surtr: matrix: zerossl-cert for coturn

1 files changed, 2 insertions, 1 deletions

diff --git a/hosts/surtr/matrix/default.nix b/hosts/surtr/matrix/default.nix
index 1e923410..ce8a0831 100644
--- a/hosts/surtr/matrix/default.nix
+++ b/hosts/surtr/matrix/default.nix
@@ -31,7 +31,7 @@
       tls_private_key_path = "/run/credentials/matrix-synapse.service/synapse.li.key.pem";
       tls_dh_params_path = config.security.dhparams.params.matrix-synapse.path;
 
-      turn_uris = ["turn:turn.synapse.li?transport=udp" "turn:turn.synapse.li?transport=tcp"];
+      turn_uris = ["turns:turn.synapse.li?transport=udp" "turns:turn.synapse.li?transport=tcp"];
       turn_user_lifetime = "1h";
 
       extraConfigFiles = [
@@ -155,6 +155,7 @@
       "turn.synapse.li" = {
         zone = "synapse.li";
         certCfg = {
+          server = "https://acme.zerossl.com/v2/DV90";
           postRun = ''
             ${pkgs.systemd}/bin/systemctl try-restart coturn.service
           '';