Local changes to procul
This commit is contained in:
parent
0740a6f0d1
commit
b5fcbc1a70
@ -149,7 +149,7 @@ let
|
|||||||
|
|
||||||
nsRecords = ns-hosts:
|
nsRecords = ns-hosts:
|
||||||
join-lines ((mapAttrsToList (host: _: "@ IN NS ${host}.") ns-hosts) ++
|
join-lines ((mapAttrsToList (host: _: "@ IN NS ${host}.") ns-hosts) ++
|
||||||
(mapAttrsToList (host: ip: "${host} IN A ${ip}") ns-hosts));
|
(mapAttrsToList (host: ip: "${host}. IN A ${ip}") ns-hosts));
|
||||||
|
|
||||||
in {
|
in {
|
||||||
|
|
||||||
|
@ -106,6 +106,15 @@ in {
|
|||||||
];
|
];
|
||||||
};
|
};
|
||||||
|
|
||||||
|
client.dns = {
|
||||||
|
enable = true;
|
||||||
|
ipv4 = true;
|
||||||
|
ipv6 = true;
|
||||||
|
user = "fudo-client";
|
||||||
|
external-interface = "extif0";
|
||||||
|
password-file = "/srv/client/secure/client.passwd";
|
||||||
|
};
|
||||||
|
|
||||||
# Not all users need access to procul; don't allow LDAP-user access.
|
# Not all users need access to procul; don't allow LDAP-user access.
|
||||||
authentication.enable = false;
|
authentication.enable = false;
|
||||||
|
|
||||||
@ -210,15 +219,23 @@ in {
|
|||||||
|
|
||||||
users = {
|
users = {
|
||||||
gituser = {
|
gituser = {
|
||||||
password = fileContents "/srv/git/secure/db.passwd";
|
password-file = "/srv/git/secure/db.passwd";
|
||||||
databases = {
|
databases = {
|
||||||
git = "ALL PRIVILEGES";
|
git = {
|
||||||
|
access = "CONNECT";
|
||||||
|
entity-access = {
|
||||||
|
"ALL TABLES IN SCHEMA public" = "SELECT,INSERT,UPDATE,DELETE";
|
||||||
|
"ALL SEQUENCES IN SCHEMA public" = "SELECT, UPDATE";
|
||||||
|
};
|
||||||
|
};
|
||||||
};
|
};
|
||||||
};
|
};
|
||||||
};
|
};
|
||||||
|
|
||||||
databases = {
|
databases = {
|
||||||
git = ["niten"];
|
git = {
|
||||||
|
users = ["niten"];
|
||||||
|
};
|
||||||
};
|
};
|
||||||
};
|
};
|
||||||
|
|
||||||
|
Loading…
Reference in New Issue
Block a user