mautrix-facebook: remove (#381226)

  ./services/matrix/hebbot.nix

  ./services/matrix/hookshot.nix

  ./services/matrix/maubot.nix

  ./services/matrix/mautrix-facebook.nix

  ./services/matrix/mautrix-meta.nix

  ./services/matrix/mautrix-signal.nix

  ./services/matrix/mautrix-telegram.nix

{

  config,

  pkgs,

  lib,

  ...

}:

let

  cfg = config.services.mautrix-facebook;

  settingsFormat = pkgs.formats.json { };

  settingsFile = settingsFormat.generate "mautrix-facebook-config.json" cfg.settings;

  puppetRegex = lib.concatStringsSep ".*" (

    map lib.escapeRegex (lib.splitString "{userid}" cfg.settings.bridge.username_template)

  );

in

{

  options = {

    services.mautrix-facebook = {

      enable = lib.mkEnableOption "Mautrix-Facebook, a Matrix-Facebook hybrid puppeting/relaybot bridge";

      settings = lib.mkOption rec {

        apply = lib.recursiveUpdate default;

        type = settingsFormat.type;

        default = {

          homeserver = {

            address = "http://localhost:8008";

            software = "standard";

          };

          appservice = rec {

            id = "facebook";

            address = "http://${hostname}:${toString port}";

            hostname = "localhost";

            port = 29319;

            database = "postgresql://";

            bot_username = "facebookbot";

          };

          metrics.enabled = false;

          manhole.enabled = false;

          bridge = {

            encryption = {

              allow = true;

              default = true;

              verification_levels = {

                receive = "cross-signed-tofu";

                send = "cross-signed-tofu";

                share = "cross-signed-tofu";

              };

            };

            username_template = "facebook_{userid}";

          };

          logging = {

            version = 1;

            formatters.journal_fmt.format = "%(name)s: %(message)s";

            handlers.journal = {

              class = "systemd.journal.JournalHandler";

              formatter = "journal_fmt";

              SYSLOG_IDENTIFIER = "mautrix-facebook";

            };

            root = {

              level = "INFO";

              handlers = [ "journal" ];

            };

          };

        };

        example = lib.literalExpression ''

          {

            homeserver = {

              address = "http://localhost:8008";

              domain = "mydomain.example";

            };

            bridge.permissions = {

              "@admin:mydomain.example" = "admin";

              "mydomain.example" = "user";

            };

          }

        '';

        description = ''

          {file}`config.yaml` configuration as a Nix attribute set.

          Configuration options should match those described in

          [example-config.yaml](https://github.com/mautrix/facebook/blob/master/mautrix_facebook/example-config.yaml).

          Secret tokens should be specified using {option}`environmentFile`

          instead of this world-readable attribute set.

        '';

      };

      environmentFile = lib.mkOption {

        type = lib.types.nullOr lib.types.path;

        default = null;

        description = ''

          File containing environment variables to be passed to the mautrix-facebook service.

          Any config variable can be overridden by setting `MAUTRIX_FACEBOOK_SOME_KEY` to override the `some.key` variable.

        '';

      };

      configurePostgresql = lib.mkOption {

        type = lib.types.bool;

        default = true;

        description = ''

          Enable PostgreSQL and create a user and database for mautrix-facebook. The default `settings` reference this database, if you disable this option you must provide a database URL.

        '';

      };

      registrationData = lib.mkOption {

        type = lib.types.attrs;

        default = { };

        description = ''

          Output data for appservice registration. Simply make any desired changes and serialize to JSON. Note that this data contains secrets so think twice before putting it into the nix store.

          Currently `as_token` and `hs_token` need to be added as they are not known to this module.

