aboutsummaryrefslogtreecommitdiff
path: root/modules/private/system/quatresaisons
diff options
context:
space:
mode:
authorIsmaël Bouya <ismael.bouya@normalesup.org>2021-10-16 17:40:07 +0200
committerIsmaël Bouya <ismael.bouya@normalesup.org>2021-10-16 20:20:45 +0200
commit4c4652aabf2cb3ac8b40f2856eca07a1df9c27e0 (patch)
tree9a7ede9ac3f1899074e9ef568a447f883191d3b5 /modules/private/system/quatresaisons
parentda30ae4ffdd153a1eb32fb86f9ca9a65aa19e4e2 (diff)
downloadNix-4c4652aabf2cb3ac8b40f2856eca07a1df9c27e0.tar.gz
Nix-4c4652aabf2cb3ac8b40f2856eca07a1df9c27e0.tar.zst
Nix-4c4652aabf2cb3ac8b40f2856eca07a1df9c27e0.zip
Use attrs for secrets instead of lists
Diffstat (limited to 'modules/private/system/quatresaisons')
-rw-r--r--modules/private/system/quatresaisons/databases.nix14
1 files changed, 6 insertions, 8 deletions
diff --git a/modules/private/system/quatresaisons/databases.nix b/modules/private/system/quatresaisons/databases.nix
index 68ce274..f7b27e0 100644
--- a/modules/private/system/quatresaisons/databases.nix
+++ b/modules/private/system/quatresaisons/databases.nix
@@ -9,16 +9,14 @@
9 services.postgresql.ensureUsers = [ 9 services.postgresql.ensureUsers = [
10 { name = "naemon"; } 10 { name = "naemon"; }
11 ]; 11 ];
12 secrets.keys = [ 12 secrets.keys = {
13 { 13 "ldap/password" = {
14 dest = "ldap/password";
15 permissions = "0400"; 14 permissions = "0400";
16 user = "openldap"; 15 user = "openldap";
17 group = "openldap"; 16 group = "openldap";
18 text = "rootpw ${serverSpecificConfig.ldap_root_pw}"; 17 text = "rootpw ${serverSpecificConfig.ldap_root_pw}";
19 } 18 };
20 { 19 "webapps/tools-ldap" = {
21 dest = "webapps/tools-ldap";
22 user = "wwwrun"; 20 user = "wwwrun";
23 group = "wwwrun"; 21 group = "wwwrun";
24 permissions = "0400"; 22 permissions = "0400";
@@ -42,8 +40,8 @@
42 $servers->setValue('login','attr','uid'); 40 $servers->setValue('login','attr','uid');
43 $servers->setValue('login','fallback_dn',true); 41 $servers->setValue('login','fallback_dn',true);
44 ''; 42 '';
45 } 43 };
46 ]; 44 };
47 45
48 users.users.openldap.extraGroups = [ "keys" ]; 46 users.users.openldap.extraGroups = [ "keys" ];
49 services.openldap = { 47 services.openldap = {
generated by cgit v1.2.3 (git 2.25.1) at 2025-02-07 10:28:20 +0000