noe/nixos
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity

pdr: secrets??

Browse source
This commit is contained in:
41666 2024-03-29 21:50:46 -04:00
parent 9277d55791
commit b57795bead
1 changed files with 13 additions and 0 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

13
nixos/hosts/porcelain-doll-repair/default.nix
View file

@ -18,13 +18,26 @@
mode = "0444"; mode = "0444";
}; };
sops.templates."secrets.yaml" = {
content = lib.generators.toYAML {
db = {
pass = config.sops.placeholder.db_password;
};
};
owner = config.services.iceshrimp.user;
group = config.services.iceshrimp.group;
};
services.iceshrimp = { services.iceshrimp = {
enable = true; enable = true;
settings.url = "https://porcelain.doll.repair"; settings.url = "https://porcelain.doll.repair";
dbPasswordFile = config.sops.secrets.db_password.path; dbPasswordFile = config.sops.secrets.db_password.path;
createDb = true; createDb = true;
configureNginx.enable = false; configureNginx.enable = false;
secretConfig = config.sops.templates."secrets.yaml".path;
}; };
services.postgresql.package = pkgs.postgresql_15;
services.redis.servers.iceshrimp.logfile = "stdout"; services.redis.servers.iceshrimp.logfile = "stdout";
} }