host/Rory-nginx/services/postgres.nix


1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34

{ config, pkgs, lib, ... }:

{
  systemd.tmpfiles.rules = [  "d /mnt/postgres/data 0750 postgres postgres" ];

  services.postgresql = {
    enable = true;
    package = pkgs.postgresql_14;
    enableTCPIP = true;
    authentication = pkgs.lib.mkOverride 10 ''
      # TYPE, DATABASE, USER, ADDRESS, METHOD
      local all all trust
      host all all 127.0.0.1/32 trust
      host all all ::1/128 trust
      host discordbots discordbots 192.168.1.2/32 trust
      host matrix-synapse-rory-gay matrix-synapse-rory-gay 192.168.1.5/32 trust
      host all all 0.0.0.0/0 md5
    '';
    # initialScript = pkgs.writeText "backend-initScript" ''
    #   CREATE ROLE nixcloud WITH LOGIN PASSWORD 'nixcloud' CREATEDB;
    #   CREATE DATABASE nixcloud;
    #   GRANT ALL PRIVILEGES ON DATABASE nixcloud TO nixcloud;
    # '';
    dataDir = "/mnt/postgres/data";
    settings = {
      "max_connections" = "100";
      "shared_buffers" = "128MB";
      "max_wal_size" = "1GB";
      "min_wal_size" = "80MB";
    };
  };

}