diff options
-rw-r--r-- | ymir.nix | 29 |
1 files changed, 29 insertions, 0 deletions
@@ -69,4 +69,33 @@ | |||
69 | enable = true; | 69 | enable = true; |
70 | }; | 70 | }; |
71 | 71 | ||
72 | services.prosody = { | ||
73 | enable = true; | ||
74 | admins = [ | ||
75 | "gkleen@xmpp.li" | ||
76 | ]; | ||
77 | allowRegistration = false; | ||
78 | extraConfig = '' | ||
79 | authentication = "pam" | ||
80 | ''; | ||
81 | extraModules = [ "auth_pam" | ||
82 | ]; | ||
83 | |||
84 | virtualHosts.default = { | ||
85 | enabled = true; | ||
86 | domain = "xmpp.li"; | ||
87 | ssl = { | ||
88 | key = "certs/xmpp.li.key"; | ||
89 | cert = "certs/xmpp.li.crt"; | ||
90 | }; | ||
91 | }; | ||
92 | }; | ||
93 | environment.etc."pam.d/xmpp" = { | ||
94 | text = '' | ||
95 | auth [success=1 default=ignore] pam_unix.so obscure sha512 nodelay | ||
96 | auth required pam_succeed_if.so user ingroup xmpp | ||
97 | auth requisite pam_deny.so | ||
98 | auth required pam_permit.so | ||
99 | ''; | ||
100 | }; | ||
72 | } | 101 | } |