From a15a93a31790ae0ecde471b5b4ef8b07bfcbfe8a Mon Sep 17 00:00:00 2001
From: Jimbo <jimjam4real@gmail.com>
Date: Tue, 27 Aug 2024 05:14:19 -0400
Subject: [PATCH] Add a Discord/Matrix bridge

---
 flake.nix                       |   2 +-
 nixos/modules/secrets.nix       | Bin 1615 -> 1751 bytes
 nixos/server.nix                |   7 +++++--
 nixos/server/matrix-discord.nix |  18 ++++++++++++++++++
 nixos/server/synapse.nix        |   7 +++++++
 5 files changed, 31 insertions(+), 3 deletions(-)
 create mode 100644 nixos/server/matrix-discord.nix

diff --git a/flake.nix b/flake.nix
index fca2cf9..c9f6684 100644
--- a/flake.nix
+++ b/flake.nix
@@ -24,8 +24,8 @@
     self,
     nixpkgs,
     nur,
-    blender-bin,
     nixos-mailserver,
+    blender-bin,
     home-manager,
     ...
   } @inputs: let
diff --git a/nixos/modules/secrets.nix b/nixos/modules/secrets.nix
index 27f416efcfe8e5432ae302e496b32f4b8b050371..66c57ff50b6d7d72bfbc575f848aa88da92687de 100644
GIT binary patch
literal 1751
zcmV;|1}OOeM@dveQdv+`0G?pK&TLMf(Er$a)!JJBiJ5u*4qSE%{{|+2)?c<0#HK%o
z^vh3ckC7qLUmL$0gq(VmSe)o5A~XWs+0<mrSQcR8dTASLN{!9&F8Y<yu-qY7=zMgV
z_+oTEsvx&<cYGC9LD>B307*j7B^zK*i6HPGaVs0;I}fZaIv>aKH31(qfo2s?A|k`%
zFMDCq3nP|#d2o`aN!&+|8e1r>dOntyZTpbD$E^rX=|3A`04Ju+h}JeM(&N^lq4WMl
z#d_pR@<$p<3me?~MIZ;zmsb&I?2tM5W8X-|58W)ko8G+p9IIeA(>-x+NyJPO28x<E
zXz7{jEtNCKqz<*Fqd#CPZ0amb81mIPZ;#GjCP7Y^O^I;fI3~aBfev6QIM+vp=n5>*
zj11QH6T9^b@{i-2Tgey~umUXf&&@4Rc&5d;{9gjQ{sPwxrR!UR-pJa|v7g~nlnv@y
zk2IC<VqopDG+zQwL7Wq<-B`tEH_6j9=M27q{@3~YrQfn8W9UznK(;oiBrdjjxhRZW
z?n-CA+AN8fkf<_kNJZLPtt&Z7DPD>TuI1cFkHhid_GtF{zfIM8ekS>U2j>=#bLI6w
z>+`Wzz0x^Zs<Wochc1aFL7^vW5Y*4ioft@+!NOc?fT&3qNsf{2Q7%KH``B4vW1e|R
zW~vMnmDBM#^8RU-H{Fb%Ch7qbBFR4?^t|seh%&UaVnxpH_6YVc+yBKhD#4i7vqHb`
ztMe%eLDBX*5HFsUia=<-ZXC~3y_4scLhFR|<<a`;E)$V_B4pVY3{JW0@^hK^F(G}2
zI^HI-Wl;w1qlVIVZ=Cj_70$@REl4pLhGRlFj<%UELue=bH-Tdx06dw%vB>$)uN``r
zLSmoYwI}6ty+#8P6o~spe{3Irg(;P31~oU%xJhxIFmeuO=Wc*IX>^LWN{D-9vk}c7
z<8_()N*+1NG2(TSzypSWD+VV7g`T)6GiW^-_UDMs2V5o_rPICS25<e@eP6^!lb_#W
z>t83Ai~o2N-8UD+(nlGQyLB1FPn7BT7K?-i{62d7k0F@@7@L3gDam9I^fO!r%O`S+
zRu)6&pLCNe?Ny<R8EvKFaicH=;8!+gvk<HRD_E3EBLdn;!Hr>+$bWepxvKaP()>}^
z_UO7`^E!|t9krn_T>hhY%=xZlcra2b^N^M`3!96Ye`j<x<^65Q$Mj%b`3IA7<n#mu
zEWhrN^|dYSn{Q$-Es;IH+YT>4)F?8ZQ{02@!H}NB$5y8j$J_n3DsT>(PQZ`gKyRJv
zxo;T7XlCyWm7Sq&KJ0WCH_5M{6eXu5L2W9sr`>=87#C%8Tnm1%BIa(zMqjAmirzea
zguA%nAE*b|!Ee9LS64Ac?H!@Vy|umy9oB7hxmWG@A?Xd7B3?0pO|W+SG$nQnBF}A{
zjhx;D5z5x;{okbOjh)CI1~E3ckw(t><I%O6AQ{XpZA}&$3-KpiD47GO+Lv!Zt&FjU
z?WrLYUu*F*5bS!xFQ7&C@-!T#>5)?*mJ!@t2CxF4Zcv+o^A0DMyxqi?p-_d#b*jfV
zIEny(o6<lBQBe@mC%qc-|J==DJivR<6>Dm_QNz#f+{doS!=921k%VZ|k0<BT&|!PY
z2l|EBN8NoItAXnGzxpicd_Q>sp_$BVWokHN63j@xI7!Ya$X7C>yxpe6+=v8LvyH!(
zxUALkDLQ;pmEP2^FW!Cn;hyEHOSs-YOX!5LHEdsKM`s2@xe#r{y^3t9?M0PpK}<@|
z6pw&adaMlnv1BxF{*H}LsJR0QOW$a>IO@b^aN7t@qXo#TD0gwhq^%mq#1pt9`^z`&
za5RDRk7l5(kLXLAyeDHkX!B$T;a;kw^*r-&K1qknnfD8ek&~ibnU2m%*tPB!YVJ05
zg*7=6b>XS8{+?oT8cZE>bU`-gBmW%+jF5PGYn=Xam6WuaGFK+3SJfB1g;n|yRyBJ!
zN2T+pA*gSx$-v754U9-g%Da=bxj>6Yy&-{F3*YeHE02bV!ZzMmg`NG+=&(OWsoLj&
z@<9yA(oQX54+tbO`u7JWBlEK44G(*Qi8^PZ_;qa<R#VQXd2Izs49i!3!yF79iFRqY
zalv%!(HlY2h#;(prq-ARjH%zuDKhGuXokQe<_}_(f9JftilGs8^9(>K%wjnVd&9f4
z0*~bY>D&a>;&Nk?h={+|C7k3><;fmCR$|WS4c{-lCcsUMO@??6IxQ(5MzkdeG7f1R
t%cNvXy9N;akucu_881!i&1;U7pN>Q4(kWOY*hH3Cx){B2GHjtM^T!F>YvTX_

