Document secrets and add stub utility to manage them

author: Alex Auvolat <alex@adnab.me> 2021-01-16 17:37:34 +0100
committer: Alex Auvolat <alex@adnab.me> 2021-01-16 17:37:34 +0100
commit: d4d0b100ad39bf7ae560c2f714b75fdcf47e9a87 (patch)
tree: 6ca1be19d3b15c61cdb3fe4de448c20fc12b769f /app/im/secrets/chat/synapse
parent: c74dc92febd1841c8ea5ff31caab0f941d57527d (diff)
download: infrastructure-d4d0b100ad39bf7ae560c2f714b75fdcf47e9a87.tar.gz
infrastructure-d4d0b100ad39bf7ae560c2f714b75fdcf47e9a87.zip
18 files changed, 9 insertions, 0 deletions
diff --git a/app/im/secrets/chat/synapse/homeserver.tls.crt b/app/im/secrets/chat/synapse/homeserver.tls.crt
new file mode 100644
index 0000000..b696093
--- /dev/null
+++ b/app/im/secrets/chat/synapse/homeserver.tls.crt
@@ -0,0 +1 @@
+SSL_CERT synapse im.deuxfleurs.fr
diff --git a/app/im/secrets/chat/synapse/homeserver.tls.crt.sample b/app/im/secrets/chat/synapse/homeserver.tls.crt.sample
deleted file mode 100644
index e69de29..0000000
--- a/app/im/secrets/chat/synapse/homeserver.tls.crt.sample
+++ /dev/null
diff --git a/app/im/secrets/chat/synapse/homeserver.tls.dh b/app/im/secrets/chat/synapse/homeserver.tls.dh
new file mode 100644
index 0000000..0231fed
--- /dev/null
+++ b/app/im/secrets/chat/synapse/homeserver.tls.dh
@@ -0,0 +1 @@
+USER_LONG DH parameters for matrix ssl key? how does this work?
diff --git a/app/im/secrets/chat/synapse/homeserver.tls.dh.sample b/app/im/secrets/chat/synapse/homeserver.tls.dh.sample
deleted file mode 100644
index e69de29..0000000
--- a/app/im/secrets/chat/synapse/homeserver.tls.dh.sample
+++ /dev/null
diff --git a/app/im/secrets/chat/synapse/homeserver.tls.key b/app/im/secrets/chat/synapse/homeserver.tls.key
new file mode 100644
index 0000000..feee544
--- /dev/null
+++ b/app/im/secrets/chat/synapse/homeserver.tls.key
@@ -0,0 +1 @@
+SSL_KEY synapse im.deuxfleurs.fr
diff --git a/app/im/secrets/chat/synapse/homeserver.tls.key.sample b/app/im/secrets/chat/synapse/homeserver.tls.key.sample
deleted file mode 100644
index e69de29..0000000
--- a/app/im/secrets/chat/synapse/homeserver.tls.key.sample
+++ /dev/null
diff --git a/app/im/secrets/chat/synapse/ldap_binddn b/app/im/secrets/chat/synapse/ldap_binddn
new file mode 100644
index 0000000..2631bef
--- /dev/null
+++ b/app/im/secrets/chat/synapse/ldap_binddn
@@ -0,0 +1 @@
+SERVICE_DN matrix Matrix chat server
diff --git a/app/im/secrets/chat/synapse/ldap_binddn.sample b/app/im/secrets/chat/synapse/ldap_binddn.sample
deleted file mode 100644
index e69de29..0000000
--- a/app/im/secrets/chat/synapse/ldap_binddn.sample
+++ /dev/null
diff --git a/app/im/secrets/chat/synapse/ldap_bindpw b/app/im/secrets/chat/synapse/ldap_bindpw
new file mode 100644
index 0000000..ba07446
--- /dev/null
+++ b/app/im/secrets/chat/synapse/ldap_bindpw
@@ -0,0 +1 @@
+SERVICE_PASSWORD matrix
diff --git a/app/im/secrets/chat/synapse/ldap_bindpw.sample b/app/im/secrets/chat/synapse/ldap_bindpw.sample
deleted file mode 100644
index e69de29..0000000
--- a/app/im/secrets/chat/synapse/ldap_bindpw.sample
+++ /dev/null
diff --git a/app/im/secrets/chat/synapse/postgres_db b/app/im/secrets/chat/synapse/postgres_db
new file mode 100644
index 0000000..74eefa7
--- /dev/null
+++ b/app/im/secrets/chat/synapse/postgres_db
@@ -0,0 +1 @@
+CONST synapse
diff --git a/app/im/secrets/chat/synapse/postgres_db.sample b/app/im/secrets/chat/synapse/postgres_db.sample
deleted file mode 100644
index e69de29..0000000
--- a/app/im/secrets/chat/synapse/postgres_db.sample
+++ /dev/null
diff --git a/app/im/secrets/chat/synapse/postgres_pwd b/app/im/secrets/chat/synapse/postgres_pwd
new file mode 100644
index 0000000..ba07446
--- /dev/null
+++ b/app/im/secrets/chat/synapse/postgres_pwd
@@ -0,0 +1 @@
+SERVICE_PASSWORD matrix
diff --git a/app/im/secrets/chat/synapse/postgres_pwd.sample b/app/im/secrets/chat/synapse/postgres_pwd.sample
deleted file mode 100644
index e69de29..0000000
--- a/app/im/secrets/chat/synapse/postgres_pwd.sample
+++ /dev/null
diff --git a/app/im/secrets/chat/synapse/postgres_user b/app/im/secrets/chat/synapse/postgres_user
new file mode 100644
index 0000000..b08e86a
--- /dev/null
+++ b/app/im/secrets/chat/synapse/postgres_user
@@ -0,0 +1 @@
+CONST matrix
diff --git a/app/im/secrets/chat/synapse/postgres_user.sample b/app/im/secrets/chat/synapse/postgres_user.sample
deleted file mode 100644
index e69de29..0000000
--- a/app/im/secrets/chat/synapse/postgres_user.sample
+++ /dev/null
diff --git a/app/im/secrets/chat/synapse/registration_shared_secret b/app/im/secrets/chat/synapse/registration_shared_secret
new file mode 100644
index 0000000..395cccc
--- /dev/null
+++ b/app/im/secrets/chat/synapse/registration_shared_secret
@@ -0,0 +1 @@
+USER Shared secret for homeserver registrations (?)
diff --git a/app/im/secrets/chat/synapse/registration_shared_secret.sample b/app/im/secrets/chat/synapse/registration_shared_secret.sample
deleted file mode 100644
index e69de29..0000000
--- a/app/im/secrets/chat/synapse/registration_shared_secret.sample
+++ /dev/null
author	Alex Auvolat <alex@adnab.me>	2021-01-16 17:37:34 +0100
committer	Alex Auvolat <alex@adnab.me>	2021-01-16 17:37:34 +0100
commit	d4d0b100ad39bf7ae560c2f714b75fdcf47e9a87 (patch)
tree	6ca1be19d3b15c61cdb3fe4de448c20fc12b769f /app/im/secrets/chat/synapse
parent	c74dc92febd1841c8ea5ff31caab0f941d57527d (diff)
download	infrastructure-d4d0b100ad39bf7ae560c2f714b75fdcf47e9a87.tar.gz infrastructure-d4d0b100ad39bf7ae560c2f714b75fdcf47e9a87.zip