From dd2f880a3b5eb00f0d60d41e0b60762a50eab0ae Mon Sep 17 00:00:00 2001 From: imxyy_soope_ Date: Wed, 20 Aug 2025 21:05:54 +0800 Subject: [PATCH] feat: mautirx-telegram --- config/hosts/imxyy-nix-server/matrix.nix | 47 ++++++++- dae1.dae | 124 +++++++++++++++++++++++ secrets/dae-imxyy-nix-server.dae | 6 +- secrets/mautrix-telegram.env | 13 +++ 4 files changed, 185 insertions(+), 5 deletions(-) create mode 100644 dae1.dae create mode 100644 secrets/mautrix-telegram.env diff --git a/config/hosts/imxyy-nix-server/matrix.nix b/config/hosts/imxyy-nix-server/matrix.nix index 3d83aba..02049dc 100644 --- a/config/hosts/imxyy-nix-server/matrix.nix +++ b/config/hosts/imxyy-nix-server/matrix.nix @@ -4,6 +4,9 @@ ... }: { + nixpkgs.config.permittedInsecurePackages = [ + "olm-3.2.16" + ]; sops.secrets.tuwunel-reg-token = { sopsFile = secrets.tuwunel-reg-token; format = "binary"; @@ -22,17 +25,21 @@ address = [ "127.0.0.1" ]; port = [ 8094 ]; server_name = "imxyy.top"; - allow_registration = true; - registration_token_file = config.sops.secrets.tuwunel-reg-token.path; well_known = { server = "matrix.imxyy.top:443"; client = "https://matrix.imxyy.top"; }; + + allow_registration = true; + registration_token_file = config.sops.secrets.tuwunel-reg-token.path; + turn_uris = [ "turn:hk.vkvm.imxyy.top?transport=udp" "turn:hk.vkvm.imxyy.top?transport=tcp" ]; turn_secret_file = config.sops.secrets.tuwunel-turn-secret.path; + + new_user_displayname_suffix = ""; }; }; services.caddy.virtualHosts."imxyy.top" = { @@ -56,4 +63,40 @@ reverse_proxy :8094 ''; }; + + sops.secrets.mautrix-telegram = { + sopsFile = secrets.mautrix-telegram; + format = "dotenv"; + owner = "mautrix-telegram"; + group = "mautrix-telegram"; + }; + services.mautrix-telegram = { + enable = true; + environmentFile = config.sops.secrets.mautrix-telegram.path; + settings = { + homeserver = { + address = "http://127.0.0.1:8094"; + domain = "imxyy.top"; + }; + appservice = { + address = "http://127.0.0.1:8098"; + hostname = "127.0.0.1"; + port = "8098"; + bot_username = "telegrambot"; + }; + bridge = { + username_template = "telegram_{userid}"; + alias_template = "telegram_{groupname}"; + displayname_template = "{displayname} (Telegram)"; + permissions = { + "@imxyy_soope_:imxyy.top" = "admin"; + }; + }; + telegram = { + # borrowed from https://github.com/telegramdesktop/tdesktop/blob/9bdc19e2fd4d497c8f403891848383a88faadc25/snap/snapcraft.yaml#L134-L135 + api_id = "611335"; + api_hash = "d524b414d21f4d37f08684c1df41ac9c"; + }; + }; + }; } diff --git a/dae1.dae b/dae1.dae new file mode 100644 index 0000000..0ba6ae5 --- /dev/null +++ b/dae1.dae @@ -0,0 +1,124 @@ +global { + ##### 软件选项。 + + # 监听的 tproxy 端口。不是 HTTP/SOCKS 端口,仅供 eBPF 程序使用. + # 一般情况下,你不需要使用它。 + tproxy_port: 12345 + + # 设为 true 来避免意外的流量进入 tproxy 端口。 设为 false 以配合用户自定义的 iptables tproxy 规则。 + tproxy_port_protect: true + + # 若非 0,dae 发出的流量会打上 SO_MARK。 这有助于使用 iptables tproxy 规则时避免流量回环。 + so_mark_from_dae: 0 + + # 日志等级: error, warn, info, debug, trace。 + log_level: info + + # 禁用等待网络以拉取订阅。 + disable_waiting_network: false + + + ##### 接口和内核选项。 + + # 绑定的 LAN 接口。使用它来代理局域网设备。 + # 多个接口使用 "," 分隔。 + lan_interface: podman0,mac0 + + # 绑定的 WAN 接口. 使用它来代理本机。 + # 多个接口使用 "," 分隔。使用 "auto" 自动检测接口. + wan_interface: mac0 + + # 自动配置 Linux 的内核选项(如 ip_forward 和 send_redirects)。 + # 参考https://github.com/daeuniverse/dae/blob/main/docs/en/user-guide/kernel-parameters.md + auto_config_kernel_parameter: true + + + ##### 节点连通性检测。 + + # 如果你本地网络为双栈,URL的主机应该同时支持 IPv4 和 IPv6。 + # 第一个是 URL,如果在其后填写了 IP 地址,代表对 URL 中 Host 的固定解析。 + # 考虑到流量消耗,推荐使用具有任播且响应简短的站点。 + #tcp_check_url: 'http://cp.cloudflare.com' + tcp_check_url: 'http://cp.cloudflare.com,1.1.1.1,2606:4700:4700::1111' + + tcp_check_http_method: HEAD + + # 该 DNS 用于检测节点的 UDP 连通性。若包含 tcp 的 DNS,同样用于检测节点的 TCP DNS 连通性。 + # 第一个是 URL,如果在其后填写了 IP 地址,代表对 URL 中 Host 的固定解析。 + # 如果你本地网络为双栈,DNS 服务器应同时支持 IPv4 和 IPv6。 + udp_check_dns: 'dns.google.com:53,8.8.8.8,2001:4860:4860::8888' + + check_interval: 30s + + check_tolerance: 50ms + + + # dial_mode 选项为: + # 1. "ip"。 使用 DNS 查询得到的 IP 直接发送代理。这允许 ipv4、ipv6 分别选择最佳路径,并使应用程序请求的 IP 版本满足预期。 + # 例如,如果使用 curl-4 ip.sb,将通过代理请求 IPv4 并获得 IPv4 响应。curl-6 ip.sb 将请求 IPv6。若节点支持IPv6, + # 这可能会解决一些奇怪的全锥问题。