add opencrow Matrix bot on ful

kfm/niveum

mirror of https://github.com/kmein/niveum synced 2026-03-16 10:11:08 +01:00

Uses upstream NixOS module (systemd-nspawn container with sandboxing).

- User: @fable:4d2.org on matrix.4d2.org
- Provider: GitHub Copilot (OAuth, one-time interactive login)
- pkgs.pi added via extraPackages (available on PATH inside container)
- Secrets via agenix: matrix token as environmentFile,
  soul bind-mounted into the container
- Sessions + pi-agent state in /var/lib/opencrow, backed up via restic

To complete setup:
1. Create secrets/opencrow-matrix-token.age (OPENCROW_MATRIX_ACCESS_TOKEN=...)
2. Create secrets/opencrow-soul.age (SOUL.md content)
3. One-time Copilot login inside the container:
   sudo nixos-container root-login opencrow
   PI_CODING_AGENT_DIR=/var/lib/opencrow/pi-agent pi
   # Run /login, select GitHub Copilot, complete OAuth flow

This commit is contained in:

Kierán Meinhardt

2026-02-17 22:31:07 +01:00

parent bfbe2da850

commit 722b1e9d14

2 changed files with 3 additions and 1 deletions

									
										2

systems/ful/opencrow.nix
									
												View File
												
				@@ -16,6 +16,8 @@

				  services.opencrow = {

				    enable = true;

				    extraPackages = [ pkgs.pi ];

				    environmentFiles = [

				      config.age.secrets.opencrow-matrix-token.path

				    ];

add opencrow Matrix bot on ful

2 systems/ful/opencrow.nix Unescape Escape View File

2

systems/ful/opencrow.nix

View File