{config, ...}: {
  services.matrix-conduit = with config.constants; {
    enable = true;
    settings.global = {
      address = wildcard;
      port = port.conduit;
      # Use secret file when possible
      turn_secret = "84EoJSEVnlH@eiqqV7K!2vmAr^G";
      turn_uris = let
        coturn-realm = "turn.${domain}";
      in [
        "turn:${coturn-realm}:${toString port.coturn-tls}?transport=udp"
        "turn:${coturn-realm}:${toString port.coturn-tls}?transport=tcp"
      ];
      turn_user_lifetime = "1h";
      server_name = domain;
    };
  };
}