commit 38398fade1298090c192651d7b1fdde262bc336e · pyrox.dev/nixpkgs

+4 -6
nixos/modules/services/web-apps/discourse.nix
···

       661
       661
        
             ];

     

       662
       662
        
             path = cfg.package.runtimeDeps ++ [

     

       663
       663
        
               postgresqlPackage

     

       664
       664
       -
               pkgs.replace

     

       664
       664
       +
               pkgs.replace-secret

     

       665
       665
        
               cfg.package.rake

     

       666
       666
        
             ];

     

       667
       667
        
             environment = cfg.package.runtimeEnv // {

     
···

       688
       688
        
       

     

       689
       689
        
                 mkSecretReplacement = file:

     

       690
       690
        
                   lib.optionalString (file != null) ''

     

       691
       691
       -
                     (

     

       692
       692
       -
                         password=$(<'${file}')

     

       693
       693
       -
                         replace-literal -fe '${file}' "$password" /run/discourse/config/discourse.conf

     

       694
       694
       -
                     )

     

       691
       691
       +
                     replace-secret '${file}' '${file}' /run/discourse/config/discourse.conf

     

       695
       692
        
                   '';

     

       696
       693
        
               in ''

     

       697
       694
        
                 set -o errexit -o pipefail -o nounset -o errtrace

     
···

       713
       710
        
                         cfg.siteSettings

     

       714
       711
        
                         "/run/discourse/config/nixos_site_settings.json"

     

       715
       712
        
                     }

     

       716
       716
       -
                     install -T -m 0400 -o discourse ${discourseConf} /run/discourse/config/discourse.conf

     

       713
       713
       +
                     install -T -m 0600 -o discourse ${discourseConf} /run/discourse/config/discourse.conf

     

       717
       714
        
                     ${mkSecretReplacement cfg.database.passwordFile}

     

       718
       715
        
                     ${mkSecretReplacement cfg.mail.outgoing.passwordFile}

     

       719
       716
        
                     ${mkSecretReplacement cfg.redis.passwordFile}

     

       720
       717
        
                     ${mkSecretReplacement cfg.secretKeyBaseFile}

     

       718
       718
       +
                     chmod 0400 /run/discourse/config/discourse.conf

     

       721
       719
        
                 )

     

       722
       720
        
       

     

       723
       721
        
                 discourse-rake db:migrate >>/var/log/discourse/db_migration.log