37 lines
886 B
Nix
37 lines
886 B
Nix
{ config, ... }: {
|
|
|
|
services.postgresql = {
|
|
enable = true;
|
|
ensureDatabases = [
|
|
"vaultwarden"
|
|
"hedgedoc"
|
|
];
|
|
|
|
ensureUsers = [
|
|
{
|
|
name = "vaultwarden";
|
|
ensureDBOwnership = true;
|
|
}
|
|
{
|
|
name = "hedgedoc";
|
|
ensureDBOwnership = true;
|
|
}
|
|
];
|
|
|
|
# type database DBuser auth-method mapping
|
|
authentication = ''
|
|
local all postgres peer
|
|
local forgejo all ident map=forgejo-users
|
|
local vaultwarden all ident map=vaultwarden-users
|
|
local hedgedoc all ident map=hedgedoc-users
|
|
'';
|
|
|
|
# name sysuser dbuser
|
|
identMap = ''
|
|
forgejo-users forgejo forgejo
|
|
vaultwarden-users vaultwarden vaultwarden
|
|
hedgedoc-users hedgedoc hedgedoc
|
|
'';
|
|
};
|
|
|
|
}
|