mirror of
https://git.sr.ht/~rouven/nixos-config
synced 2024-11-15 13:23:11 +01:00
47 lines
1.2 KiB
Nix
47 lines
1.2 KiB
Nix
{ config, ... }:
|
|
let
|
|
# matrix homeserver discovery
|
|
matrix_domain = "matrix.${config.networking.domain}";
|
|
serverConfig = {
|
|
"m.server" = "${matrix_domain}:443";
|
|
};
|
|
clientConfig = {
|
|
"m.homeserver" = {
|
|
base_url = "https://${matrix_domain}";
|
|
# server_name = config.networking.domain;
|
|
};
|
|
"org.matrix.msc3575.proxy" = {
|
|
url = "https://${matrix_domain}";
|
|
};
|
|
};
|
|
in
|
|
{
|
|
services.caddy = {
|
|
enable = true;
|
|
email = "ca@${config.networking.domain}";
|
|
logFormat = "format console";
|
|
globalConfig = ''
|
|
servers {
|
|
metrics
|
|
}
|
|
'';
|
|
virtualHosts.":2018" = {
|
|
extraConfig = ''
|
|
metrics
|
|
'';
|
|
logFormat = ''
|
|
output discard
|
|
'';
|
|
};
|
|
virtualHosts."${config.networking.domain}".extraConfig = ''
|
|
file_server browse
|
|
root * /srv/web/${config.networking.domain}
|
|
respond /.well-known/matrix/client ${builtins.toJSON clientConfig}
|
|
respond /.well-known/matrix/server ${builtins.toJSON serverConfig}
|
|
'';
|
|
};
|
|
systemd.services.caddy.environment.XDG_DATA_HOME = "/var/lib";
|
|
networking.firewall.allowedTCPPorts = [ 80 443 2018 ];
|
|
networking.firewall.allowedUDPPorts = [ 443 ];
|
|
}
|