services: smaller fixes in jitsi and postgreql
This commit is contained in:
parent
6e793fb103
commit
b5ea5e6bf3
SSH Key Fingerprint:
SHA256:A5zPB5I6u5V78V51c362BBdCwhDhfDUVbt7NfKdjWBY
@ -23,6 +23,7 @@
|
|||||||
imports = # For now, if applying to other system, swap files
|
imports = # For now, if applying to other system, swap files
|
||||||
[(import ./hardware-configuration.nix)] ++ # Current system hardware config @ /etc/nixos/hardware-configuration.nix
|
[(import ./hardware-configuration.nix)] ++ # Current system hardware config @ /etc/nixos/hardware-configuration.nix
|
||||||
[(import ../../modules/desktop/virtualisation/docker.nix)] ++ # Docker
|
[(import ../../modules/desktop/virtualisation/docker.nix)] ++ # Docker
|
||||||
|
(import ../../modules/services/server) ++ # Server Services
|
||||||
(import ../../modules/hardware); # Hardware devices
|
(import ../../modules/hardware); # Hardware devices
|
||||||
|
|
||||||
boot = { # Boot options
|
boot = { # Boot options
|
||||||
|
|||||||
@ -11,7 +11,7 @@
|
|||||||
#
|
#
|
||||||
|
|
||||||
[
|
[
|
||||||
#./postgresql.nix
|
./postgresql.nix
|
||||||
#./gitea.nix
|
#./gitea.nix
|
||||||
#./nextcloud.nix
|
#./nextcloud.nix
|
||||||
#./matrix.nix
|
#./matrix.nix
|
||||||
|
|||||||
@ -3,7 +3,7 @@
|
|||||||
{
|
{
|
||||||
services.jitsi-meet = {
|
services.jitsi-meet = {
|
||||||
enable = true;
|
enable = true;
|
||||||
hostName = "jitsi.kabtop.de";
|
hostName = "meet.kabtop.de";
|
||||||
config = {
|
config = {
|
||||||
enableWelcomePage = false;
|
enableWelcomePage = false;
|
||||||
prejoinPageEnabled = true;
|
prejoinPageEnabled = true;
|
||||||
@ -16,6 +16,6 @@
|
|||||||
};
|
};
|
||||||
|
|
||||||
services.jitsi-videobridge.openFirewall = true;
|
services.jitsi-videobridge.openFirewall = true;
|
||||||
security.acme.email = "webmaster@kabtop.de";
|
security.acme.defaults.email = "webmaster@kabtop.de";
|
||||||
security.acme.acceptTerms = true;
|
security.acme.acceptTerms = true;
|
||||||
}
|
}
|
||||||
|
|||||||
@ -10,16 +10,15 @@
|
|||||||
package = pkgs.postgresql_14;
|
package = pkgs.postgresql_14;
|
||||||
settings = {
|
settings = {
|
||||||
max_connections = 200;
|
max_connections = 200;
|
||||||
listen_addresses = 'localhost';
|
listen_addresses = "localhost";
|
||||||
password_encryption = scram-sha-256;
|
password_encryption = "scram-sha-256";
|
||||||
shared_buffers = 512MB;
|
shared_buffers = "512MB";
|
||||||
work_mem = 8MB;
|
work_mem = "8MB";
|
||||||
autovacuum_work_mem = -1;
|
autovacuum_work_mem = -1;
|
||||||
min_wal_size = 1GB;
|
min_wal_size = "1GB";
|
||||||
max_wal_size = 4GB;
|
max_wal_size = "4GB";
|
||||||
log_timezone = 'Europe/Berlin';
|
log_timezone = "Europe/Berlin";
|
||||||
timezone = 'Europe/Berlin';
|
timezone = "Europe/Berlin";
|
||||||
datestyle = 'iso, dmy';
|
|
||||||
};
|
};
|
||||||
authentication = pkgs.lib.mkOverride 14 ''
|
authentication = pkgs.lib.mkOverride 14 ''
|
||||||
local all postgres peer
|
local all postgres peer
|
||||||
@ -33,7 +32,7 @@
|
|||||||
#host xmppdb ejabberd samehost scram-sha-256
|
#host xmppdb ejabberd samehost scram-sha-256
|
||||||
#host prosodydb prosody samehost scram-sha-256
|
#host prosodydb prosody samehost scram-sha-256
|
||||||
host keycloakdb keycloak samehost scram-sha-256
|
host keycloakdb keycloak samehost scram-sha-256
|
||||||
''
|
'';
|
||||||
ensureDatabases = [
|
ensureDatabases = [
|
||||||
"giteadb"
|
"giteadb"
|
||||||
"nextclouddb"
|
"nextclouddb"
|
||||||
@ -49,46 +48,46 @@
|
|||||||
ensurePermissions = {
|
ensurePermissions = {
|
||||||
"DATABASE giteadb" = "ALL PRIVILEGES";
|
"DATABASE giteadb" = "ALL PRIVILEGES";
|
||||||
};
|
};
|
||||||
};
|
}
|
||||||
{
|
{
|
||||||
name = "nextcloud";
|
name = "nextcloud";
|
||||||
ensurePermissions = {
|
ensurePermissions = {
|
||||||
"DATABASE nextclouddb" = "ALL PRIVILEGES";
|
"DATABASE nextclouddb" = "ALL PRIVILEGES";
|
||||||
};
|
};
|
||||||
};
|
}
|
||||||
{
|
{
|
||||||
name = "synapse";
|
name = "synapse";
|
||||||
ensurePermissions = {
|
ensurePermissions = {
|
||||||
"DATABASE synapsedb" = "ALL PRIVILEGES";
|
"DATABASE synapsedb" = "ALL PRIVILEGES";
|
||||||
};
|
};
|
||||||
};
|
}
|
||||||
{
|
{
|
||||||
name = "mautrixwa";
|
name = "mautrixwa";
|
||||||
ensurePermissions = {
|
ensurePermissions = {
|
||||||
"DATABASE whatsappdb" = "ALL PRIVILEGES";
|
"DATABASE whatsappdb" = "ALL PRIVILEGES";
|
||||||
};
|
};
|
||||||
};
|
}
|
||||||
{
|
{
|
||||||
name = "mautrixtele";
|
name = "mautrixtele";
|
||||||
ensurePermissions = {
|
ensurePermissions = {
|
||||||
"DATABASE telegramdb" = "ALL PRIVILEGES";
|
"DATABASE telegramdb" = "ALL PRIVILEGES";
|
||||||
};
|
};
|
||||||
};
|
}
|
||||||
{
|
{
|
||||||
name = "mautrixsignal";
|
name = "mautrixsignal";
|
||||||
ensurePermissions = {
|
ensurePermissions = {
|
||||||
"DATABASE signaldb" = "ALL PRIVILEGES";
|
"DATABASE signaldb" = "ALL PRIVILEGES";
|
||||||
};
|
};
|
||||||
};
|
}
|
||||||
{
|
{
|
||||||
name = "keycloak";
|
name = "keycloak";
|
||||||
ensurePermissions = {
|
ensurePermissions = {
|
||||||
"DATABASE keycloakdb" = "ALL PRIVILEGES";
|
"DATABASE keycloakdb" = "ALL PRIVILEGES";
|
||||||
};
|
};
|
||||||
};
|
}
|
||||||
];
|
];
|
||||||
};
|
};
|
||||||
|
|
||||||
services.postgreqlBackup.enable = true;
|
services.postgresqlBackup.enable = true;
|
||||||
|
|
||||||
}
|
}
|
||||||
|
|||||||
Loading…
Reference in New Issue
Block a user