在此模式下将禁用嗅探。 + # 2. "domain"。 使用嗅探到的域名发送代理。若 DNS 环境不纯净,这将在很大程度上缓解 DNS 污染问题。通常,这种模式会带来更快的 + # 代理响应,因为代理会在远程重新解析域名,从而获得更好的 IP 连接结果。此策略不影响路由,也就是说,域名重写将在路由的 + # 流量拆分后进行, dae 不会重新路由。 + # 3. "domain+"。 基于 domain 模式但不会检查嗅探得到域名的真实性。 对于 DNS 请求不经过 dae 但想要更快的代理响应的用户有用。 + # 但是, 若 DNS 请求不经过 dae,基于域名的流量拆分将失效。 + # 4. "domain++"。 基于 domain+ 模式但会根据嗅探到的域名重新进行流量路由,以部分恢复基于域名的流量拆分能力。对于直连流量无效 + # 且会占用更多的 CPU 资源。 + dial_mode: domain + + allow_insecure: false + + sniffing_timeout: 100ms + + tls_implementation: tls + + utls_imitate: chrome_auto +} + +dns { + ipversion_prefer: 4 + upstream { + cf: 'https://1.1.1.1/dns-query' + ali: 'udp://223.5.5.5:53' + local: 'udp://127.0.0.1:53' + } + routing { + request { + fallback: local + } + response { + qname(suffix: imxyy.top) -> accept + qtype(https) -> reject + qtype(aaaa) && !qname(geosite:cn) -> reject + upstream(cf) -> accept + ip(geoip:private) && !qname(geosite:cn) -> cf + fallback: accept + } + } +} + +node { + mihomo:'socks5://127.0.0.1:2080' +} + +group { + proxy { + policy: fixed(0) + } +} + +routing{ + ipversion(6) -> must_direct + pname(mihomo) -> must_direct + pname(easytier-core) -> must_direct + !sip(192.168.3.2) && dport(53) -> must_direct + pname(dnsmasq) -> must_direct + dip(109.176.254.67, 38.207.175.172, 31.57.67.74, 111.173.106.225) -> must_direct + pname(systemd-resolved) -> must_direct + domain(suffix: bing.com) -> proxy + domain(geosite:cn) -> direct + dip(224.0.0.0/3, 'ff00::/8') -> direct + ip(geoip:private) -> direct + ip(geoip:cn) -> direct + fallback: proxy +} diff --git a/secrets/dae-imxyy-nix-server.dae b/secrets/dae-imxyy-nix-server.dae index bd3ca78..efde2c7 100644 --- a/secrets/dae-imxyy-nix-server.dae +++ b/secrets/dae-imxyy-nix-server.dae @@ -1,5 +1,5 @@ { - "data": "ENC[AES256_GCM,data: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,iv:0VfiEdD+NonWpNcBYjBglJ8hUvys25TpaszxGiWwiks=,tag:gsM+PoDMrMJkhynf1phRXw==,type:str]", + "data": "ENC[AES256_GCM,data:8Akn0tVySw3i8wM4fp59dJ2o7TE8tranYtgDdGGnxB1ROBohuEcDdZF7KgDc622LMoN75tZIaV/7i/RuakE8JiNpghxErBFIdPfxPur9733sqVEaawUYSdz4W/qAx3Uvfh5B2mzM7sl1gmgEI2