treewide: format

2025-01-19 11:13:04 +00:00
parent c3283314b7
commit ccb57f954e
77 changed files with 1487 additions and 808 deletions
--- a/modules/nixos/services/coturn.nix
+++ b/modules/nixos/services/coturn.nix
@ -1,8 +1,14 @@
-{ config, lib, self, ... }:
+{
+  config,
+  lib,
+  self,
+  ...
+}:

 let
  cfg = config.modules.services.coturn;
-in {
+in
+{
  options.modules.services.coturn = {
    enable = lib.mkOption {
      default = false;
@ -21,24 +27,28 @@ in {
  };

  config = lib.mkIf cfg.enable {
-    networking.firewall = let
-      range = with config.services.coturn; lib.singleton {
-        from = min-port;
-        to = max-port;
+    networking.firewall =
+      let
+        range =
+          with config.services.coturn;
+          lib.singleton {
+            from = min-port;
+            to = max-port;
+          };
+      in
+      {
+        allowedTCPPorts = [
+          3478 # TURN listener
+          5349 # STUN TLS
+          5350 # STUN TLS alt
+        ];
+        allowedUDPPorts = [
+          3478 # TURN listener
+          5349 # TLS
+          5350 # TLS alt
+        ];
+        allowedUDPPortRanges = range; # TURN peer relays
      };
-    in {
-      allowedTCPPorts = [
-        3478  # TURN listener
-        5349  # STUN TLS
-        5350  # STUN TLS alt
-      ];
-      allowedUDPPorts = [
-        3478  # TURN listener
-        5349  # TLS
-        5350  # TLS alt
-      ];
-      allowedUDPPortRanges = range; # TURN peer relays
-    };

    security.acme.certs = {
      "${config.services.coturn.realm}" = {
@ -47,19 +57,26 @@ in {
      };
    };

-    age.secrets = {
-      "passwords/services/coturn/static-auth-secret" = {
-        file = "${self.inputs.secrets}/passwords/services/coturn/static-auth-secret.age";
-        owner = "turnserver";
-        group = "turnserver";
-      };
-    } // (if cfg.matrixIntegration then {
-      "passwords/services/coturn/matrix-turn-config.yml" = {
-        file = "${self.inputs.secrets}/passwords/services/coturn/matrix-turn-config.yml.age";
-        owner = "matrix-synapse";
-        group = "matrix-synapse";
-      };
-    } else {});
+    age.secrets =
+      {
+        "passwords/services/coturn/static-auth-secret" = {
+          file = "${self.inputs.secrets}/passwords/services/coturn/static-auth-secret.age";
+          owner = "turnserver";
+          group = "turnserver";
+        };
+      }
+      // (
+        if cfg.matrixIntegration then
+          {
+            "passwords/services/coturn/matrix-turn-config.yml" = {
+              file = "${self.inputs.secrets}/passwords/services/coturn/matrix-turn-config.yml.age";
+              owner = "matrix-synapse";
+              group = "matrix-synapse";
+            };
+          }
+        else
+          { }
+      );

    services.coturn = rec {
      enable = true;