diff options
Diffstat (limited to 'services/mattermost.nix')
| -rw-r--r-- | services/mattermost.nix | 32 |
1 files changed, 32 insertions, 0 deletions
diff --git a/services/mattermost.nix b/services/mattermost.nix new file mode 100644 index 0000000..52d2598 --- /dev/null +++ b/services/mattermost.nix @@ -0,0 +1,32 @@ +{ config, pkgs, lib, ... }: + +{ + services.mattermost = { + enable = true; + + # The defaults, here for easy reference. + host = "127.0.0.1"; + port = 8065; + + # This is a placeholder, since it's the one domain name that's actually + # mapped to this server right now. Under no circumstances should we ever + # expose Mattermost directly to traffic from the internet, it always needs + # to be behind our reverse proxy, so please don't actually open the port + # or anything like that. Use an ssh tunnel for experimenting with it, + # until then. + siteUrl = "https://experiments.internetsafetylabs.org"; + + # For the usual nix reasons, we prefer to disable Mattermost's in-band + # configuration and do all config through nix. + preferNixConfig = true; + + telemetry = { + enableDiagnostics = false; + enableSecurityAlerts = false; + }; + + database.peerAuth = true; + }; + + services.postgresqlBackup.databases = [ "mattermost" ]; +} |