xyno/nix-configs
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

update authentik

Browse source
This commit is contained in:
Lucy Hochkamp 2025-08-23 19:41:01 +02:00
parent bdaf07dca9
commit ebdc6debe4
No known key found for this signature in database
2 changed files with 5 additions and 33 deletions
Download patch file Download diff file Expand all files Collapse all files

2
hosts/ds9/authentik.nix
View file

@ -5,7 +5,7 @@
inputs,
...
}:
let version = "2025.6.3"; in
let version = "2025.8.1"; in
{
imports = [
inputs.quadlet-nix.nixosModules.quadlet

36
hosts/picard/default.nix
View file

@ -73,38 +73,10 @@
users.mutableUsers = false;
services.postgresql.package = pkgs.postgresql_17_jit;
environment.systemPackages = [
(
let
# XXX specify the postgresql package you'd like to upgrade to.
# Do not forget to list the extensions you need.
newPostgres = pkgs.postgresql_17_jit.withPackages (pp: [
# pp.plv8
]);
cfg = config.services.postgresql;
in
pkgs.writeScriptBin "upgrade-pg-cluster" ''
set -eux
# XXX it's perhaps advisable to stop all services that depend on postgresql
systemctl stop postgresql
export NEWDATA="/var/lib/postgresql/${newPostgres.psqlSchema}"
export NEWBIN="${newPostgres}/bin"
export OLDDATA="${cfg.dataDir}"
export OLDBIN="${cfg.finalPackage}/bin"
install -d -m 0700 -o postgres -g postgres "$NEWDATA"
cd "$NEWDATA"
sudo -u postgres "$NEWBIN/initdb" -D "$NEWDATA" ${lib.escapeShellArgs cfg.initdbArgs}
sudo -u postgres "$NEWBIN/pg_upgrade" \
--old-datadir "$OLDDATA" --new-datadir "$NEWDATA" \
--old-bindir "$OLDBIN" --new-bindir "$NEWBIN" \
"$@"
''
)
];
services.postgresql.settings = {
shared_buffers = "4GB";
work_mem = "64MB";
};
systemd.services.caddy.serviceConfig.EnvironmentFile = config.age.secrets.desec.path;
networking.firewall.allowedTCPPorts = [