about summary refs log tree commit diff
diff options
context:
space:
mode:
authorsefidel <contact@sefidel.net>2023-11-12 16:47:04 +0900
committersefidel <contact@sefidel.net>2023-11-12 17:12:54 +0900
commit6c4cc36b5a45d36d5e23209fd02c0781f7bc7425 (patch)
treeb71b59c4451462301329c338da93fa468e04b54f
parentda840e09be40989171c14120177df14a22780e33 (diff)
downloadinfra-6c4cc36b5a45d36d5e23209fd02c0781f7bc7425.tar.gz
infra-6c4cc36b5a45d36d5e23209fd02c0781f7bc7425.zip
feat(modules/matrix-bridge): enable encryption
-rw-r--r--modules/services/matrix-bridge.nix26
1 files changed, 19 insertions, 7 deletions
diff --git a/modules/services/matrix-bridge.nix b/modules/services/matrix-bridge.nix
index adf7143..8f32538 100644
--- a/modules/services/matrix-bridge.nix
+++ b/modules/services/matrix-bridge.nix
@@ -47,6 +47,12 @@ in
             target = "webp";
             convert_from_webm = true;
           };
+          encryption = {
+            allow = true;
+            default = true;
+            require = true;
+            allow_key_sharing = true;
+          };
           permissions = {
             "@sef:exotic.sh" = "admin";
             "exotic.sh" = "full";
@@ -90,6 +96,13 @@ in
             target = "webp";
             convert_from_webm = true;
           };
+          # FIXME: crashes immediately: `KeyError: 'delete_outdated_inbound'`
+          # encryption = {
+          #   allow = true;
+          #   default = true;
+          #   require = true;
+          #   allow_key_sharing = true;
+          # };
           permissions = {
             "@sef:exotic.sh" = "admin";
             "exotic.sh" = "full";
@@ -140,13 +153,12 @@ in
           allow_user_invite = true;
           disappearing_messages_in_groups = true;
           url_previews = true;
-          # TODO: https://github.com/matrix-org/dendrite/issues/2723
-          # encryption = {
-          #   allow = true;
-          #   default = true;
-          #   require = true;
-          #   allow_key_sharing = true;
-          # };
+          encryption = {
+            allow = true;
+            default = true;
+            require = true;
+            allow_key_sharing = true;
+          };
           sync_manual_marked_unread = true;
           force_active_delivery_receipts = true;
           parallel_member_sync = true;