root/the_prg_server_configuration_old
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

- Services: Added Part-DB

Browse source 
- Implementation: Added nix-sops based secret version controlling.
This commit is contained in:
Root User 2026-02-07 17:31:23 +01:00
parent 99a0ed1719
commit 5e68e6ee96
Signed by: root
GPG key ID: 087F0A95E5766D72
19 changed files with 258 additions and 86 deletions
Download patch file Download diff file Expand all files Collapse all files

5
nix-system-configs/database/configuration.nix
View file

@ -136,13 +136,14 @@
services.postgresql = {
enable = true;
enableTCPIP = true;
ensureDatabases = ["forgejo"];
ensureDatabases = ["forgejo" "part_db_database"];
settings = {
listen_addresses = "*";
};
authentication = pkgs.lib.mkOverride 10 ''
local all all trust
host all all 10.1.1.4/32 scram-sha-256
host all all 10.1.1.249/32 scram-sha-256
host all all 127.0.0.1/32 trust
host all all ::1/128 trust
'';
@ -158,7 +159,7 @@
services.openssh.enable = true;
# Open ports in the firewall.
networking.firewall.allowedTCPPorts = [5432 3306]; # PostgreSQL default port
networking.firewall.allowedTCPPorts = [5432 3306]; # PostgreSQL and MariaDB default port
# networking.firewall.allowedUDPPorts = [ ... ];
# Or disable the firewall altogether.
# networking.firewall.enable = false;