let
cfg = config.services.myDatabases;
in {
+ imports = [
+ ./openldap.nix
+ ];
options.services.myDatabases = {
enable = lib.mkEnableOption "my databases service";
postgresql = {
authentication = ''
local all postgres ident
local all all md5
- hostssl discourse discourse all md5
- hostssl all all all pam
+ hostssl all all 188.165.209.148/32 md5
+ hostssl all all 178.33.252.96/32 md5
+ hostssl all all all pam
hostssl replication backup-1 2001:41d0:302:1100::9:e5a9/128 pam pamservice=postgresql_replication
hostssl replication backup-1 54.37.151.137/32 pam pamservice=postgresql_replication
'';
mkdir -p $(dirname ${myconfig.env.databases.redis.socket})
chown redis $(dirname ${myconfig.env.databases.redis.socket})
'';
+
};
}