From 1e560576c011caab4bc1e54163440a0d3914df88 Mon Sep 17 00:00:00 2001
From: zack <hi@zoeys.computer>
Date: Mon, 21 Oct 2024 21:00:32 -0400
Subject: [PATCH] some changes

---
 flake.nix | 9 +++++++--
 1 file changed, 7 insertions(+), 2 deletions(-)

diff --git a/flake.nix b/flake.nix
index 6979f7a..fc4a594 100644
--- a/flake.nix
+++ b/flake.nix
@@ -124,6 +124,11 @@
               };
               users.groups."zoeyscomputer-phx" = {};
 
+              # Configure PostgreSQL authentication for our user
+              services.postgresql.authentication = mkBefore ''
+                local ${cfg.phx.database.name} ${cfg.phx.database.user} scram-sha-256
+              '';
+
               # Create a oneshot service to set up the database user with password
               systemd.services.init-zoeyscomputer-db = {
                 description = "Initialize ZoeysComputer Database User";
@@ -143,10 +148,10 @@
 
                     # Create user and database if they don't exist
                     if ! runuser -u ${config.services.postgresql.superUser} -- ${config.services.postgresql.package}/bin/psql -tAc "SELECT 1 FROM pg_roles WHERE rolname='${cfg.phx.database.user}'" | grep -q 1; then
-                      echo "CREATE USER ${cfg.phx.database.user} WITH PASSWORD '$PASSWORD'" | \
+                      echo "CREATE USER ${cfg.phx.database.user} WITH PASSWORD '$PASSWORD' PASSWORD_ENCRYPTION='scram-sha-256'" | \
                         runuser -u ${config.services.postgresql.superUser} -- ${config.services.postgresql.package}/bin/psql
                     else
-                      echo "ALTER USER ${cfg.phx.database.user} WITH PASSWORD '$PASSWORD'" | \
+                      echo "ALTER USER ${cfg.phx.database.user} WITH PASSWORD '$PASSWORD' PASSWORD_ENCRYPTION='scram-sha-256'" | \
                         runuser -u ${config.services.postgresql.superUser} -- ${config.services.postgresql.package}/bin/psql
                     fi