aboutsummaryrefslogtreecommitdiff
path: root/debian
diff options
context:
space:
mode:
Diffstat (limited to 'debian')
-rw-r--r--debian/etc/taler-exchange-db.conf11
-rw-r--r--debian/etc/taler-exchange.conf18
-rw-r--r--debian/etc/taler-wire.conf10
-rw-r--r--debian/taler-exchange.postinst7
4 files changed, 46 insertions, 0 deletions
diff --git a/debian/etc/taler-exchange-db.conf b/debian/etc/taler-exchange-db.conf
new file mode 100644
index 000000000..a6217f486
--- /dev/null
+++ b/debian/etc/taler-exchange-db.conf
@@ -0,0 +1,11 @@
+# This file should contain the access control information to talk to
+# the exchange database.
+
+[exchangedb-postgres]
+
+# Typically, there should only be a single line here, of the form:
+
+# CONFIG=postgres:///DATABASE
+
+# The details of the URI depend on where the database lives and how
+# access control was configured.
diff --git a/debian/etc/taler-exchange.conf b/debian/etc/taler-exchange.conf
index 2b304aed3..b9eba1651 100644
--- a/debian/etc/taler-exchange.conf
+++ b/debian/etc/taler-exchange.conf
@@ -1,3 +1,9 @@
+# First line should be: "INLINE@ /etc/taler-exchange-db.conf"
+@INLINE@ /etc/taler-exchange-db.conf
+# Do not edit this file using 'taler-config', otherwise the line
+# above will be lost!
+
+
[PATHS]
# Move runtime data "tmp" directory to /var/lib/taler-exchange/
@@ -5,6 +11,18 @@
TALER_RUNTIME_DIR = /var/lib/taler-exchange/tmp/
[exchange]
+# Debian package is configured to use a reverse proxy with a UNIX
+# domain socket. See nginx/apache configuration files.
SERVE = UNIX
UNIXPATH = /var/lib/taler-exchange/exchange.sock
+
+# Only supported database is Postgres right now.
DATABASE = postgres
+
+[taler]
+# Here you need to set the currency of your exchange:
+# CURRENCY = KUDOS
+
+[coin_FOO]
+# You must specify the various denominations to be offered by your exchange
+# in sections called "coin_".
diff --git a/debian/etc/taler-wire.conf b/debian/etc/taler-wire.conf
index e69de29bb..02c5993f9 100644
--- a/debian/etc/taler-wire.conf
+++ b/debian/etc/taler-wire.conf
@@ -0,0 +1,10 @@
+# First line should be: "INLINE@ /etc/taler-exchange-db.conf"
+@INLINE@ /etc/taler-exchange-db.conf
+# Do not edit this file using 'taler-config', otherwise the line
+# above will be lost!
+
+
+# This file should contain the wire account access information which is needed
+# by the Taler exchange to talk to LibEuFin to interact with the bank.
+# The file SHOULD only be readable for the "taler-exchange-wire" user,
+# as other users/services have no business talking to the bank.
diff --git a/debian/taler-exchange.postinst b/debian/taler-exchange.postinst
index e2b2ab310..3ef46bf2b 100644
--- a/debian/taler-exchange.postinst
+++ b/debian/taler-exchange.postinst
@@ -211,6 +211,13 @@ EOF
chmod 770 /var/lib/taler-exchange/tmp
chmod +s /var/lib/taler-exchange/tmp
+ chown ${_WIREUSERNAME}:root /etc/taler-wire.conf
+ chmod 460 /etc/taler-wire.conf
+ chown root:${_DBGROUPNAME} /etc/taler-exchange-db.conf
+ chmod 640 /etc/taler-exchange-db.conf
+ chown ${_EUSERNAME}:${_GROUPNAME} /etc/taler-exchange.conf
+ chmod 460 /etc/taler-wire.conf
+
systemctl daemon-reload
echo "done."