upRootNutrition/dotfiles
upRootNutrition/dotfiles
1
0
Fork 0
mirror of https://gitlab.com/upRootNutrition/dotfiles.git synced 2025-12-14 02:20:53 -06:00
Code Issues Projects 1 Releases Packages Wiki Activity Actions

chore: updated sops secrets

Browse source
This commit is contained in:
Nick 2025-12-08 03:56:44 -06:00
parent e341e5878f
commit 8cd193ec49
3 changed files with 10 additions and 46 deletions
Download patch file Download diff file Expand all files Collapse all files

14
modules/nixos/guests/firefly-iii/default.nix
View file

@ -40,8 +40,8 @@ in
};
settings = {
APP_URL = "https://${host}";
APP_KEY_FILE = "/etc/firefly-secrets/pass";
DB_PASSWORD_FILE = "/etc/firefly-secrets/data";
APP_KEY_FILE = "/etc/firefly-secrets/${user0}-pass";
DB_PASSWORD_FILE = "/etc/firefly-secrets/${user0}-data";
DB_CONNECTION = "pgsql";
DB_HOST = "/run/postgresql";
DB_DATABASE = "firefly-iii";
@ -51,7 +51,7 @@ in
MAIL_PORT = smtpCfg.ports.port0;
MAIL_FROM = smtpCfg.email.address0;
MAIL_USERNAME = smtpCfg.email.address0;
MAIL_PASSWORD_FILE = "/etc/firefly-secrets/smtp";
MAIL_PASSWORD_FILE = "/etc/firefly-secrets/${user0}-smtp";
MAIL_ENCRYPTION = "tls";
SITE_OWNER = email.address2;
};
@ -123,9 +123,9 @@ in
};
script = ''
mkdir -p /etc/firefly-secrets
cp /run/secrets/pass /etc/firefly-secrets/pass
cp /run/secrets/data /etc/firefly-secrets/data
cp /run/secrets/smtp /etc/firefly-secrets/smtp
cp /run/secrets/${user0}-pass /etc/firefly-secrets/${user0}-pass
cp /run/secrets/${user0}-data /etc/firefly-secrets/${user0}-data
cp /run/secrets/${user0}-smtp /etc/firefly-secrets/${user0}-smtp
chmod 755 /etc/firefly-secrets
chmod 644 /etc/firefly-secrets/*
'';
@ -219,7 +219,7 @@ in
secrets = builtins.listToAttrs (
map
(secret: {
name = "${serviceCfg.name}/${secret}";
name = "${serviceCfg.name}/${user0}-${secret}";
value = {
owner = "root";
group = "root";