jordan/nix-config
1
1
Fork 0
Code Issues 10 Pull Requests Actions Projects 3 Wiki Activity

vaultwarden: move envfile to agenix-rekey
All checks were successful
Check flake / build-amd64-linux (push) Successful in 1m22s
Details

Browse Source
This commit is contained in:
Jordan Holt
2025-09-01 23:22:58 +01:00
parent d43519fc29
commit b3b46e0c2f
3 changed files with 19 additions and 4 deletions
Download Patch File Download Diff File Expand all files Collapse all files

9
hosts/vps1/vaultwarden.nix
View File

@@ -1,5 +1,4 @@
{
inputs,
config,
lib,
...
@@ -12,8 +11,10 @@ let
domain = "vaultwarden.${baseDomain}";
in
{
age.secrets."files/services/vaultwarden/envfile" = {
file = "${inputs.secrets}/files/services/vaultwarden/envfile.age";
age.secrets.vaultwarden-env = {
rekeyFile = ./secrets/vaultwarden-env.age;
mode = "0440";
group = "vaultwarden";
};
services.vaultwarden = {
@@ -33,7 +34,7 @@ in
invitationOrgName = "Vaultwarden";
domain = "https://${domain}";
};
environmentFile = config.age.secrets."files/services/vaultwarden/envfile".path;
environmentFile = config.age.secrets.vaultwarden-env.path;
};
services.nginx.virtualHosts = {