mQzAye2PBas6xEq3wcmxDojDLYu1Qsw7Of7UGZx7WfCjwoO4camNlwk1pdF0tgwWFYYw+knul15jS3ZnLDeguL1cP+SjoK9v9kMziUnOXSaQlQc5q6tZBbdR69XXyjSOuqmnBGtZ0Hih3U9cmGHjg6Ta8Xs3CBCJ2cHtGaHvu7P5xghDN2TmgnRmtheiYOgYTogrEocyt6HN3LU0RzlgqFZjDWydlDVzT4HDOPIrZ2MUEkeuI4faQGXN+861qAqCS47tI5bacU/xnwrVosJTy16vDiEX66AjApr8NTMVlp6N6vzWOjVoJwpyyq9daeYPdPIzfH75jLqAtUJm1dzgaiBC3WYA0nYefk3Pk9KU4yoBCyT1PqK0klppKPsHAYr8O5jtyD/Dg4rKN0YIVEZJeLunnz/7OeErJQW13dJGnwxzRBv8rA5AjusPmY/R0NMIUBUHZakB9k6qpC3hfFPeV6M4kMsoxpO2EcWYk2Vv7jvHjeOqgJf7SsVizTjwGZX/b+mAeZun5lPI7d4Z4WjCNbXCpGPamx8zWm4VBqYdH4lvsNk7DrymO0tcDrFQmb8ifR5NavP5BvwxRaVd1NzMF2RyZ+Cur+DtQfKgB/DezdOC7FU7zjpRfODKhiLkQSSasOgnEhw2C9kRAQQsCET/NYkGEohq6jEqIq5cImWa35SxcVRGIvEetoH5t79zTqxb7CAiwgU8bMu3bLN/xb+azvfeXe/JBoF9AE5YPafq/XNPl3uWdGKzHcJmzZiX/0k+OoVLimbwHIHe/15zbkrC9AvSV+NA2UGfEP0+e+HuEagi3xPhZiiuh5Ke8YO23Xa3inTKmDNdOrZqMqIS3cScPDACjt628GU4ILmETIKbTltMwd37w8C9khXMkqoUPg/eopi7hRRbyMA8611iG9pI2PCBs/wxGpjejhlwS6QFn8HQo09sHH1PXsowTd45wnysjZwbaKsqNziVuPTMLYm0roiUjKVFn/Ytj05ddRXOzTasBCL1K/RlY4L0KWrgVqS4KUdr2uRurQB4z/DnyVa8PXPKxCAa6yBEYcUpqBwApuk15uq3YZhS1QaqSBARJSB2SnVug1wKOErTcZdVU0H3Br5zVLWefXcAnfy8TUzsMx/4hPJHrqOTGocEuZz2C9r3vSD4WY3swOado7lbJII3eB0i5C7jSSfZnrxZfQ7CVYcsHmkXZX1rTkab8cmJj3jcBi0mZqd8ks75m94mq+d3sCDNwNKK3/VxtGIRmLc+EFl5KGwPMmLRTSS+KYerBmVKq1ElYrVCdNWc+1KA8hs1CTX+C2rhpgEVibOJUafSne7Idxqm/jcnfZFSLHWokNp7SH3BggGD5SGRuR3O+y99d/PyIe0e3jeDp6TLXRzJEBpmgaRDW/YeOl4zEEmrJ6pSkANAH0UWHVDUBaC6NbczvnXSav2dwPhZoIEr14YrX4BiqEtz3FpxhaG/tb1spwYpCfBZre5SOV9gtRGhy/fFJXVeAaTsjyS9XIipkVU6AMVmBFnVTJt7NH9Zp1ysnROi5U/Rs7buW+mWeLJDmVDaINwAfCoIdGy6dERX0cp7QzBMx2820Ehd4piFqX9JiyZvlkZJ83slGR2BmeIA/0e20Vb/5zSgRmFWxFuqB+Ynxg77+Fw40IPfASoxO1vAtpqJJaV/zjKNrvmsEjnTLGKpNFXD/NRw+wCJTDUfo6SlV8VgYwWxMWWWF8B6BNBuNoDuTDfPIAg8iqUKelWljF7mDStlW0Y3Az8mC3D+PXscVrrmD3ZjN3JeghyNrHuNT2Srtzm5MEpREiW24okOP5JnAuwL/ttYR8Jwdi5h5xrWqX+9K4Ny9uV9zbGwpclmcGhZjKVcXSkL8E6Jpjw5WGdJxoziYJux/XzHdwD3Pe/klsaMeRWcfZdu0ioNitKGT09TxdmoiBAeVZ2i7+Iz7DpKwIibusMsmEaWiW7Cnn3CqwAngRVkwYtIJN8gPvjihTVpY7DA7FV9rRSHvLn9eNzBR/Uyrc2HATUexNlxo9ehBCuyfVldh1X2RqO4iMTQaS2vXEbu/EwYi5NiFtM9RJRNzCXDH9F5+lfG9WJh9CIwGpZelqW6nmvVqUps9KpKO2fd6uiLIxlpuXje3TfhBOcXYMMj4sSm8usJNkzek/SUilNBOeWOFJuQ+G1l6EdcCkqn5TM6gbEH85rT6dcjne9c4kE1AgkrhV2KuDX18vLeYuuvpVCBKLgdHC2E/43Mj0kvUkx1QQ1R9voHpMldqNBFXnslmGOuGbqKbU38IPUuBCMKEZ/F7wh/s2+uYpow21tXGWs5yRPdunCoUcUdPR3O1lPEBUU8qPs3T2ge7gWFQ45M/U22XDqpXfihFw2tRNj2XoFImV7svnXwLU8r7YsUg4z8i/h2i7uEe4+b0tEmo707gfiT/NafqPxV6uatCJpoAAxoF5fgdq514efjX8phye/IIjhHHQ8PZxT+JczFwFrXOCX1CO+aD2t9Urwgx1MnG3PCV1iEATOrxmdaXGN3fOw4br13lT4b2zy71yHVPcuA3TZMK8js66nqr/85PZh9+/jc+M/gdCz+R8RLZEvHC0sGYgdSZ/I84cOTflgvaKPkNPxO3BbTWu8gha1/g/v1xw8yzVoEsLakr0y0Wohi0N3tfuH5z02D2GBwGGHyoaCuoT0oTe1Ucf2hwdEVmgI5vLEoIE5OK+n3hPXQPqilfjVz5ygNwdRYv5r9tfbcrn5mu6CanyVTClIDA2cIUIslYp0flnscEOI60+7J3y9i8I9PGhjSdjgt9ERjw/R+i2k0qMw7mjjExssOqD1uoC/5Z0kVSHZAHcEC4ieRUnmkGlHGuDqe5OUXaX7KORWj8K5ojRAaeNeP/IfcMnmXMsrTP4jJqN5hlw0FNc44YlhRsjXdZZ57WPhZor8K49qRm0EXKsR1GWQPPBcU9Cop+0b/WBJ54AmGNvnfyxlPAnNa5fXqHPu9xQa5rDcNskumtG+Oac5Hh72P3YVlsXICFzM4WAXuFPCVt9zfwkoJSozML8mx/7+HK/K4qahpeagkVuYDdQDfkyk1/Dc6up8ivI3EW15Kaymdx4BqS1Uyvs3dLgWg83rIFVXtUnET0z8I4bDXnuDz7Y6SJWHZ++Qrul6sLhw4j2Q6DCW+5IqrSlq97VFGTO/Am2QZOjOT/1azGxvn2qsWs/tbgUH2fh8z6Sho1QfyT3c71HmGAyD7wIqz8co7BbqHoCNK2xLTDP8Ao1Vib9AoxHUsJ0wXIQu6xdrzwbEDnO1ozq5rNtOwXrvx7Eh5Cx+nBTJ7O0OjnSsolOXcMhQwIaazFRcPVfJiAYtGMRSw9ILvSwNC6W9IncIqhNyrm2ZKqNfTq7yQ46uDvIe2gi8lfA5s3BJvIWMlQ3ekZXIYmQvHHX3CnXbOy5zAlqsmIMpw3xJU7oCHDtHu5bYwjh/4R0oX6fJP+jZmeVs/L+pSj7R+b6AMmVHYVJtXuRqN5ft1zeU9td49kgJnn1J5NV6FdPTFpVgORjrB9KwZWjzt8g6oOQDdZZmjEQMFJbQ8mQQyHxDNeSgX91okUC9YjCAzqHiHsg0H2t8X8BQmocrG76QpiDrjMu3ZnWbzR8MJjZ0mR6SPMqj7OihtIZVz7Lr1re3zwsPmq9XWKXw1NAF8mCivCGFW7CfKBpSKZlp/wwgDtdmO6X14d43sIwqsqZSZhJVQBMMwoaS/nnQO277JcX3tFrJUdme1eQCmPVFVyHFsQlEmEnE90ngBZOfiloVuzKdSJ3Sv7N0RD8wHhd3t1Qa/jnRr/nUhc/79uGoCeAnqGNw0+pQz/dDSGTpQtjmNzb+Lo8E5wmn2G3HMKqlXoqsdasov2xDhnpPZ9CATBkr+zIsjawhGq6P2gGnrrvhzbgmTnfYfkbnccrgpOMIP6VNVpZ2vdpts4GkeiXUQVIkxypOyPl7R655Rr1O7iWWxjOb1OiNVHu6y+EGM6z6hYSE5AJx4A6rVMZjNSOR/duYH303wSzv8qt13bDEmWFCdMf+sv43cwqNcwn22SWxLQCkrpeoZhtoch6ofBfZZglDS8kMPoY1dTPGWcX5x8MYmAttLjL1vXXdvOCOJorzy8orPycTu6tUcI84WoxgWsemAcz4TL4h5uiBf08hAh/h0yuqPvc4HC5QVoQLJrioVwastn33SdVhz2AqfYs79dLtboZ33AWi0kxmP