
|
2023-07-08 00:56:20 +00:00
|
|
|
{ user = "mautrix-signal"; group = "mautrix-signal"; path = "/var/lib/mautrix-signal"; }
|
|
|
|
{ user = "signald"; group = "signald"; path = "/var/lib/signald"; }
|
2023-01-25 05:57:46 +00:00
|
|
|
];
|
|
|
|
|
2023-03-11 00:02:30 +00:00
|
|
|
# allow synapse to read the registration file
|
|
|
|
users.users.matrix-synapse.extraGroups = [ "mautrix-signal" ];
|
|
|
|
|
2023-01-16 09:03:56 +00:00
|
|
|
services.signald.enable = true;
|
|
|
|
services.mautrix-signal.enable = true;
|
2023-01-16 11:43:17 +00:00
|
|
|
services.mautrix-signal.environmentFile =
|
|
|
|
config.sops.secrets.mautrix_signal_env.path;
|
2023-01-16 09:03:56 +00:00
|
|
|
|
2023-01-16 11:54:32 +00:00
|
|
|
services.mautrix-signal.settings.signal.socket_path = "/run/signald/signald.sock";
|
2023-01-16 10:22:41 +00:00
|
|
|
services.mautrix-signal.settings.homeserver.domain = "uninsane.org";
|
2023-01-17 07:57:24 +00:00
|
|
|
services.mautrix-signal.settings.bridge.permissions."@colin:uninsane.org" = "admin";
|
2023-01-16 09:03:56 +00:00
|
|
|
services.matrix-synapse.settings.app_service_config_files = [
|
|
|
|
# auto-created by mautrix-signal service
|
|
|
|
"/var/lib/mautrix-signal/signal-registration.yaml"
|
|
|
|
];
|
2023-01-16 11:43:17 +00:00
|
|
|
|
2023-01-16 11:54:32 +00:00
|
|
|
systemd.services.mautrix-signal.serviceConfig = {
|
|
|
|
# allow communication to signald
|
|
|
|
SupplementaryGroups = [ "signald" ];
|
|
|
|
ReadWritePaths = [ "/run/signald" ];
|
|
|
|
};
|
|
|
|
|
2023-01-19 23:23:41 +00:00
|
|
|
sops.secrets."mautrix_signal_env" = {
|
2023-01-16 11:43:17 +00:00
|
|
|
mode = "0440";
|
|
|
|
owner = config.users.users.mautrix-signal.name;
|
|
|
|
group = config.users.users.matrix-synapse.name;
|
|
|
|
};
|
2023-01-16 09:03:56 +00:00
|
|
|
}
|