literal 1615
zcmV-V2C(@6M@dveQdv+`0J~U+lbo|<oM)7{<KUrPDSL}B+MKmz$EMbAl0ec)AwHYn
zGMqTSn&ghf?CF$%ndD4jNvumV0Jwr)%=Se`jEuyA8wJ)(oY*;OGw`)$?$H=wUCu_*
z#Fy6}0~t4a?dbyT>m<+I(5`rCT`)Rm(~kL{0#-UPIs>bH_M(cJmyE8ie`7DUTf~b)
zRYxU^HYoknWa`*oNKa-(6qFD}?-z%3PX<<D_Yt*gZsXD^y(jhaKNTKzrWas)P+fMR
zzM5e;a(DKXMQM)tc+U!*cf%A`3N|p5xv#l|H@aKg)8{I}BG&yR%+E=XqJ2X1FnnU7
z3k4BEof%?(vKny^Y6^^+5#V~aXZgTzftJ~KbPBBb=A^&>c5z?ZqzYv6jdUKlqZ7+F
zDWXfoMPHIwmmy@R{gQn)qGTo38CCNQ80kS6M$m*>^7FMLyAjOE)XdTW6%g~Li}t5y
z%aQwa&o4-9tP+lszmETyc(^s{OX4ZJHT(+P4U(;VC<MkRr37h@3ROm_2*aE|YJZgc
zh%mf6C{F}7tv{FNG(xyx==njy4S7Ni%5J8y49Aw*i#|R5O#`WQZtZf83DeEXBwxPE
z{jThD!fgqxr?w0&O02G{F@~YXl|b+IjcAj?MSh0*UcR^bti2l;4mTr_fmnL%f^hXN
z3v+_YuZ@&E+z{x-{I#~?U%Tt4ug*RteUVYF6~gDUJooHw+NRsdc(AEdwmCK3pCK1~
zrG|?0876hV=kPp7)k<tN&n(>evplZLYp*%DbPQ73P$;y&nQ<u2U~ad@p@YWwU|m?I
zbCWXx;Zu^DfR=oYFADyaBw8+;?QOQ|IRfEvH|gkq@j|fw-tRJVZ%E*eR`>3;nzWo`
zq(AtEzYU{aLL1-LHYghh&;OKY*3G1Ny6npp!=b7bZDf~wn0NT53gZYtT4Rtz(-~yq
z#C#;kI+0~i6(Vwph|Seg(2eb2R6Ub@CKz3hc#jA*CrJIAUj@>Hnd5exAWq_2pEZoN
z%DKre0mBZju_>XiMq*TEE74NEKgAnj=d_7`lcUw#As^5}jS<z%<wbwOfbt8b7Uv?q
z`X`K`>MTTZ^?(^f-Qzs~jHP|)b8)vdeM#-m)3UL-ayMF;*4(%oH&k>7v}<(64l&$Y
z0Iablk1kiXrvM$|KGMEV(;N2$BKxXs`6Dh&nUaV$%1}Q&oEe#n7n({VM^c!V{#{)S
z_SUbC!AM76IBdsKS&jDsR5-NF-1IOZ->crM1n6&voU5PbZ_H-{XpUyTP0{LptMOsQ
zQqp*(nZ_yNS;Ox1)#irS4ml&!rK|g;qts4+iG0XIc|hH*^Q`2V)td=4U<W6x(d?Z=
zV!?p%2?-~77n8@Zyp?rvDwhK`!KD`K)F1P)1_+aJ6;cjP3?*C2Qu-L@t+BE#aT+X#
z+KWc{ShD&(>ST*uH=ipTwThu{m|vgo$L1C3^O?sf4KCa8%6<v~w2Rae_G9=live(0
zML9MYnbtxDjhY@Y;I5KwbQtL8pfr|<v)%8%^JV!BG$!3}qcLpmjJ8a`J5{l4*<T(|
zk`fF5qw%_tm}9m!!V_iuTI^OsN!N?7W`*R;Co$W0=eBwg_Lc}@!gn1>*~^gVmeSB&
zAC?xxNnG$Ugz<uC1o+8*6B0jXHv5ew7{_fV`XpT}6%t`k8BCZ)VG#oJ5lRt6lFpXw
zTE_8KEXP&YRZT9C!TJUJ{F7CC9PQ>-+(2B8{OMy*13O|L6aKnAidHCJ`V5k)5wrj~
zD<68p);T((YxNna+TQZ9mE-N*loo>Sdl=eB(HEu~P(D7kjB)>;vpM;tx01{lVCzZ?
zTH8*Hkhvs@1xs+Lua(}|7!mw_YM3=?3ie3?Om}Tsg=kSFVpoH%|9xo9DZP@TVawY&
z!=Q+?1_ggCoglO8E}>JKOdmcO6*06Nf6^)sH=A5XZnHcWzX?INwn{KkkCK8JWW;8f
z;R(15N|t9X5TITpQG*l+F9RNK6^s`yk^MNcy*?$?8DRZ$%A1;S*FCjU?9{bts7~~s
z4i+y4Gv4qWaxi9;M-QPHQpWt{_q6UxfCIyJj8${d%k)B>P_JrvdNmIR=MNcb*?*Ej
NY{iHnMu-5(pVJ}aB%1&L

