diff options
Diffstat (limited to 'modules/private/databases/postgresql.nix')
-rw-r--r-- | modules/private/databases/postgresql.nix | 14 |
1 files changed, 6 insertions, 8 deletions
diff --git a/modules/private/databases/postgresql.nix b/modules/private/databases/postgresql.nix index e73bf69..a6c4cc9 100644 --- a/modules/private/databases/postgresql.nix +++ b/modules/private/databases/postgresql.nix | |||
@@ -178,9 +178,8 @@ in { | |||
178 | ''; | 178 | ''; |
179 | }; | 179 | }; |
180 | 180 | ||
181 | secrets.keys = [ | 181 | secrets.keys = { |
182 | { | 182 | "postgresql/pam" = { |
183 | dest = "postgresql/pam"; | ||
184 | permissions = "0400"; | 183 | permissions = "0400"; |
185 | group = "postgres"; | 184 | group = "postgres"; |
186 | user = "postgres"; | 185 | user = "postgres"; |
@@ -192,9 +191,8 @@ in { | |||
192 | pam_filter ${filter} | 191 | pam_filter ${filter} |
193 | ssl start_tls | 192 | ssl start_tls |
194 | ''; | 193 | ''; |
195 | } | 194 | }; |
196 | { | 195 | "postgresql/pam_replication" = { |
197 | dest = "postgresql/pam_replication"; | ||
198 | permissions = "0400"; | 196 | permissions = "0400"; |
199 | group = "postgres"; | 197 | group = "postgres"; |
200 | user = "postgres"; | 198 | user = "postgres"; |
@@ -206,8 +204,8 @@ in { | |||
206 | pam_login_attribute cn | 204 | pam_login_attribute cn |
207 | ssl start_tls | 205 | ssl start_tls |
208 | ''; | 206 | ''; |
209 | } | 207 | }; |
210 | ]; | 208 | }; |
211 | 209 | ||
212 | security.pam.services = let | 210 | security.pam.services = let |
213 | pam_ldap = "${pkgs.pam_ldap}/lib/security/pam_ldap.so"; | 211 | pam_ldap = "${pkgs.pam_ldap}/lib/security/pam_ldap.so"; |