summaryrefslogtreecommitdiff
path: root/sys/web/sites/matrix.nix
diff options
context:
space:
mode:
Diffstat (limited to 'sys/web/sites/matrix.nix')
-rw-r--r--sys/web/sites/matrix.nix52
1 files changed, 0 insertions, 52 deletions
diff --git a/sys/web/sites/matrix.nix b/sys/web/sites/matrix.nix
deleted file mode 100644
index 5583b47..0000000
--- a/sys/web/sites/matrix.nix
+++ /dev/null
@@ -1,52 +0,0 @@
-{ config, lib, ... }:
-with lib; let
- cfg = config.local.web.sites.matrix;
- inherit (config.local) domains;
-in
-{
- options.local.web.sites.matrix = {
- enable = mkEnableOption "matrix proxy site";
-
- proxyUrl = mkOption {
- type = types.str;
- };
- };
-
- config = mkIf cfg.enable {
- local.web = {
- enable = mkDefault true;
- ownedCerts = [ "matrix" ];
-
- sites.portal.enable = true;
- };
-
- services.nginx.virtualHosts =
- let
- proxyLocation =
- throwIf (hasSuffix "/" cfg.proxyUrl)
- "matrix site: a trailing slash *must not* be used here"
- cfg.proxyUrl;
- in
- {
- ${domains.exdev.main}.locations."/.well-known/matrix".proxyPass = proxyLocation;
-
- ${domains.matrix.main} = {
- forceSSL = true;
- useACMEHost = domains.matrix.main;
-
- locations = {
- "/".extraConfig = ''
- return 403;
- '';
-
- # Forward all Matrix API calls to the synapse Matrix homeserver. A trailing slash
- # *must not* be used here.
- "/_matrix".proxyPass = proxyLocation;
-
- # Forward requests for e.g. SSO and password-resets.
- "/_synapse/client".proxyPass = proxyLocation;
- };
- };
- };
- };
-}
generated by cgit v1.2.3 (git 2.25.1) at 2026-06-10 09:49:53 +0000