Cluster secrets #100

Merged
max merged 17 commits from pr-cluster-secrets into master 2024-07-08 22:23:11 +03:00
8 changed files with 5 additions and 3 deletions
Showing only changes of commit 7b95308f0d - Show all commits

View file

@ -5,10 +5,8 @@ let
in in
{ {
age.secrets.idmServiceAccountCredentials.file = ./secrets/service-account-${config.networking.hostName}.age;
systemd.services.kanidm-unixd.serviceConfig = { systemd.services.kanidm-unixd.serviceConfig = {
EnvironmentFile = config.age.secrets.idmServiceAccountCredentials.path; EnvironmentFile = cluster.config.services.idm.secrets.serviceAccountCredentials.path;
}; };
services.kanidm = { services.kanidm = {

View file

@ -33,6 +33,10 @@
./policies/soda.nix ./policies/soda.nix
]; ];
}; };
secrets.serviceAccountCredentials = {
nodes = config.services.idm.nodes.client;
shared = false;
};
}; };
dns.records = let dns.records = let