dump-dvb/nix-config
dump-dvb/nix-config
3
0
Fork 0
mirror of https://github.com/dump-dvb/nix-config.git synced 2024-06-27 01:14:21 +02:00
Code Issues Projects Releases Wiki Activity
af66d67e29
nix-config/modules/data-hoarder/secrets.nix
Markus Schmidl ff8b2650bc use diesel for database migrations
2022-09-03 21:01:23 +02:00

37 lines
873 B
Nix
Raw Blame History

{ config, ... }:
let
clicky-bunty-user = config.dump-dvb.clickyBuntyServer.user;
data-accumulator-user = config.dump-dvb.dataAccumulator.user;
in
{
sops.age.sshKeyPaths = [ "/etc/ssh/ssh_host_ed25519_key" ];
users.groups = {
postgres-dvbdump = {
name = "postgres-dvbdump";
members = [ clicky-bunty-user data-accumulator-user "postgres" ];
};
postgres-telegrams = {
name = "postgres-telegrams";
members = [ clicky-bunty-user data-accumulator-user "postgres" ];
};
};
sops.secrets = {
wg-seckey = { };
postgres_password_hash_salt = {
owner = clicky-bunty-user;
};
postgres_password = {
group = config.users.groups.postgres-dvbdump.name;
mode = "0440";
};
postgres_password_grafana = {
group = config.users.groups.postgres-dvbdump.name;
mode = "0440";
};
};
}
Reference in New Issue View Git Blame Copy Permalink