add mediawiki

2022-09-06 17:11:05 +02:00 · 2022-09-06 17:11:05 +02:00 · 7131ba8691
parent 724742c1ee
commit 7131ba8691
1 changed files with 40 additions and 0 deletions
--- a/modules/wiki.nix
+++ b/modules/wiki.nix
@ -0,0 +1,40 @@
+{ config, pkgs, lib, ... }:
+{
+    sops.secrets.postgres_mediawiki.owner = config.systemd.services.mediawiki.serviceConfig.User;
+    services = {
+        mediawiki = {
+            enable = true;
+            name = "FSR Wiki";
+            database = {
+                user = "mediawiki";
+                type = "postgres";
+                socket = "/var/run/postgresql";
+                port = 5432;
+                name = "mediawiki";
+                host = "localhost";
+                passwordFile = config.sops.secrets.postgres_mediawiki.path;
+                createLocally = true;
+            };
+            virtualHost = {
+                hostName = "wiki.quitte.tassilo-tanneberger.de";
+                adminAddr = "root@ifsr.de";
+                forceSSL = true;
+                enableACME = true;
+            };
+        };
+        postgres = {
+            enable = true;
+        };
+    };
+    systemd.services.mediawiki-pgsetup = {
+        description = "Prepare Mediawiki postgres database";
+        wantedBy = [ "multi-user.target" ];
+        after = [ "networking.target" "postgresql.service" ];
+        serviceConfig.Type = "oneshot";
+
+        path = [ pkgs.sudo config.services.postgresql.package ];
+        script = ''
+        sudo -u ${config.services.postgresql.superUser} psql -c "ALTER ROLE mediawiki WITH PASSWORD '$(cat ${config.sops.secrets.postgres_mediawiki.path})'"
+        '';
+    };
+}