phfroidmont/self-hosting
1
0
Fork 0
mirror of https://github.com/phfroidmont/self-hosting.git synced 2025-12-25 05:36:59 +01:00
Code Issues Projects Releases Packages Wiki Activity Actions

Update inputs

Browse source
This commit is contained in:
Paul-Henri Froidmont 2024-12-13 22:57:15 +01:00
parent e7caa4e487
commit de890008c7
Signed by: phfroidmont
GPG key ID: BE948AFD7E7873BE
2 changed files with 27 additions and 42 deletions
Download patch file Download diff file Expand all files Collapse all files

14
modules/postgresql.nix
View file

@ -31,15 +31,17 @@ in
};
sops.secrets = {
synapseDbPassword = {
synapseDbPasswordPg = {
owner = config.services.postgresql.superUser;
key = "synapse/db_password";
restartUnits = [ "postgresql-setup.service" ];
};
nextcloudDbPassword = {
nextcloudDbPasswordPg = {
owner = config.services.postgresql.superUser;
key = "nextcloud/db_password";
restartUnits = [ "postgresql-setup.service" ];
};
roundcubeDbPassword = {
roundcubeDbPasswordPg = {
owner = config.services.postgresql.superUser;
key = "roundcube/db_password";
restartUnits = [ "postgresql-setup.service" ];
@ -76,11 +78,11 @@ in
PSQL -tAc "ALTER ROLE nextcloud LOGIN"
PSQL -tAc "ALTER ROLE roundcube LOGIN"
synapse_password="$(<'${config.sops.secrets.synapseDbPassword.path}')"
synapse_password="$(<'${config.sops.secrets.synapseDbPasswordPg.path}')"
PSQL -tAc "ALTER ROLE synapse WITH PASSWORD '$synapse_password'"
nextcloud_password="$(<'${config.sops.secrets.nextcloudDbPassword.path}')"
nextcloud_password="$(<'${config.sops.secrets.nextcloudDbPasswordPg.path}')"
PSQL -tAc "ALTER ROLE nextcloud WITH PASSWORD '$nextcloud_password'"
roundcube_password="$(<'${config.sops.secrets.roundcubeDbPassword.path}')"
roundcube_password="$(<'${config.sops.secrets.roundcubeDbPasswordPg.path}')"
PSQL -tAc "ALTER ROLE roundcube WITH PASSWORD '$roundcube_password'"
'';