vaultwarden: postgresql with SSL
This commit is contained in:
parent
ee34de93ea
commit
428e8f4f87
3 changed files with 8 additions and 1 deletions
|
@ -2,6 +2,8 @@
|
||||||
<rougail version="0.10">
|
<rougail version="0.10">
|
||||||
<services>
|
<services>
|
||||||
<service name="systemd-machined">
|
<service name="systemd-machined">
|
||||||
|
<file>/etc/systemd/system/risotto-images.service</file>
|
||||||
|
<file>/etc/systemd/system/risotto-images.timer</file>
|
||||||
<file>/etc/systemd/network/80-container-vz.network</file>
|
<file>/etc/systemd/network/80-container-vz.network</file>
|
||||||
<file file_type="variable" source="70-container.network" variable="zone_name">systemd_zone_filename</file>
|
<file file_type="variable" source="70-container.network" variable="zone_name">systemd_zone_filename</file>
|
||||||
<file file_type="variable" source="70-container.netdev" variable="zone_name">systemd_netzone_filename</file>
|
<file file_type="variable" source="70-container.netdev" variable="zone_name">systemd_netzone_filename</file>
|
||||||
|
|
|
@ -35,6 +35,11 @@
|
||||||
<value>Vaultwarden</value>
|
<value>Vaultwarden</value>
|
||||||
</variable>
|
</variable>
|
||||||
</family>
|
</family>
|
||||||
|
<family name="postgresql" description="PostgreSQL">
|
||||||
|
<variable name="pg_client_key_owner" redefine="True">
|
||||||
|
<value>vaultwarden</value>
|
||||||
|
</variable>
|
||||||
|
</family>
|
||||||
</variables>
|
</variables>
|
||||||
<constraints>
|
<constraints>
|
||||||
<fill name="get_password">
|
<fill name="get_password">
|
||||||
|
|
|
@ -20,7 +20,7 @@ DATA_FOLDER=/srv/vaultwarden
|
||||||
## - https://www.postgresql.org/docs/current/libpq-connect.html#LIBPQ-CONNSTRING
|
## - https://www.postgresql.org/docs/current/libpq-connect.html#LIBPQ-CONNSTRING
|
||||||
# DATABASE_URL=postgresql://user:password@host[:port]/database_name
|
# DATABASE_URL=postgresql://user:password@host[:port]/database_name
|
||||||
#>GNUNUX
|
#>GNUNUX
|
||||||
DATABASE_URL=postgresql://%%pg_client_username:%%pg_client_password@%%pg_client_server_domainname/%%pg_client_database?sslmode=verify-full
|
DATABASE_URL=postgresql://%%pg_client_username:%%pg_client_password@%%pg_client_server_domainname/%%pg_client_database?sslmode=verify-full&sslcert=/etc/pki/tls/certs/postgresql.crt&sslkey=/etc/pki/tls/private/postgresql.key&sslrootcert=/etc/pki/ca-trust/source/anchors/ca_PostgreSQL.crt
|
||||||
#<GNUNUX
|
#<GNUNUX
|
||||||
|
|
||||||
## Database max connections
|
## Database max connections
|
||||||
|
|
Loading…
Reference in a new issue