sourcephile / git / sourcephile-nix.git / blobdiff
? search:
summary | shortlog | log | commit | commitdiff | tree
raw | inline | side by side
apparmor: remove references to Subdomain
[sourcephile-nix.git] / servers / losurdo / postgresql / openconcerto.nix
diff --git a/servers/losurdo/postgresql/openconcerto.nix b/servers/losurdo/postgresql/openconcerto.nix
index f8bad4ec5705dc6e231d1d867a47fcf1f63cbf71..1da4bea099f4d8988c16c9b48241c6e32e780566 100644 (file)
--- a/servers/losurdo/postgresql/openconcerto.nix
+++ b/servers/losurdo/postgresql/openconcerto.nix
@@ -41,6 +41,7 @@ services.postgresql = {
   identMap = ''
     # MAPNAME  SYSTEM-USERNAME  PG-USERNAME
     user       root             ${owner}
+    user       ${owner}         ${db}
   '';
 };
 security.pass.secrets."postgresql/pass/${owner}" = {};
@@ -68,6 +69,8 @@ systemd.services.postgresql = {
       GRANT SELECT ON pg_catalog.pg_database   TO ${owner};
       GRANT SELECT ON pg_catalog.pg_roles      TO ${owner};
       GRANT SELECT ON pg_catalog.pg_tablespace TO ${owner};
+      -- Reallow this to allow pgadmin3
+      GRANT SELECT ON pg_catalog.pg_user       TO ${owner};
       
       -- Enable PL/PGSQL
       CREATE OR REPLACE LANGUAGE plpgsql;
NixOS configurations for Sourcephile's infrastructure