Add test instance of wiki-js

2025-12-25 05:36:59 +01:00 · 2022-10-19 07:30:00 +02:00 · 2022-10-19 07:30:00 +02:00 · 74aa19941d
commit 74aa19941d
parent 4ba62ee56f
4 changed files with 57 additions and 8 deletions
--- a/modules/postgresql.nix
+++ b/modules/postgresql.nix
@ -4,17 +4,13 @@
  services.postgresql = {
    enable = true;
    package = pkgs.postgresql_12;
-    initialScript = pkgs.writeText "postgres-init.sql" ''
-      CREATE ROLE "synapse";
-      CREATE ROLE "nextcloud";
-      CREATE ROLE "roundcube";
-    '';
    enableTCPIP = true;
    identMap = ''
      root_as_others         root                  postgres
      root_as_others         root                  synapse
      root_as_others         root                  nextcloud
      root_as_others         root                  roundcube
+      root_as_others         root                  wikijs-test
    '';
    authentication = ''
      local  all     postgres               peer
@ -39,6 +35,11 @@
      key = "roundcube/db_password";
      restartUnits = [ "postgresql-setup.service" ];
    };
+    wikiJsTestDbPassword = {
+      owner = config.services.postgresql.superUser;
+      key = "wikijs-test/db_password";
+      restartUnits = [ "postgresql-setup.service" ];
+    };
  };

  systemd.services.postgresql-setup = let pgsql = config.services.postgresql; in
@ -51,13 +52,25 @@
        pkgs.util-linux
      ];
      script = ''
-        set -eu
+        set -u
        PSQL() {
            psql --port=${toString pgsql.port} "$@"
        }
+
+        PSQL -tAc "SELECT 1 FROM pg_roles WHERE rolname = 'synapse'" | grep -q 1 || PSQL -tAc 'CREATE ROLE "synapse"'
+        PSQL -tAc "SELECT 1 FROM pg_roles WHERE rolname = 'nextcloud'" | grep -q 1 || PSQL -tAc 'CREATE ROLE "nextcloud"'
+        PSQL -tAc "SELECT 1 FROM pg_roles WHERE rolname = 'roundcube'" | grep -q 1 || PSQL -tAc 'CREATE ROLE "roundcube"'
+        PSQL -tAc "SELECT 1 FROM pg_roles WHERE rolname = 'wikijs-test'" | grep -q 1 || PSQL -tAc 'CREATE ROLE "wikijs-test"'
+        
        PSQL -tAc "SELECT 1 FROM pg_database WHERE datname = 'synapse'" | grep -q 1 || PSQL -tAc 'CREATE DATABASE "synapse" OWNER "synapse" TEMPLATE template0 LC_COLLATE = "C" LC_CTYPE = "C"'
        PSQL -tAc "SELECT 1 FROM pg_database WHERE datname = 'nextcloud'" | grep -q 1 || PSQL -tAc 'CREATE DATABASE "nextcloud" OWNER "nextcloud"'
        PSQL -tAc "SELECT 1 FROM pg_database WHERE datname = 'roundcube'" | grep -q 1 || PSQL -tAc 'CREATE DATABASE "roundcube" OWNER "roundcube"'
+        PSQL -tAc "SELECT 1 FROM pg_database WHERE datname = 'wikijs-test'" | grep -q 1 || PSQL -tAc 'CREATE DATABASE "wikijs-test" OWNER "wikijs-test"'
+
+        PSQL -tAc  "ALTER ROLE synapse LOGIN"
+        PSQL -tAc  "ALTER ROLE nextcloud LOGIN"
+        PSQL -tAc  "ALTER ROLE roundcube LOGIN"
+        PSQL -tAc  "ALTER ROLE \"wikijs-test\" LOGIN"

        synapse_password="$(<'${config.sops.secrets.synapseDbPassword.path}')"
        PSQL -tAc  "ALTER ROLE synapse WITH PASSWORD '$synapse_password'"
@ -65,6 +78,8 @@
        PSQL -tAc  "ALTER ROLE nextcloud WITH PASSWORD '$nextcloud_password'"
        roundcube_password="$(<'${config.sops.secrets.roundcubeDbPassword.path}')"
        PSQL -tAc  "ALTER ROLE roundcube WITH PASSWORD '$roundcube_password'"
+        wikijstest_password="$(<'${config.sops.secrets.wikiJsTestDbPassword.path}')"
+        PSQL -tAc  "ALTER ROLE \"wikijs-test\" WITH PASSWORD '$wikijstest_password'"
      '';

      serviceConfig = {