summaryrefslogtreecommitdiff
path: root/hosts
diff options
context:
space:
mode:
Diffstat (limited to '')
-rw-r--r--hosts/flora/services/hedgedoc.nix5
-rw-r--r--hosts/flora/services/pleroma.nix7
2 files changed, 7 insertions, 5 deletions
diff --git a/hosts/flora/services/hedgedoc.nix b/hosts/flora/services/hedgedoc.nix
index 84721ce..038f99f 100644
--- a/hosts/flora/services/hedgedoc.nix
+++ b/hosts/flora/services/hedgedoc.nix
@@ -20,7 +20,7 @@ in
config = {config, pkgs, ... }: {
# open CodiMD port
- networking.firewall.allowedTCPPorts = [ config.services.codimd.configuration.port ];
+ networking.firewall.allowedTCPPorts = [ config.services.hedgedoc.configuration.port ];
# database (postgres 11), with default database reachable for CodiMD; no imperative config needed!
services.postgresql = {
@@ -28,7 +28,7 @@ in
package = pkgs.postgresql_11;
ensureDatabases = [ "codimd" ];
ensureUsers = [ {
- name = "codimd";
+ name = "hedgedoc";
ensurePermissions = { "DATABASE codimd" = "ALL PRIVILEGES";};
} ];
# ugly workaround to allow CodiMD to login without password — this service has lots of options,
@@ -36,6 +36,7 @@ in
authentication = pkgs.lib.mkForce ''
# Generated file; do not edit!
local all all trust
+ host codimd hedgedoc ::1/18 trust
host codimd codimd ::1/128 trust
'';
};
diff --git a/hosts/flora/services/pleroma.nix b/hosts/flora/services/pleroma.nix
index a76a9eb..fca9d65 100644
--- a/hosts/flora/services/pleroma.nix
+++ b/hosts/flora/services/pleroma.nix
@@ -19,17 +19,18 @@ in
config = {pkgs, config, ...}: {
- # pleroma is only on unstable for now, so import it here
- imports = [ "${sources.nixpkgs-unstable}/nixos/modules/services/networking/pleroma.nix" ];
# generating the manual will fail when mixing nixos channels,
# so disable it here or this won't build at all.
documentation.enable = false;
# pleroma has a cli tool for configuration
- environment.systemPackages = [ pkgs.pleroma pkgs.dnsutils ];
+ environment.systemPackages = [ pkgs.dnsutils ];
services.pleroma = {
enable = true;
+
+
+ package = (import sources.nixpkgs-unstable {}).pleroma;
# this is barely necessary at this point — all that's
# set in here is the default_signer for joken, and the