2009-03-06 13:27:02 +01:00
|
|
|
{pkgs, config, ...}:
|
|
|
|
|
2007-12-03 05:48:31 +01:00
|
|
|
let
|
2009-07-15 13:19:11 +02:00
|
|
|
inherit (pkgs.lib) mkOption mkIf singleton;
|
2007-12-03 05:48:31 +01:00
|
|
|
|
2008-02-18 12:56:43 +01:00
|
|
|
cfg = config.services.postgresql;
|
|
|
|
|
|
|
|
postgresql = pkgs.postgresql;
|
|
|
|
|
|
|
|
startDependency = if config.services.gw6c.enable then
|
|
|
|
"gw6c" else "network-interfaces";
|
|
|
|
|
2009-07-15 13:19:11 +02:00
|
|
|
run = "${pkgs.su}/bin/su -s ${pkgs.stdenv.shell} postgres";
|
2007-12-03 05:48:31 +01:00
|
|
|
|
2009-05-15 10:00:20 +02:00
|
|
|
flags = if cfg.enableTCPIP then ["-i"] else [];
|
|
|
|
|
2007-12-03 05:48:31 +01:00
|
|
|
in
|
2008-02-18 12:56:43 +01:00
|
|
|
|
2009-07-15 13:19:11 +02:00
|
|
|
{
|
|
|
|
|
|
|
|
###### interface
|
|
|
|
|
|
|
|
options = {
|
|
|
|
|
|
|
|
services.postgresql = {
|
|
|
|
|
|
|
|
enable = mkOption {
|
|
|
|
default = false;
|
|
|
|
description = ''
|
|
|
|
Whether to run PostgreSQL.
|
|
|
|
'';
|
|
|
|
};
|
|
|
|
|
|
|
|
port = mkOption {
|
|
|
|
default = "5432";
|
|
|
|
description = ''
|
|
|
|
Port for PostgreSQL.
|
|
|
|
'';
|
|
|
|
};
|
|
|
|
|
|
|
|
logDir = mkOption {
|
|
|
|
default = "/var/log/postgresql";
|
|
|
|
description = ''
|
|
|
|
Log directory for PostgreSQL.
|
|
|
|
'';
|
|
|
|
};
|
|
|
|
|
|
|
|
dataDir = mkOption {
|
|
|
|
default = "/var/db/postgresql";
|
|
|
|
description = ''
|
|
|
|
Data directory for PostgreSQL.
|
|
|
|
'';
|
|
|
|
};
|
|
|
|
|
|
|
|
subServices = mkOption {
|
|
|
|
default = [];
|
|
|
|
description = ''
|
|
|
|
Subservices list. As it is already implememnted,
|
|
|
|
here is an interface...
|
|
|
|
'';
|
|
|
|
};
|
|
|
|
|
|
|
|
authentication = mkOption {
|
|
|
|
default = ''
|
|
|
|
# Generated file; do not edit!
|
|
|
|
local all all ident sameuser
|
|
|
|
host all all 127.0.0.1/32 md5
|
|
|
|
host all all ::1/128 md5
|
|
|
|
'';
|
|
|
|
description = ''
|
|
|
|
Hosts (except localhost), who you allow to connect.
|
|
|
|
'';
|
|
|
|
};
|
|
|
|
|
|
|
|
allowedHosts = mkOption {
|
|
|
|
default = [];
|
|
|
|
description = ''
|
|
|
|
Hosts (except localhost), who you allow to connect.
|
|
|
|
'';
|
|
|
|
};
|
|
|
|
|
|
|
|
authMethod = mkOption {
|
|
|
|
default = " ident sameuser ";
|
|
|
|
description = ''
|
|
|
|
How to authorize users.
|
|
|
|
Note: ident needs absolute trust to all allowed client hosts.
|
|
|
|
'';
|
|
|
|
};
|
|
|
|
|
|
|
|
enableTCPIP = mkOption {
|
|
|
|
default = false;
|
|
|
|
description = ''
|
|
|
|
Whether to run PostgreSQL with -i flag to enable TCP/IP connections.