7/Li0Sl72Vx02n16szoPwuG+QKx56oAW6BXCQMIZkCtTYOSYQcIPSwglnoKRJlxr0wOS+ICaAwJ05o54Mdmsj+R+AisFR/MqRrJOi9HlVXTVaLUhHTX1xiOzOdq+R6mNCF8SKiNG8VnZG2ccj6qoDk3dFFR6kt4YSRZjVJq33S9c/xmXVOHqf82b9I12366NDYcWhr9o/l02RdOfD6vC59x2C2dpZtCgjA6Ps0ENpesrsTyH0d/E5TmkmFyDWxCgzOfvQRMl08UC/BjOJDP12c/FFyqPUhd9CK9Upyrbl2VecK+Uh+qxGsfqrWhEiSFDfGOFXd/vVrmt7Tp0xL2sEHCi5r2GjbHdIaTWux2I3AVoYPCe+TjnM48Q6U+omefTJfppHb/Gzyy8OyRh2FpeBHrwHefxS6q96siUnq42rmDxatC/4N+esAIeqxFaDraB63RVKGXU6oaDcZeRD+A6vLq0rrIbOzYjKzBesgIaXXe9bOq3xPW2+WcA7D6yK6B3M19KPqwaoCXGz8sJ09GWBV7S20gwwkqHNajaIwIRqZSpvFLPz9UwflRPeeF+FLGu/BKhSy/1CXVdVqX0cPOjpMpMwuDXb5LaCKkoo0I+DJOoMlWwKITsv6qEkn4685ojcfAfDBcpA4E7n+Xi4ijziqHt7Vd0BKSpq2sPwOVzGvgl0cMGSo+LOUg54bNl0MR7/LoI6YXIYOFeyAvnxn9W11VhkXVHKvRwvRtGFQtJ+0ypbq17/ZU3Y5bDbh4HlwkGuwEkbMR/LpDb2W3/8p28rMNJPl/BKS5OQhv0lg4RjRaR2AIlwUNSyhUj7SJ1MTOuB6LbBf/C+3UdhkEZrUJRg1IZ0F0yVjX5qKGnDsMP4VCDTDfx9B4VpRkoMyQiBM7eMU09ALekdM2Wt3UVx0IpOLfDjYCnsIqvlK6ZkxgOEpJVfn5PvcmsHIeHt4qPO6ep7Jt2nOifgCIb2v2qc8yZNJ+MBS05ceIhGtpAkJywECNy0tNr/W0OdmwdXS3wxfKf788dkmmiYxtdvYGxedl7JIfJn6dzVWw3IGv4cP476qiKn/xpDu2bRFoggB7PISHJAIW2rualpA1KgI4h8SPw7IaTAO+SmZrJSzZEVKA3xFeUPqGjdCM0FF2hfEs/vIw9KqVPfCm9Tie1s4QLsq/HbsJwuU/62iUjtmt0z8+Bg5RGDVmCUo7sTWOb9w6N3LwliCzmcviqy3fiUUcVa9KZ6k9jX8zY/EOlnUemLwFLjJjb++DzFlj9Os6ywdzGJ70zzV7/0+iz2Wd+FF+ODwcwpBWQWn9XSCQCXr7q+B7on81rma6gL1bw0pY0soLORpMQst5rLxgsn1J7r9hR3oJrxtEU5oW+34F6YD27gG5RjTX0dIJada+MzJwN6J4sDshWFGIYa0mp9I2btWpLGKQsbSbke2EKPJ1/5HopCNPOVb2PsVsZT4FSX8R2I8gXF84EArCFDHi4WnSQ98ZbdOsHGXjjNnV0vGPRV+/N4m7rHeuQNw+DDEv4ipOGdb6cXg4cRcNWEJgTLc2R0b/a6qNjs50ptLXbfnqACPWYYBdoWzbys8Rm/eet7Y+gviPEFZr9gIa+V8RVKxVTVmfBdZ/Vs8lAqPl7CqlXGbnqmEgnRc8yMdDStNVUwVEXLbSXTwytITngmFyq8dXYlz0kIOUN0/PU1vsXNZGCJpp4IZqbmrklBejv3GR8uMzuFBia3/oudeAjpdP1NMUxrKz4i7EM0r6y08dpP3XJm7zKoWQfz6CNDAtoncgbrnKXacB8MS23+fj9tgRweBXfgD9tgrnzbMWmKyL1gBBFCDuwu35doY+/OIQsIWAnvuxRKhdl5scBbz7Y3QlJjN3C7qIcEflGwkmYy5GFRm+lOzUllP63oQd2H8s8dkkipNLZt2gjt3bFrPojWqMz3NTBUjX+rmi0HmYNhV5bkmkd+Ev4FuQ3aQu+Q2+IxYJMunRBqEyUnc/gjeGb+MzKMqfg==,iv:hWeZKFuL7VlpybakzVy0ge5SZZ8CY2WBTdfgHrOWfXQ=,tag:A5gzsy48DlbEJ7/x3Qvq2w==,type:str]", "sops": { "age": [ { @@ -15,8 +15,8 @@ "enc": "-----BEGIN AGE ENCRYPTED FILE-----\nYWdlLWVuY3J5cHRpb24ub3JnL3YxCi0+IHNzaC1lZDI1NTE5IFhGYmtrZyArQkg0\nMkdBbTdQNWdXRFRxK0NUS3Y5NXE3MElqdWN2bjdxdVZBN3dSMFJrClMyS2FxZVFQ\nOEFjR3B5RVZwUWltSjdoTFRpc0VJcTkyOVRXWmdGT3N0WnMKLS0tIExSZWtSSFox\nVnFvNy9GcEg4ZkM3ZmQ4T2VzVHFuMUw3RkFRVlQ2cEZmNGcKWuK7dtmMWQ77/Uyw\nesW/oM50irkONmxTKOggpo6gmJ9YvOPRHybvBwOifIIRCj+dvKFC/a0wAhgfpDcP\nMXEfPA==\n-----END AGE ENCRYPTED FILE-----\n" } ], - "lastmodified": "2025-06-08T04:38:03Z", - "mac": "ENC[AES256_GCM,data:BtMhG6XAV3Kjc1cYIgBF//PiMqr+QiyB9CByG2m+z6o7As91dPbaSZVwdMVon7/0mm4zKqx2BvQaS3hYIy6A3zqXMMvHxpJgylOKi3ybHuVyEKQ9KUwvoT5E7kmRFzjEm/jcRuRvBocLD5VT9CTiLBchUhdfAa78GOoIByqBhTw=,iv:vhBwJfVKxkanCJZt5/AcBtD5q0VVsDrLTqK4bi1QMyo=,tag:S/DKGvIda0euHVeuzPOaoA==,type:str]", + "lastmodified": "2025-08-20T12:26:49Z", + "mac": "ENC[AES256_GCM,data:qCyMjSWGRylWuUL9Dpe5FblORkWoTDbKwpsLlEy8caLZvU8ymUG8wMMNvqA0xVtzyDQ06rrAPvHw+dWAjuDGlxscqqZbPvrapXLeMNd8bVZ+CFWuts7CI1rW1jwa66UTb140KdiZFvx74QPH9Y3nq83epvnpGxI09p76COjNQRs=,iv:C5tZ3kqtc7X3or1ZuQOW3A+ZUt23pEAEGCjDdGFMwAc=,tag:CACFoGvAJ+BcenOd41Sf2Q==,type:str]", "unencrypted_suffix": "_unencrypted", "version": "3.10.2" } diff --git a/secrets/mautrix-telegram.env b/secrets/mautrix-telegram.env new file mode 100644 index 0000000..9bf8b8a --- /dev/null +++ b/secrets/mautrix-telegram.env @@ -0,0 +1,13 @@ +MAUTRIX_TELEGRAM_APPSERVICE_AS_TOKEN=ENC[AES256_GCM,data:B+gL1Ai045XiEcBkFcaEwByEdHgCrbc00Efd/WEb/s1l3rhIqdEmdyhnpqYJQojDQ8cQfYb1gMOW38sZ0GL4zA==,iv:F3Y92S3rM1qUrRN0cR5SFep+ExeP90l/oiWmrDk4yfc=,tag:CZrujwoVdGFiDKMxgM1tCg==,type:str] +MAUTRIX_TELEGRAM_APPSERVICE_HS_TOKEN=ENC[AES256_GCM,data:LDNVwG4cOqgb7stZFCAbzBpqTvt+kcuItaVGrM6Zd1wpxTZJ+sHQTf7acCh1obxdw1S13j8Kw2FsmBk4ojkWtQ==,iv:WJrt9G6BhZTuCxxC9A2AlRvon/MlCa9Y5dGNZ2DO7Mw=,tag:H0SLY4E/G1eJ0Tua+/zxww==,type:str] +MAUTRIX_TELEGRAM_BRIDGE_LOGIN_SHARED_SECRET_MAP=ENC[AES256_GCM,data:UcpnOqYwa3fFvU6/A+qUMfB784FuX/wBoilS3lZs3HHLazr9a12m9xivVs+9Kd7l+5xi5VqtQf9ZyF6EjGIeAFc4BFpADx2uvL7HP5kZ2WLGky/un1w=,iv:9ZtTU/iPhOX30uSbx7h3IMUcnCh127lE18Z3gkiydzo=,tag:DzHPBeKl9C28shR6c6t6mA==,type:str] +sops_age__list_0__map_enc=-----BEGIN