updated agenix system
This commit is contained in:
parent
e55a6e9f8e
commit
8393821a8d
@ -305,6 +305,10 @@ in
|
|||||||
group = "matrix-synapse";
|
group = "matrix-synapse";
|
||||||
};
|
};
|
||||||
|
|
||||||
|
age.secrets.matrix_reg_secret.file = /var/lib/agenix-secrets/matrix_reg_secret.age;
|
||||||
|
age.secrets.matrixdb.file = /var/lib/agenix-secrets/matrixdb.age;
|
||||||
|
age.secrets.nextclouddb.file = /var/lib/agenix-secrets/nextclouddb.age;
|
||||||
|
age.secrets.wordpressdb.file = /var/lib/agenix-secrets/wordpressdb.age;
|
||||||
|
|
||||||
|
|
||||||
###### CREATE DATABASE (WORDPRESS, MATRIX_SYNAPSE, AND NEXTCLOUD) #######
|
###### CREATE DATABASE (WORDPRESS, MATRIX_SYNAPSE, AND NEXTCLOUD) #######
|
||||||
@ -329,14 +333,14 @@ in
|
|||||||
|
|
||||||
|
|
||||||
services.postgresql.initialScript = pkgs.writeText "begin-init.sql" ''
|
services.postgresql.initialScript = pkgs.writeText "begin-init.sql" ''
|
||||||
CREATE ROLE "ncusr" WITH LOGIN PASSWORD '${personalization.age.secrets.nextclouddb.file}';
|
CREATE ROLE "ncusr" WITH LOGIN PASSWORD '${age.secrets.nextclouddb.file}';
|
||||||
CREATE DATABASE "nextclouddb" WITH OWNER "ncusr"
|
CREATE DATABASE "nextclouddb" WITH OWNER "ncusr"
|
||||||
TEMPLATE template0
|
TEMPLATE template0
|
||||||
LC_COLLATE = "C"
|
LC_COLLATE = "C"
|
||||||
LC_CTYPE = "C";
|
LC_CTYPE = "C";
|
||||||
|
|
||||||
|
|
||||||
CREATE ROLE "matrix-synapse" WITH LOGIN PASSWORD '${personalization.age.secrets.matrixdb.file}';
|
CREATE ROLE "matrix-synapse" WITH LOGIN PASSWORD '${age.secrets.matrixdb.file}';
|
||||||
CREATE DATABASE "matrix-synapse" WITH OWNER "matrix-synapse"
|
CREATE DATABASE "matrix-synapse" WITH OWNER "matrix-synapse"
|
||||||
TEMPLATE template0
|
TEMPLATE template0
|
||||||
LC_COLLATE = "C"
|
LC_COLLATE = "C"
|
||||||
@ -347,7 +351,7 @@ in
|
|||||||
|
|
||||||
services.mysql.initialScript = pkgs.writeText "wordpress-init.sql" ''
|
services.mysql.initialScript = pkgs.writeText "wordpress-init.sql" ''
|
||||||
CREATE DATABASE wordpressdb;
|
CREATE DATABASE wordpressdb;
|
||||||
GRANT ALL ON *.* TO 'wpusr'@'localhost' IDENTIFIED BY '${personalization.age.secrets.wordpressdb.file}';
|
GRANT ALL ON *.* TO 'wpusr'@'localhost' IDENTIFIED BY '${age.secrets.wordpressdb.file}';
|
||||||
FLUSH PRIVILEGES;
|
FLUSH PRIVILEGES;
|
||||||
''
|
''
|
||||||
;
|
;
|
||||||
|
@ -12,13 +12,5 @@ vaultwarden_url = builtins.readFile /var/lib/domains/vaultwarden;
|
|||||||
external_ip_secret = builtins.readFile /var/lib/secrets/external_ip;
|
external_ip_secret = builtins.readFile /var/lib/secrets/external_ip;
|
||||||
coturn_static_auth_secret = builtins.readFile /var/lib/secrets/turn;
|
coturn_static_auth_secret = builtins.readFile /var/lib/secrets/turn;
|
||||||
|
|
||||||
##
|
|
||||||
|
|
||||||
age.secrets.matrix_reg_secret.file = /var/lib/agenix-secrets/matrix_reg_secret.age;
|
|
||||||
age.secrets.matrixdb.file = /var/lib/agenix-secrets/matrixdb.age;
|
|
||||||
age.secrets.nextclouddb.file = /var/lib/agenix-secrets/nextclouddb.age;
|
|
||||||
age.secrets.wordpressdb.file = /var/lib/agenix-secrets/wordpressdb.age;
|
|
||||||
|
|
||||||
|
|
||||||
|
|
||||||
}
|
}
|
||||||
|
Loading…
Reference in New Issue
Block a user