Richie/dotfiles
1
0
Fork 0
mirror of https://github.com/RichieCahill/dotfiles.git synced 2026-04-17 04:58:19 -04:00
Code Issues Packages Projects Releases Wiki Activity

updated the van_inventory user and db

Browse Source
This commit is contained in:
Richie Cahill
2026-03-08 22:44:03 -04:00
parent 82851eb287
commit 568bf8dd38
2 changed files with 20 additions and 13 deletions
Download Patch File Download Diff File Expand all files Collapse all files

15
systems/brain/services/postgress.nix
View File

@@ -11,16 +11,21 @@
authentication = pkgs.lib.mkOverride 10 '' authentication = pkgs.lib.mkOverride 10 ''
# admins # admins
local all richie peer # These are required for the nixos postgresql setup
local all postgres trust
host all postgres 127.0.0.1/32 trust
host all postgres ::1/128 trust
local all richie trust
host all richie 127.0.0.1/32 trust host all richie 127.0.0.1/32 trust
host all richie ::1/128 trust host all richie ::1/128 trust
host all richie 192.168.90.1/24 trust host all richie 192.168.90.1/24 trust
host all richie 192.168.99.1/24 trust host all richie 192.168.99.1/24 trust
local van_inventory van_inventory peer local vaninventory vaninventory trust
#type database DBuser origin-address auth-method #type database DBuser origin-address auth-method
local hass hass peer local hass hass trust
# ipv4 # ipv4
host hass hass 192.168.90.1/24 trust host hass hass 192.168.90.1/24 trust
@@ -61,7 +66,7 @@
}; };
} }
{ {
name = "van_inventory"; name = "vaninventory";
ensureDBOwnership = true; ensureDBOwnership = true;
ensureClauses = { ensureClauses = {
login = true; login = true;
@@ -81,7 +86,7 @@
ensureDatabases = [ ensureDatabases = [
"hass" "hass"
"richie" "richie"
"van_inventory" "vaninventory"
]; ];
# Thank you NotAShelf # Thank you NotAShelf
# https://github.com/NotAShelf/nyx/blob/d407b4d6e5ab7f60350af61a3d73a62a5e9ac660/modules/core/roles/server/system/services/databases/postgresql.nix#L74 # https://github.com/NotAShelf/nyx/blob/d407b4d6e5ab7f60350af61a3d73a62a5e9ac660/modules/core/roles/server/system/services/databases/postgresql.nix#L74

18
systems/brain/services/van_inventory.nix
View File

@@ -6,11 +6,11 @@
{ {
networking.firewall.allowedTCPPorts = [ 8001 ]; networking.firewall.allowedTCPPorts = [ 8001 ];
users.users.van_inventory = { users.users.vaninventory = {
isSystemAccount = true; isSystemUser = true;
group = "van_inventory"; group = "vaninventory";
}; };
users.groups.van_inventory = { }; users.groups.vaninventory = { };
systemd.services.van_inventory = { systemd.services.van_inventory = {
description = "Van Inventory API"; description = "Van Inventory API";
@@ -23,14 +23,16 @@
environment = { environment = {
PYTHONPATH = "${inputs.self}/"; PYTHONPATH = "${inputs.self}/";
VAN_INVENTORY_DB = "van_inventory"; VAN_INVENTORY_DB = "vaninventory";
VAN_INVENTORY_USER = "van_inventory"; VAN_INVENTORY_USER = "vaninventory";
VAN_INVENTORY_HOST = "/run/postgresql";
VAN_INVENTORY_PORT = "5432";
}; };
serviceConfig = { serviceConfig = {
Type = "simple"; Type = "simple";
User = "van_inventory"; User = "van-inventory";
Group = "van_inventory"; Group = "van-inventory";
ExecStart = "${pkgs.my_python}/bin/python -m python.van_inventory.main --host 0.0.0.0 --port 8001"; ExecStart = "${pkgs.my_python}/bin/python -m python.van_inventory.main --host 0.0.0.0 --port 8001";
Restart = "on-failure"; Restart = "on-failure";
RestartSec = "5s"; RestartSec = "5s";