blob: 65a1cf7b8c7d43d05db9c0caec37bf3c3f863842 (
plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
|
/* PROSODY XMPP SERVER
*
* Convenient XMPP server with lots of XEP extentions, that also
* sets up ACME certificates specifically for the XMPP domain
*/
{ config, pkgs, ... }:
let
ssl = {
cert = "/var/lib/acme/xmpp.spacekookie.de/fullchain.pem";
key = "/var/lib/acme/xmpp.spacekookie.de/key.pem";
};
in
{
networking.firewall.allowedTCPPorts = [ 5222 5269 ];
security.acme.certs."xmpp.spacekookie.de" = {
email = "letsencrypt@spacekookie.de";
webroot = "/var/lib/acme/acme-challenge";
extraDomains = {
"spacekookie.de" = null;
};
user = "prosody";
};
services.prosody = {
enable = true;
modules = {
register = false;
http_files = true;
carbons = true;
mam = true;
pep = true;
};
inherit ssl;
virtualHosts."spacekookie.de" = {
domain = "spacekookie.de";
enabled = true;
inherit ssl;
};
package = pkgs.prosody.override {
withCommunityModules = [ "http_upload" "smacks" "csi" "cloud_notify" ];
};
extraConfig = ''
http_upload_file_size_limit = 0 -- No limit
'';
};
}
|