diff options
Diffstat (limited to 'modules/private/databases/postgresql.nix')
| -rw-r--r-- | modules/private/databases/postgresql.nix | 14 |
1 files changed, 6 insertions, 8 deletions
diff --git a/modules/private/databases/postgresql.nix b/modules/private/databases/postgresql.nix index e73bf69..a6c4cc9 100644 --- a/modules/private/databases/postgresql.nix +++ b/modules/private/databases/postgresql.nix | |||
| @@ -178,9 +178,8 @@ in { | |||
| 178 | ''; | 178 | ''; |
| 179 | }; | 179 | }; |
| 180 | 180 | ||
| 181 | secrets.keys = [ | 181 | secrets.keys = { |
| 182 | { | 182 | "postgresql/pam" = { |
| 183 | dest = "postgresql/pam"; | ||
| 184 | permissions = "0400"; | 183 | permissions = "0400"; |
| 185 | group = "postgres"; | 184 | group = "postgres"; |
| 186 | user = "postgres"; | 185 | user = "postgres"; |
| @@ -192,9 +191,8 @@ in { | |||
| 192 | pam_filter ${filter} | 191 | pam_filter ${filter} |
| 193 | ssl start_tls | 192 | ssl start_tls |
| 194 | ''; | 193 | ''; |
| 195 | } | 194 | }; |
| 196 | { | 195 | "postgresql/pam_replication" = { |
| 197 | dest = "postgresql/pam_replication"; | ||
| 198 | permissions = "0400"; | 196 | permissions = "0400"; |
| 199 | group = "postgres"; | 197 | group = "postgres"; |
| 200 | user = "postgres"; | 198 | user = "postgres"; |
| @@ -206,8 +204,8 @@ in { | |||
| 206 | pam_login_attribute cn | 204 | pam_login_attribute cn |
| 207 | ssl start_tls | 205 | ssl start_tls |
| 208 | ''; | 206 | ''; |
| 209 | } | 207 | }; |
| 210 | ]; | 208 | }; |
| 211 | 209 | ||
| 212 | security.pam.services = let | 210 | security.pam.services = let |
| 213 | pam_ldap = "${pkgs.pam_ldap}/lib/security/pam_ldap.so"; | 211 | pam_ldap = "${pkgs.pam_ldap}/lib/security/pam_ldap.so"; |