diff options
| author | Ismaël Bouya <ismael.bouya@normalesup.org> | 2019-05-17 10:26:33 +0200 |
|---|---|---|
| committer | Ismaël Bouya <ismael.bouya@normalesup.org> | 2019-05-17 10:26:49 +0200 |
| commit | 4aac110f17f0528d90510eec00c9a8df60bcf04f (patch) | |
| tree | f3fd7dfd999f56f397c1cdc972dd37978e15f0cd /modules/private/databases/default.nix | |
| parent | ffb14c1c25280777f5db3d2129c48dd319381f65 (diff) | |
| download | Nix-4aac110f17f0528d90510eec00c9a8df60bcf04f.tar.gz Nix-4aac110f17f0528d90510eec00c9a8df60bcf04f.tar.zst Nix-4aac110f17f0528d90510eec00c9a8df60bcf04f.zip | |
Remove direct dependency to myconfig in database modules
Diffstat (limited to 'modules/private/databases/default.nix')
| -rw-r--r-- | modules/private/databases/default.nix | 53 |
1 files changed, 49 insertions, 4 deletions
diff --git a/modules/private/databases/default.nix b/modules/private/databases/default.nix index 78d91dc..3f7a44b 100644 --- a/modules/private/databases/default.nix +++ b/modules/private/databases/default.nix | |||
| @@ -1,4 +1,4 @@ | |||
| 1 | { lib, config, ... }: | 1 | { lib, config, myconfig, ... }: |
| 2 | let | 2 | let |
| 3 | cfg = config.myServices.databases; | 3 | cfg = config.myServices.databases; |
| 4 | in | 4 | in |
| @@ -9,10 +9,55 @@ in | |||
| 9 | description = "Default databases configurations for certificates as accepted by acme"; | 9 | description = "Default databases configurations for certificates as accepted by acme"; |
| 10 | }; | 10 | }; |
| 11 | }; | 11 | }; |
| 12 | |||
| 13 | config.nixpkgs.overlays = lib.mkIf cfg.enable [ (self: super: { | ||
| 14 | postgresql = self.postgresql_11_custom; | ||
| 15 | }) ]; | ||
| 16 | |||
| 12 | config.myServices.databases = lib.mkIf cfg.enable { | 17 | config.myServices.databases = lib.mkIf cfg.enable { |
| 13 | mariadb.enable = true; | 18 | mariadb = { |
| 14 | openldap.enable = true; | 19 | enable = true; |
| 15 | postgresql.enable = true; | 20 | ldapConfig = { |
| 21 | inherit (myconfig.env.ldap) host base; | ||
| 22 | inherit (myconfig.env.databases.mysql.pam) dn filter password; | ||
| 23 | }; | ||
| 24 | credentials.root = myconfig.env.databases.mysql.systemUsers.root; | ||
| 25 | }; | ||
| 26 | |||
| 27 | openldap = { | ||
| 28 | accessFile = "${myconfig.privateFiles}/ldap.conf"; | ||
| 29 | baseDn = myconfig.env.ldap.base; | ||
| 30 | rootDn = myconfig.env.ldap.root_dn; | ||
| 31 | rootPw = myconfig.env.ldap.root_pw; | ||
| 32 | enable = true; | ||
| 33 | }; | ||
| 34 | |||
| 35 | postgresql = { | ||
| 36 | ldapConfig = { | ||
| 37 | inherit (myconfig.env.ldap) host base; | ||
| 38 | inherit (myconfig.env.databases.postgresql.pam) dn filter password; | ||
| 39 | }; | ||
| 40 | replicationLdapConfig = { | ||
| 41 | inherit (myconfig.env.ldap) host base password; | ||
| 42 | dn = myconfig.env.ldap.host_dn; | ||
| 43 | }; | ||
| 44 | authorizedHosts = { | ||
| 45 | immaeEu = [{ | ||
| 46 | ip4 = [ | ||
| 47 | myconfig.env.servers.immaeEu.ips.main.ip4 | ||
| 48 | myconfig.env.servers.immaeEu.ips.alt.ip4 | ||
| 49 | ]; | ||
| 50 | }]; | ||
| 51 | }; | ||
| 52 | replicationHosts = { | ||
| 53 | backup-1 = { | ||
| 54 | ip4 = [myconfig.env.servers.backup-1.ips.main.ip4]; | ||
| 55 | ip6 = myconfig.env.servers.backup-1.ips.main.ip6; | ||
| 56 | }; | ||
| 57 | }; | ||
| 58 | enable = true; | ||
| 59 | }; | ||
| 60 | |||
| 16 | redis.enable = true; | 61 | redis.enable = true; |
| 17 | }; | 62 | }; |
| 18 | } | 63 | } |