mirror of
https://github.com/adrlau/nix-dotfiles.git
synced 2024-12-23 03:07:30 +01:00
fixed secret perms
This commit is contained in:
parent
0903e94482
commit
168197505d
@ -25,7 +25,5 @@
|
||||
|
||||
# This is the actual specification of the secrets.
|
||||
#sops.secrets."myservice/my_subdir/my_secret" = {};
|
||||
sops.secrets."acme/certs" = { };
|
||||
sops.secrets."nginx/defaultpass" = { };
|
||||
|
||||
}
|
||||
|
@ -19,6 +19,13 @@
|
||||
users.users.nginx.extraGroups = [ "acme" ];
|
||||
users.users.root.extraGroups = [ "acme" ];
|
||||
|
||||
#declare secrets
|
||||
sops.secrets."acme/certs" = { };
|
||||
sops.secrets."nginx/defaultpass" = {
|
||||
restartUnits = [ "nginx.service" ];
|
||||
owner = "nginx";
|
||||
};
|
||||
|
||||
#TODO add oauth2 proxy to auth
|
||||
# services.oauth2_proxy = {
|
||||
# enable = true;
|
||||
|
Loading…
Reference in New Issue
Block a user