Gitiles
Code Review Sign In
git.clicks.codes / Minion / NixFiles / f34632e0f9a032c72d82758087b14ddaa5ca7d2a / . / modules / postgres.nix
blob: f88673e8190ce27c99abe4b44bf52907a81f8621 [file] [log] [blame]
Skyler Grey13e45bd2023-01-26 00:39:17 +0000[diff] [blame]1{ lib, config, username, pkgs, ... }: {
2 config = {
3 services = {
4 postgresql = {
5 enable = true;
6 dataDir = "/tmp/postgresql";
7 initialScript = pkgs.writeText "init-postgresql" ''
8 CREATE ROLE ${username} WITH LOGIN PASSWORD '${username}' CREATEDB;
9 GRANT ALL PRIVILEGES ON ALL TABLES IN SCHEMA public TO ${username};
10 GRANT ALL PRIVILEGES ON ALL SEQUENCES IN SCHEMA public TO ${username};
11 '';
12 };
13 pgadmin = {
14 enable = true;
15 initialEmail = "skyler3665@gmail.com";
16 initialPasswordFile = config.sops.secrets.pgadminPassword.path;
17 };
18 };
Skyler Grey1909a0b2023-05-03 20:33:53 +0000[diff] [blame]19 systemd.services.pgadmin.wantedBy = lib.mkForce [ ];
20 systemd.services.postgresql.wantedBy = lib.mkForce [ ];
Skyler Grey13e45bd2023-01-26 00:39:17 +0000[diff] [blame]21 sops.secrets.pgadminPassword = {
22 mode = "0400";
23 owner = config.users.users.pgadmin.name;
24 group = config.users.users.nobody.group;
25 };
26 };
27}