diff --git a/nixos/server.nix b/nixos/server.nix
index df3a8d2..a9f67fc 100644
--- a/nixos/server.nix
+++ b/nixos/server.nix
@@ -21,7 +21,6 @@
     ./server/acme.nix
     ./server/ddclient.nix
     ./server/docker.nix
-    ./server/element.nix
     ./server/firewall.nix
     ./server/gitea.nix
     ./server/lemmy.nix
@@ -33,10 +32,14 @@
     ./server/nginx.nix
     ./server/owncast.nix
     ./server/pufferpanel.nix
-    ./server/synapse.nix
     ./server/tandoor.nix
     ./server/vaultwarden.nix
     ./server/misc.nix
+
+    # Matrix
+    ./server/synapse.nix
+    ./server/element.nix
+    ./server/matrix-discord.nix
   ];
 
   services.openssh.ports = [ 2222 ];
diff --git a/nixos/server/matrix-discord.nix b/nixos/server/matrix-discord.nix
new file mode 100644
index 0000000..344af0e
--- /dev/null
+++ b/nixos/server/matrix-discord.nix
@@ -0,0 +1,18 @@
+let
+  secrets = import ../modules/secrets.nix;
+in {
+    services.matrix-appservice-discord = {
+    enable = true;
+    settings = {
+      auth = {
+        clientID = "${secrets.discordBotID}";
+	botToken = "${secrets.discordBotToken}";
+	usePrivilegedIntents = true;
+      };
+      bridge = {
+        domain = "${secrets.jimDomain}";
+        homeserverUrl = "https://matrix.${secrets.jimDomain}";
+      };
+    };
+  };
+}
diff --git a/nixos/server/synapse.nix b/nixos/server/synapse.nix
index 1b76a42..515c763 100644
--- a/nixos/server/synapse.nix
+++ b/nixos/server/synapse.nix
@@ -32,6 +32,13 @@ in {
           require_transport_security = true;
         };
 
+	# Allows a Discord/Matrix bridge, comment on first use and copy using instructions
+	app_service_config_files = [
+          # cp /var/lib/matrix-appservice-discord/discord-registration.yaml /var/lib/matrix-synapse/
+          # chown matrix-synapse:matrix-synapse /var/lib/matrix-synapse/discord-registration.yaml
+          "/var/lib/matrix-synapse/discord-registration.yaml"
+        ];
+
         # Disable registration without email
         registrations_require_3pid = [ "email" ];