AGE ENCRYPTED FILE-----\nYWdlLWVuY3J5cHRpb24ub3JnL3YxCi0+IHNzaC1lZDI1NTE5IDltTWRrUSAyUGVr\neFhRVERqUy9pRkFNRUVvQ3NMNFlnZEtQVnNhaWZJbzJUUWN4cG1ZCkduU2NJYnIz\nWm9vWHpGS2hPL1ZNdlhHRWJDaGJYOVFucXA3QktLV1VOdDAKLS0tIDROd2dtMm4v\nN1ZETmxkemk5RFNsU3AzTEphYlVKMTVzajFQNytRRGNBUmMKEwwN7MnPNP0ze0XJ\nm7QTQJhnd9QihXpGVYWKneL2Ef2YU1FZGUPOez9syDRepY/tl8jSFo77+aCLJ2/H\nPzM/4Q==\n-----END AGE ENCRYPTED FILE-----\n +sops_age__list_0__map_recipient=ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIOEFLUkyeaK8ZPPZdVNEmtx8zvoxi7xqS2Z6oxRBuUPO +sops_age__list_1__map_enc=-----BEGIN AGE ENCRYPTED FILE-----\nYWdlLWVuY3J5cHRpb24ub3JnL3YxCi0+IHNzaC1lZDI1NTE5IHJNY1d1ZyA0S0VJ\nTlVpOStxVU1rZ0E2MVVNWmI0d0VxMStSeFJ3dnpONTR3N044dWg0CnZBOFpDbkw3\nWjJ6ZHRQaDNaV2JDNHRYWkdSOVFBSDF5M0kvOExaSnBCeGcKLS0tIGJOSCtHRlNt\ncmpYTmN4dklYWEp1WjR0Uk16VkJjRFNqb2hQNEZHSkdSa1EKpO1hMZr1NTzrEbCr\nycIvP4J3U9X1iTAL2/R98lOhUVPWlu7QN1GWvQIyB3TInTIpKNVV1Q8nkrq8GSFG\n6QHTCA==\n-----END AGE ENCRYPTED FILE-----\n +sops_age__list_1__map_recipient=ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIB28jpN+h5euh3NtdN+A+EtqgIatC22e4i1TPTioKire +sops_age__list_2__map_enc=-----BEGIN AGE ENCRYPTED FILE-----\nYWdlLWVuY3J5cHRpb24ub3JnL3YxCi0+IHNzaC1lZDI1NTE5IFhGYmtrZyBWbk1h\ndVhCL2kyczUvR09YY3lvYXlmeExjdHYvd1dNQktHcUFVeWdYeFQ4CmJQSTVjY1Bq\nLzh1ZnpEWVJvaUZCeU0rMk5UWXBmMmNDMi9xTERlSlIyd1kKLS0tIHJaYlpaQmtE\nd21nQThCTXBVU0RJRnV0OHFTcWZYeSt4eWlmQVVyUWNSdGsKaPXqoSWS87MOHETx\nl7dbIo4maAV+eXbAbEYF2dZzw+Fea5vTrfsg1QQ4YVNGib7o8nvG2vouMyqq6vI3\n37HGfg==\n-----END AGE ENCRYPTED FILE-----\n +sops_age__list_2__map_recipient=ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIMb5G/ieEYBOng66YeyttBQLThyM6W//z2POsNyq4Rw/ +sops_lastmodified=2025-08-22T02:52:07Z +sops_mac=ENC[AES256_GCM,data:ahjIUwIKPUfqTSl704AekBIVTTe8n0YUbMyVKxFSZb5ZoaQ3KRVgWPWCAn9n/Qwpa1oHWvVcqqbTd+wrxqmkpOgFCfg72ZWdPsSbzg6RGcUVHlg5r2b9DE7Pq+qDtgNBVkmdmlCAY2+mQTepXv8fGbWltu6tzdqOvsOBwfSw694=,iv:OJ2M6X23k5LokCrx4Ekz2a5+hUGV66YNjlFBQZdrkSA=,tag:2xjX3CX45kkpYt+skEgKOw==,type:str] +sops_unencrypted_suffix=_unencrypted +sops_version=3.10.2