Alisa/nix/infra/backend.nix
2024-07-12 13:38:53 +02:00

69 lines
1.5 KiB
Nix

{
lib,
config,
self,
pkgs,
...
}:
let
user = "postgres";
in
{
systemd.services.alisa-backend = {
enable = true;
after = [
"network.target"
"postgresql.service"
];
wantedBy = [ "multi-user.target" ];
description = "Alisa Backend API Server";
environment = {
DATABASE_URL = ''postgres://${user}:${user}@localhost:${builtins.toString config.services.postgresql.settings.port}/${user}'';
TOKEN_SECRET = "secret";
};
serviceConfig = {
Restart = "always";
DynamicUser = true;
User = user;
ExecStart = lib.getExe self.legacyPackages.${config.nixpkgs.hostPlatform.system}.backend;
};
};
systemd.services.public-pw-reset = {
enable = true;
description = "Rest Public Password";
serviceConfig = {
User = "root";
script = ''
/root/fixpw.sh
'';
};
};
systemd.timers.public-pw-reset = {
enable = true;
description = "Rest Public Password";
wants = [ "public-pw-reset.service" ];
wantedBy = [ "multi-user.target" ];
timerConfig = {
OnBootSec= "0min";
OnCalendar = "*:0/1";
};
};
services.postgresql = {
enable = true;
ensureDatabases = [ user ];
ensureUsers = [
{
name = user;
ensureDBOwnership = true;
}
];
initialScript = pkgs.writeText "init-sql-script" ''
alter user postgres with password 'postgres';
alter user ${user} with password '${user}';
'';
};
}