sercanto/mio-ops
1
0
Fork 0
Code Issues Pull requests Packages Projects Releases Activity

chore(nix): add nextcloud age permissions

Browse source
This commit is contained in:
Serĉanto de Scio 2024-08-24 01:34:35 +10:00
parent b68225b9dd
commit 7f89513b6c
Signed by: sercanto
GPG key ID: A4122FF3971B6865
1 changed files with 18 additions and 3 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

21
profiles/nextcloud.nix
View file

@ -1,11 +1,26 @@
# NixOps configuration for the hosts running Nextcloud
{
age ? config.age,
config,
pkgs,
lib,
...
}: {
age.secrets = {
nextcloud-dbpass = {
file = ../../secrets/nextcloud-dbpass.age;
path = "/run/keys/nextcloud-dbpass";
mode = "0640";
owner = "nextcloud";
group = "nextcloud";
};
nextcloud-adminpass = {
file = ../../secrets/nextcloud-adminpass.age;
path = "/run/keys/nextcloud-adminpass";
mode = "0640";
owner = "nextcloud";
group = "nextcloud";
};
};
services.nextcloud = {
enable = true; # Enable Nextcloud
hostName = "cloud.mcwhirter.io"; # FQDN for the Nextcloud instance
@ -16,8 +31,8 @@
dbname = "nextcloud"; # Set the database name
dbhost = "/run/postgresql"; # Set the database connection
dbuser = "nextcloud"; # Set the database user
dbpassFile = age.secrets.nextcloud.dbpass; # Where to find the database password
adminpassFile = age.secrets.nextcloud.adminpass; # Where to find the admin password
dbpassFile = config.age.secrets.nextcloud-dbpass.path;
adminpassFile = config.age.secrets.nextcloud-adminpass.path;
adminuser = "root"; # Set the admin user name
};
autoUpdateApps = {