From edbf958227e88a4df4480458e118683583551a83 Mon Sep 17 00:00:00 2001
From: cy <hi@cything.io>
Date: Tue, 17 Dec 2024 02:39:04 -0500
Subject: [PATCH] bring conduit here

---
 hosts/chunk/conduit.nix | 40 ++++++++++++++++++++++++++++++++++++++++
 hosts/chunk/default.nix |  1 +
 2 files changed, 41 insertions(+)
 create mode 100644 hosts/chunk/conduit.nix

diff --git a/hosts/chunk/conduit.nix b/hosts/chunk/conduit.nix
new file mode 100644
index 0000000..a4546ba
--- /dev/null
+++ b/hosts/chunk/conduit.nix
@@ -0,0 +1,40 @@
+{
+  pkgs,
+  config,
+  ...
+}: {
+  virtualisation.oci-containers.containers.conduit = {
+    image = "matrixconduit/matrix-conduit:latest";
+    autoStart = true;
+    ports = ["127.0.0.1:8448:8448"];
+    pull = "newer";
+    environment = {
+      CONDUIT_SERVER_NAME = "cything.io";
+      CONDUIT_DATABASE_PATH = "/var/lib/matrix-conduit/";
+      CONDUIT_DATABASE_BACKEND = "rocksdb";
+      CONDUIT_PORT = "8448";
+      CONDUIT_MAX_REQUEST_SIZE = "20000000"; # in bytes ~20MB
+      CONDUIT_ALLOW_REGISTRATION = "false";
+      CONDUIT_ALLOW_FEDERATION = "true";
+      CONDUIT_ALLOW_CHECK_FOR_UPDATES = "true";
+      CONDUIT_TRUSTED_SERVERS = ''["matrix.org"]'';
+      CONDUIT_ADDRESS = "0.0.0.0";
+      CONDUIT_CONFIG = "";
+    };
+    volumes = [
+      "/opt/conduit/db:/var/lib/matrix-conduit/"
+    ];
+    networks = ["conduit-net"];
+  };
+
+  systemd.services.create-conduit-net = {
+    serviceConfig.Type = "oneshot";
+    wantedBy = with config.virtualisation.oci-containers; [
+      "${backend}-conduit.service"
+    ];
+    script = ''
+      ${pkgs.podman}/bin/podman network exists conduit-net || \
+      ${pkgs.podman}/bin/podman network create conduit-net
+    '';
+  };
+}
diff --git a/hosts/chunk/default.nix b/hosts/chunk/default.nix
index e655365..cd4550a 100644
--- a/hosts/chunk/default.nix
+++ b/hosts/chunk/default.nix
@@ -22,6 +22,7 @@
     ./grafana.nix
     ./tor.nix
     ./ghost.nix
+    ./conduit.nix
   ];
 
   sops.age.keyFile = "/root/.config/sops/age/keys.txt";