Enable Signal

2024-09-11 22:40:02 +02:00 · 2024-09-11 22:40:02 +02:00 · 32c28d8577
commit 32c28d8577
parent d870abcd3f
1 changed files with 26 additions and 1 deletions
--- a/hosts/iron/services/matrix.nix
+++ b/hosts/iron/services/matrix.nix
@ -2,6 +2,8 @@ args@{ config, pkgs, custom-utils, ... }:

 let
  ports = import ../ports.nix args;
+  signalPhoneNumber = "+4915566437153";
+  signalUser = "jalr";
 in
 {
  sops.secrets = {
@ -38,7 +40,7 @@ in
      };
    };
    mautrix-signal = {
-      enable = false;
+      enable = true;
      port = ports.mautrix-signal.tcp;
      settings.bridge = {
        permissions = {
@ -50,4 +52,27 @@ in
      };
    };
  };
+
+  systemd.services.signal-cli-receive = {
+    description = "Run signal-cli to receive messages";
+    serviceConfig = {
+      Type = "oneshot";
+      User = signalUser;
+      CapabilityBoundingSet = null;
+      RestrictAddressFamilies = [ "AF_INET" "AF_INET6" ];
+      RestrictNamespaces = true;
+      SystemCallFilter = "@system-service";
+    };
+    script = "${pkgs.signal-cli}/bin/signal-cli -u ${signalPhoneNumber} receive";
+  };
+  systemd.timers.signal-cli-receive = {
+    description = "Run signal-cli to receive messages";
+    after = [ "network.target" ];
+    wantedBy = [ "timers.target" ];
+    timerConfig = {
+      Persistent = true;
+      OnCalendar = "*-*-* *:00:00";
+      Unit = config.systemd.services.signal-cli-receive.name;
+    };
+  };
 }