Sovran_Systems/Sovran_SystemsOS
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

updated the modules to allow for agenix

Browse Source
This commit is contained in:
naturallaw77 2023-06-03 16:09:28 -07:00
parent 387348524a
commit dde1de7e3b
3 changed files with 6 additions and 6 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

6
modules/configuration.nix
View File

@ -301,14 +301,14 @@ in
};
services.postgresql.initialScript = pkgs.writeText "begin-init.sql" ''
CREATE ROLE "ncusr" WITH LOGIN PASSWORD '${age.secrets.nextclouddb.file}';
CREATE ROLE "ncusr" WITH LOGIN PASSWORD '${personalization.age.secrets.nextclouddb.file}';
CREATE DATABASE "nextclouddb" WITH OWNER "ncusr"
TEMPLATE template0
LC_COLLATE = "C"
LC_CTYPE = "C";
CREATE ROLE "matrix-synapse" WITH LOGIN PASSWORD '${age.secrets.matrixdb.file}';
CREATE ROLE "matrix-synapse" WITH LOGIN PASSWORD '${personalization.age.secrets.matrixdb.file}';
CREATE DATABASE "matrix-synapse" WITH OWNER "matrix-synapse"
TEMPLATE template0
LC_COLLATE = "C"
@ -319,7 +319,7 @@ in
services.mysql.initialScript = pkgs.writeText "wordpress-init.sql" ''
CREATE DATABASE wordpressdb;
GRANT ALL ON *.* TO 'wpusr'@'localhost' IDENTIFIED BY '${age.secrets.wordpressdb.file}';
GRANT ALL ON *.* TO 'wpusr'@'localhost' IDENTIFIED BY '${personalization.age.secrets.wordpressdb.file}';
FLUSH PRIVILEGES;
''
;

2
modules/coturn.nix
View File

@ -35,7 +35,7 @@ let
services.coturn = {
enable = true;
use-auth-secret = true;
static-auth-secret = "${age.secrets.turn.file}";
static-auth-secret = "${personalization.age.secrets.turn.file}";
realm = personalization.matrix_url;
cert = "/var/lib/coturn/${personalization.matrix_url}.crt.pem";
pkey = "/var/lib/coturn/${personalization.matrix_url}.key.pem";

4
modules/synapse.nix
View File

@ -43,7 +43,7 @@ in
"ff00::/8"
];
url_preview_ip_ranger_whitelist = [ "127.0.0.1" ];
turn_shared_secret = "${age.secrets.turn.file}";
turn_shared_secret = "${personalization.age.secrets.turn.file}";
turn_uris = [
"turn:${personalization.matrix_url}:5349?transport=udp"
"turn:${personalization.matrix_url}:5349?transport=tcp"
@ -52,7 +52,7 @@ in
];
presence.enabled = true;
enable_registration = false;
registration_shared_secret = "${age.secrets.matrix_reg_secret.file}";
registration_shared_secret = "${personalization.age.secrets.matrix_reg_secret.file}";
listeners = [
{
port = 8008;