feat: matrix-cluster: shared users

2026-05-27 12:41:51 +00:00
parent 92f55320b5
commit a8dd82d05f
5 changed files with 67 additions and 51 deletions
--- a/nixos/system/bfs.poland.xray/bfs.poland.xray.nix
+++ b/nixos/system/bfs.poland.xray/bfs.poland.xray.nix
@@ -22,6 +22,7 @@ in {
  imports = [
    self.nixosModules.xray-system
    self.nixosModules.matrix-cluster
+    self.nixosModules.matrix-cluster-users
  ];

  hectic.generic.xray-system = {
--- a/nixos/system/hectic-lab/hectic-lab.nix
+++ b/nixos/system/hectic-lab/hectic-lab.nix
@@ -25,6 +25,7 @@ in {
    self.nixosModules.hectic
    self.nixosModules.matrix-cluster
    inputs.sops-nix.nixosModules.sops
+    self.nixosModules.matrix-cluster-users

    self.nixosModules."shadowsocks-rust" # NOTE(nrv): impl
    self.nixosModules."shadowsocks"      # NOTE(nrv): usage/instance
@@ -69,21 +70,6 @@ in {
      secretsFile    = config.sops.secrets."matrix/secrets".path;
      turnSecretFile = config.sops.secrets."matrix/turn-secret".path;
      publicIp       = "128.140.75.58";
-      users = {
-        yukkop = {
-          passwordFile = config.sops.secrets."matrix/users/yukkop/password".path;
-          admin = true;
-        };
-        liquiz = {
-          passwordFile = config.sops.secrets."matrix/users/liquiz/password".path;
-        };
-        vismajor = {
-          passwordFile = config.sops.secrets."matrix/users/vismajor/password".path;
-        };
-        lvgkcfjl = {
-          passwordFile = config.sops.secrets."matrix/users/lvgkcfjl/password".path;
-        };
-      };
      objectStorage.s3 = {
        bucket = "matrix-hectic-lab";
        regionName = "hel1";
@@ -193,22 +179,6 @@ in {
    mode  = "0400";
    sopsFile = "${flake}/sus/matrix-cluster.yaml";
  };
-  sops.secrets."matrix/users/yukkop/password" = {
-    key = "matrix/users/yukkop/password";
-    owner = "matrix-synapse";
-  };
-  sops.secrets."matrix/users/liquiz/password" = {
-    key = "matrix/users/liquiz/password";
-    owner = "matrix-synapse";
-  };
-  sops.secrets."matrix/users/vismajor/password" = {
-    key = "matrix/users/vismajor/password";
-    owner = "matrix-synapse";
-  };
-  sops.secrets."matrix/users/lvgkcfjl/password" = {
-    key = "matrix/users/lvgkcfjl/password";
-    owner = "matrix-synapse";
-  };
  sops.secrets."matrix/object-storage/credentials" = {
    key = "matrix/object-storage/credentials";
    owner = "matrix-synapse";