|
|
|
|
'';
|
|
|
|
};
|
|
|
|
|
|
|
|
};
|
|
|
|
|
|
|
|
};
|
2008-02-18 12:56:43 +01:00
|
|
|
|
|
|
|
|
2009-07-15 13:19:11 +02:00
|
|
|
###### implementation
|
|
|
|
|
|
|
|
config = mkIf config.services.postgresql.enable {
|
|
|
|
|
|
|
|
users.extraUsers = singleton
|
2009-03-06 13:27:02 +01:00
|
|
|
{ name = "postgres";
|
|
|
|
description = "PostgreSQL server user";
|
2009-07-15 13:19:11 +02:00
|
|
|
};
|
2009-03-06 13:27:02 +01:00
|
|
|
|
2009-07-15 13:19:11 +02:00
|
|
|
users.extraGroups = singleton
|
|
|
|
{ name = "postgres"; };
|
2009-03-06 13:27:02 +01:00
|
|
|
|
2009-07-15 13:19:11 +02:00
|
|
|
environment.systemPackages = [postgresql];
|
2009-03-06 13:27:02 +01:00
|
|
|
|
2009-10-12 20:09:34 +02:00
|
|
|
jobs.postgresql =
|
2009-10-12 19:09:38 +02:00
|
|
|
{ description = "PostgreSQL server";
|
2009-03-06 13:27:02 +01:00
|
|
|
|
2009-11-06 23:19:17 +01:00
|
|
|
startOn = "started ${startDependency}";
|
2009-03-06 13:27:02 +01:00
|
|
|
|
2009-11-07 00:37:31 +01:00
|
|
|
environment =
|
|
|
|
{ TZ = config.time.timeZone;
|
|
|
|
PGDATA = cfg.dataDir;
|
|
|
|
};
|
2009-11-06 23:56:47 +01:00
|
|
|
|
2009-10-12 19:09:38 +02:00
|
|
|
preStart =
|
|
|
|
''
|
2009-11-07 00:37:31 +01:00
|
|
|
# Initialise the database.
|
2009-03-06 13:27:02 +01:00
|
|
|
if ! test -e ${cfg.dataDir}; then
|
|
|
|
mkdir -m 0700 -p ${cfg.dataDir}
|
|
|
|
chown -R postgres ${cfg.dataDir}
|
2009-11-07 00:37:31 +01:00
|
|
|
${run} -c '${postgresql}/bin/initdb -U root'
|
2009-03-06 13:27:02 +01:00
|
|
|
fi
|
2009-11-07 00:37:31 +01:00
|
|
|
|
2009-03-06 13:27:02 +01:00
|
|
|
cp -f ${pkgs.writeText "pg_hba.conf" cfg.authentication} ${cfg.dataDir}/pg_hba.conf
|
2009-11-07 00:37:31 +01:00
|
|
|
|
|
|
|
# We'd like to use the `-w' flag here to wait until the
|
|
|
|
# database is up, but it requires a `postgres' user to
|
|
|
|
# exist. And we can't call `createuser' before the
|
|
|
|
# database is running.
|
2009-11-24 18:07:23 +01:00
|
|
|
${run} -c '${postgresql}/bin/pg_ctl start -o "${toString flags}"'
|
2009-11-07 00:37:31 +01:00
|
|
|
|
|
|
|
# So wait until the server is running.
|
|
|
|
while ! ${run} -c '${postgresql}/bin/pg_ctl status'; do
|
|
|
|
sleep 1
|
|
|
|
done
|
2009-10-12 19:09:38 +02:00
|
|
|
'';
|
2009-03-06 13:27:02 +01:00
|
|
|
|
2009-11-07 00:37:31 +01:00
|
|
|
postStop =
|
|
|
|
''
|
|
|
|
${run} -c '${postgresql}/bin/pg_ctl stop -m fast'
|
|
|
|
'';
|
2009-10-12 19:09:38 +02:00
|
|
|
};
|
2009-07-15 13:19:11 +02:00
|
|
|
|
2009-03-06 13:27:02 +01:00
|
|
|
};
|
2009-07-15 13:19:11 +02:00
|
|
|
|
2007-12-03 05:48:31 +01:00
|
|
|
}
|