        '';

      };

    };

  };

  config = lib.mkIf cfg.enable {

    users.groups.mautrix-facebook = { };

    users.users.mautrix-facebook = {

      group = "mautrix-facebook";

      isSystemUser = true;

    };

    services.postgresql = lib.mkIf cfg.configurePostgresql {

      ensureDatabases = [ "mautrix-facebook" ];

      ensureUsers = [

        {

          name = "mautrix-facebook";

          ensureDBOwnership = true;

        }

      ];

    };

    systemd.services.mautrix-facebook = rec {

      wantedBy = [ "multi-user.target" ];

      wants =

        [

          "network-online.target"

        ]

        ++ lib.optional config.services.matrix-synapse.enable config.services.matrix-synapse.serviceUnit

        ++ lib.optional cfg.configurePostgresql "postgresql.service";

      after = wants;

      serviceConfig = {

        Type = "simple";

        Restart = "always";

        User = "mautrix-facebook";

        ProtectSystem = "strict";

        ProtectHome = true;

        ProtectKernelTunables = true;

        ProtectKernelModules = true;

        ProtectControlGroups = true;

        PrivateTmp = true;

        EnvironmentFile = cfg.environmentFile;

        ExecStart = ''

          ${pkgs.mautrix-facebook}/bin/mautrix-facebook --config=${settingsFile}

        '';

      };

    };

    services.mautrix-facebook = {

      registrationData = {

        id = cfg.settings.appservice.id;

        namespaces = {

          users = [

            {

              exclusive = true;

              regex = lib.escapeRegex "@${cfg.settings.appservice.bot_username}:${cfg.settings.homeserver.domain}";

            }

            {

              exclusive = true;

              regex = "@${puppetRegex}:${lib.escapeRegex cfg.settings.homeserver.domain}";

            }

          ];

          aliases = [ ];

        };

        url = cfg.settings.appservice.address;

        sender_localpart = "mautrix-facebook-sender";

        rate_limited = false;

        "de.sorunome.msc2409.push_ephemeral" = true;

        push_ephemeral = true;

      };

    };

  };

  meta.maintainers = with lib.maintainers; [ kevincox ];

}

{

  lib,

  stdenv,

  fetchFromGitHub,

  python3,

  enableSystemd ? lib.meta.availableOn stdenv.hostPlatform python3.pkgs.systemd,

}:

python3.pkgs.buildPythonPackage rec {

  pname = "mautrix-facebook";

  version = "0.5.1";

  src = fetchFromGitHub {

    owner = "mautrix";

    repo = "facebook";

    rev = "v${version}";

    hash = "sha256-8uleN7L3fgNqqRjva3kJU7fLPJZpO6b0J4z0RxZ9B64=";

  };

  propagatedBuildInputs =

    with python3.pkgs;

    [

      commonmark

      aiohttp

      asyncpg

      commonmark

      (mautrix.override { withOlm = true; })

      paho-mqtt

      pillow

      prometheus-client

      pycryptodome

      python-olm

      python-magic

      ruamel-yaml

      unpaddedbase64

      yarl

      zstandard

    ]

    ++ lib.optional enableSystemd systemd;

  postPatch = ''

    # Drop version limiting so that every dependency update doesn't break this package.

    sed -i -e 's/,<.*//' requirements.txt

  '';

  postInstall = ''

    mkdir -p $out/bin

    cat <<-END >$out/bin/mautrix-facebook

    #!/bin/sh

    PYTHONPATH="$PYTHONPATH" exec ${python3}/bin/python -m mautrix_facebook "\$@"

    END

    chmod +x $out/bin/mautrix-facebook

  '';

  checkPhase = ''

    $out/bin/mautrix-facebook --help

  '';

  meta = with lib; {

    homepage = "https://github.com/mautrix/facebook";

    changelog = "https://github.com/mautrix/facebook/releases/tag/v${version}";

    description = "Matrix-Facebook Messenger puppeting bridge";

    license = licenses.agpl3Plus;

    maintainers = with maintainers; [ kevincox ];

    mainProgram = "mautrix-facebook";

  };

}