From c9fdf3f4db3f9fbcb3a2248c3db6152256d56272 Mon Sep 17 00:00:00 2001
From: James <james@schoolshape.com>
Date: Fri, 16 Jun 2017 12:43:04 +0100
Subject: coturn: allow use of ports < 1024

---
 nixos/modules/services/networking/coturn.nix | 8 ++++++++
 1 file changed, 8 insertions(+)

(limited to 'nixos/modules/services/networking')

diff --git a/nixos/modules/services/networking/coturn.nix b/nixos/modules/services/networking/coturn.nix
index 14e6932d868b..65273a4bf939 100644
--- a/nixos/modules/services/networking/coturn.nix
+++ b/nixos/modules/services/networking/coturn.nix
@@ -320,6 +320,14 @@ in {
         RuntimeDirectory = "turnserver";
         User = "turnserver";
         Group = "turnserver";
+        AmbientCapabilities =
+          mkIf (
+            cfg.listening-port < 1024 ||
+            cfg.alt-listening-port < 1024 ||
+            cfg.tls-listening-port < 1024 ||
+            cfg.alt-tls-listening-port < 1024 ||
+            cfg.min-port < 1024
+          ) "cap_net_bind_service";
         Restart = "on-abort";
       };
     };
-- 
cgit 1.4.1