-{ lib, config, nodes, ... }:
+{ lib, config, secrets, ... }:
let
cfg = config.myServices.databases;
in
{
options.myServices = {
databases.enable = lib.mkEnableOption "my databases service";
- databasesCerts = lib.mkOption {
- description = "Default databases configurations for certificates as accepted by acme";
- };
};
+ config.myServices.dns.zones."immae.eu".subdomains.db-1 = lib.mkIf cfg.enable (with config.myServices.dns.helpers; ips servers.eldiron.ips.main);
config.myServices.databases = lib.mkIf cfg.enable {
+
mariadb = {
enable = true;
ldapConfig = {
};
openldap = {
- accessFile = ../../../nixops/secrets/ldap.conf;
+ accessFile = secrets.ldap-conf;
baseDn = config.myEnv.ldap.base;
rootDn = config.myEnv.ldap.root_dn;
rootPw = config.myEnv.ldap.root_pw;
};
replicationHosts = {
backup-2 = {
- ip4 = [config.myEnv.servers.backup-2.ips.main.ip4];
+ ip4 = config.myEnv.servers.backup-2.ips.main.ip4;
ip6 = config.myEnv.servers.backup-2.ips.main.ip6;
};
};