matrix/authentication-service
1
0
Fork 0
mirror of https://github.com/matrix-org/matrix-authentication-service.git synced 2025-08-06 06:02:40 +03:00
Code Activity
Files
quenting/admin/user-can-request-admin
authentication-service/docs/setup/database.md
Quentin Gliech 87dc0debbf docs: Rename the "usage" section to "reference"
2024-05-14 10:44:41 +02:00

69 lines
2.3 KiB
Markdown
Raw Permalink Blame History

# Database configuration
The service uses a [PostgreSQL](https://www.postgresql.org/) database to store all of its state.
Although it may be possible to run with earlier versions, it is recommended to use **PostgreSQL 13** or later.
Connection to the database is configured in the [`database`](../reference/configuration.md#database) section of the configuration file.
## Set up a database
You will need to create a dedicated PostgreSQL database for the service.
The database can run on the same server as the service, or on a dedicated host.
The recommended setup for this database is to create a dedicated role and database for the service.
Assuming your PostgreSQL database user is called `postgres`, first authenticate as the database user with:
```sh
su - postgres
# Or, if your system uses sudo to get administrative rights
sudo -u postgres bash
```
Then, create a postgres user and a database with:
```sh
# this will prompt for a password for the new user
createuser --pwprompt mas_user
createdb --owner=mas_user mas
```
The above will create a user called `mas_user` with a password of your choice, and a database called `mas` owned by the `mas_user` user.
## Service configuration
Once the database is created, the service needs to be configured to connect to it.
Edit the [`database`](../reference/configuration.md#database) section of the configuration file to match the database just created:
```yaml
database:
# Full connection string as per
# https://www.postgresql.org/docs/13/libpq-connect.html#id-1.7.3.8.3.6
uri: postgres://<user>:<password>@<host>/<database>
# -- OR --
# Separate parameters
host: <host>
port: 5432
username: <user>
password: <password>
database: <database>
```
## Database migrations
The service manages the database schema with embedded migrations.
Those migrations are run automatically when the service starts, but it is also possible to run them manually.
This is done using the [`database migrate`](../reference/cli/database.md#database-migrate) command:
```sh
mas-cli database migrate
```
## Next steps
Once the database is up, the remaining steps are to:
- [Set up the connection to the homeserver (recommended)](./homeserver.md)
- [Setup email sending (optional)](../reference/configuration.md#email)
- [Configure a reverse proxy (optional)](./reverse-proxy.md)
- [Run the service](./running.md)
View Git Blame Copy Permalink