clan-infra/modules/matrix-bot.nix

{
  config,
  pkgs,
  self,
  ...
}:

let
  name = "matrix-bot";
in
{
  systemd.services.${name} = {
    path = [ self.packages.${pkgs.system}.matrix-bot ];
    description = "Matrix bot for changelog and reviews";
    after = [ "network.target" ];
    wantedBy = [ "multi-user.target" ];
    environment = {
      MATRIX_PASSWORD = "%d/MATRIX_PASSWORD";
      OPENAI_API_KEY = "%d/OPENAI_API_KEY";
      HOME = "/run/${name}";
    };

    serviceConfig = {
      LoadCredential = [
        "MATRIX_PASSWORD:${config.sops.secrets.web01-matrix-password-clan-bot.path}"
        "OPENAI_API_KEY:${config.sops.secrets.qubasas-openai-api-key.path}"
      ];
      DynamicUser = true;
      RuntimeDirectory = "${name}";
      WorkingDirectory = "/run/${name}";
    };

    script = ''
      set -euxo pipefail

      mbot
    '';
  };
}
matrix-bot: Init 2024-07-03 15:46:20 +00:00			`{`
			`config,`
			`pkgs,`
			`self,`
			`...`
			`}:`

			`let`
			`name = "matrix-bot";`
			`in`
			`{`
			`systemd.services.${name} = {`
			`path = [ self.packages.${pkgs.system}.matrix-bot ];`
			`description = "Matrix bot for changelog and reviews";`
			`after = [ "network.target" ];`
			`wantedBy = [ "multi-user.target" ];`
			`environment = {`
			`MATRIX_PASSWORD = "%d/MATRIX_PASSWORD";`
			`OPENAI_API_KEY = "%d/OPENAI_API_KEY";`
			`HOME = "/run/${name}";`
			`};`

			`serviceConfig = {`
			`LoadCredential = [`
			`"MATRIX_PASSWORD:${config.sops.secrets.web01-matrix-password-clan-bot.path}"`
			`"OPENAI_API_KEY:${config.sops.secrets.qubasas-openai-api-key.path}"`
			`];`
			`DynamicUser = true;`
			`RuntimeDirectory = "${name}";`
			`WorkingDirectory = "/run/${name}";`
			`};`

			`script = ''`
			`set -euxo pipefail`

			`mbot`
			`'';`
			`};`
			`}`