networking.firewall.allowedTCPPorts = [ 3306 5432 ];
- # FIXME: initial sync
- # FIXME: backup
- # FIXME: restart after pam
- # FIXME: pam access doesn’t work (because of php module)
- # FIXME: ssl
services.mysql = rec {
enable = cfg.mariadb.enable;
package = pkgs.mariadb;
};
- # Cannot use eldiron: psql complains too much rights on the key, and
- # setfacl cannot work properly because of acme prestart script
security.acme.certs."postgresql" = config.services.myCertificates.certConfig // {
user = "postgres";
group = "postgres";
install -m 0755 -o postgres -g postgres -d /run/postgresql
'';
- # FIXME: initial sync
services.postgresql = rec {
enable = cfg.postgresql.enable;
package = pkgs.postgresql;
}
];
- # FIXME: backup
# Diaspora: 15
# Nextcloud: 14
# Mastodon: 13