aboutsummaryrefslogblamecommitdiff
path: root/cluster/prod/app/matrix/secrets.toml
blob: 8cd1572885c0918f6a944b505378eb34413b34bf (plain) (tree)
1
2
3
4
5
6
7
8
9








                                            


                                               






















                                                      









                                                      
                                          
 
                                
 































                                                                                       
[service_users."matrix"]
description = 'Matrix service user'
dn_secret = 'chat/synapse/ldap_binddn'
password_secret = 'chat/synapse/ldap_bindpw'


# Postgresql DB

[secrets."chat/synapse/postgres_db"]
type = 'user'
description = 'Synapse PostgrSQL database name'
example = 'synapse'

[secrets."chat/synapse/postgres_user"]
type = 'service_username'
service = 'matrix'

[secrets."chat/synapse/postgres_pwd"]
type = 'service_password'
service = 'matrix'


# S3 access

[secrets."chat/synapse/s3_access_key"]
type = 'user'
description = 'S3 access key ID for Matrix bucket'

[secrets."chat/synapse/s3_secret_key"]
type = 'user'
description = 'S3 secret access key for Matrix bucket'


# Keys & stuff

[secrets."chat/synapse/homeserver.signing.key"]
type = 'user'
description = 'Synapse homeserver ed25519 signing key'

[secrets."chat/synapse/registration_shared_secret"]
type = 'command'
rotate = true
command = 'head -c 32 /dev/urandom | base64'


# ===== OLD STUFF, KEPT FOR REFERENCE ====

# ----------- COTURN -----------

# [secrets."chat/coturn/static-auth"]
# type = 'user'
# description = 'coturn static-auth (what is this?)'
# 
# [secrets."chat/coturn/static_auth_secret_zinzdev"]
# type = 'user'
# description = "Serveur coturn (TURN/STUN) d'Adrien, c'est un jeton d'identification."


# ----------- EASYBRIDGE -----------

# [service_users."easybridge"]
# description = 'Easybridge service user'
# password_secret = 'chat/easybridge/db_pass'
# username_secret = 'chat/easybridge/db_user'
# 
# 
# [secrets."chat/easybridge/as_token"]
# type = 'command'
# rotate = true
# command = 'openssl rand -hex 32'
# 
# [secrets."chat/easybridge/web_session_key"]
# type = 'command'
# rotate = true
# command = 'openssl rand -hex 32'
# 
# [secrets."chat/easybridge/hs_token"]
# type = 'command'
# rotate = true
# command = 'openssl rand -hex 32'
#