diff options
author | makefu <github@syntax-fehler.de> | 2023-07-02 16:05:02 +0200 |
---|---|---|
committer | makefu <github@syntax-fehler.de> | 2023-07-02 16:05:02 +0200 |
commit | ecfa5966701bbda871aca18ff81d2200f1990f88 (patch) | |
tree | 9e190d0e9314bf40c33b8d26e04da892a0ad0f9d | |
parent | 7ed66f21564e85f9a3933849f6ca0dcff3d10c57 (diff) |
deployment/nextcloud: use sops.secrets
-rw-r--r-- | 2configs/deployment/owncloud.nix | 16 |
1 files changed, 8 insertions, 8 deletions
diff --git a/2configs/deployment/owncloud.nix b/2configs/deployment/owncloud.nix index 8e5e71f11..12750729a 100644 --- a/2configs/deployment/owncloud.nix +++ b/2configs/deployment/owncloud.nix @@ -27,17 +27,14 @@ in { }; - - krebs.secret.files.nextcloud-db-pw = { + sops.secrets."nexcloud-db-pw" = { path = dbpw; - owner.name = "nextcloud"; - source-path = toString <secrets> + "/nextcloud-db-pw"; + owner = "nextcloud"; }; - krebs.secret.files.nextcloud-admin-pw = { + sops.secrets."nextcloud-admin-pw" = { path = adminpw; - owner.name = "nextcloud"; - source-path = toString <secrets> + "/nextcloud-admin-pw"; + owner = "nextcloud"; }; services.nginx.virtualHosts."o.euer.krebsco.de" = { @@ -48,7 +45,8 @@ in { enable = true; databases = [ config.services.nextcloud.config.dbname ]; }; -systemd.services.postgresqlBackup-nextcloud.serviceConfig.SupplementaryGroups = [ "download" ]; + + systemd.services.postgresqlBackup-nextcloud.serviceConfig.SupplementaryGroups = [ "download" ]; state = [ # services.postgresql.dataDir @@ -99,9 +97,11 @@ systemd.services.postgresqlBackup-nextcloud.serviceConfig.SupplementaryGroups = after = ["postgresql.service"]; serviceConfig.RequiresMountFor = [ "/media/cloud" ]; }; + systemd.services."phpfpm-nextcloud".serviceConfig.RequiresMountFor = [ "/media/cloud" "/var/lib/nextcloud/data" ]; + systemd.services."phpfpm".serviceConfig.RequiresMountFor = [ "/media/cloud" ]; } |