Sovran_SystemsOS/modules/coturn.nix

24 lines
576 B
Nix

{config, pkgs, lib, ...}:
let
personalization = import ./personalization.nix;
in
{
services.coturn = {
enable = true;
use-auth-secret = true;
static-auth-secret = "${personalization.age.secrets.turn.file}";
realm = personalization.matrix_url;
cert = "/var/lib/coturn/${personalization.matrix_url}.crt.pem";
pkey = "/var/lib/coturn/${personalization.matrix_url}.key.pem";
min-port = 49152;
max-port = 65535;
no-cli = true;
#listening-ips = [ "127.0.0.1" ];
extraConfig = ''
verbose
external-ip=${personalization.external_ip_secret}
'';
};
}