renamed secret files so they are easier to shell glob #60
12 changed files with 9 additions and 9 deletions
|
|
@ -14,7 +14,7 @@
|
||||||
system.stateVersion = "23.11";
|
system.stateVersion = "23.11";
|
||||||
|
|
||||||
sops.secrets.backupKey = {
|
sops.secrets.backupKey = {
|
||||||
sopsFile = ./backupKey.yaml;
|
sopsFile = ./backupKey.secrets.yaml;
|
||||||
owner = config.users.users.fsaccount.name;
|
owner = config.users.users.fsaccount.name;
|
||||||
inherit (config.users.users.fsaccount) group;
|
inherit (config.users.users.fsaccount) group;
|
||||||
mode = "0400";
|
mode = "0400";
|
||||||
|
|
|
||||||
|
|
@ -21,13 +21,13 @@
|
||||||
|
|
||||||
sops.secrets = {
|
sops.secrets = {
|
||||||
allowlistPass = {
|
allowlistPass = {
|
||||||
sopsFile = ./allowlistPass.yaml;
|
sopsFile = ./allowlistPass.secrets.yaml;
|
||||||
owner = "mailman";
|
owner = "mailman";
|
||||||
group = "mailman";
|
group = "mailman";
|
||||||
mode = "0400";
|
mode = "0400";
|
||||||
};
|
};
|
||||||
backupKey = {
|
backupKey = {
|
||||||
sopsFile = ./backupKey.yaml;
|
sopsFile = ./backupKey.secrets.yaml;
|
||||||
owner = "root";
|
owner = "root";
|
||||||
group = "root";
|
group = "root";
|
||||||
mode = "0400";
|
mode = "0400";
|
||||||
|
|
|
||||||
|
|
@ -43,7 +43,7 @@
|
||||||
|
|
||||||
sops.secrets = let
|
sops.secrets = let
|
||||||
allowlistSops = {
|
allowlistSops = {
|
||||||
sopsFile = ./allowlistPass.yaml;
|
sopsFile = ./allowlistPass.secrets.yaml;
|
||||||
owner = "stalwart-mail";
|
owner = "stalwart-mail";
|
||||||
group = "stalwart-mail";
|
group = "stalwart-mail";
|
||||||
mode = "0400";
|
mode = "0400";
|
||||||
|
|
@ -56,32 +56,32 @@
|
||||||
"allowlistPass/koma" = allowlistSops;
|
"allowlistPass/koma" = allowlistSops;
|
||||||
# Virtual alias file
|
# Virtual alias file
|
||||||
"mathebau.aliases" = {
|
"mathebau.aliases" = {
|
||||||
sopsFile = ./mathebau.aliases.yaml;
|
sopsFile = ./mathebau.aliases.secrets.yaml;
|
||||||
owner = "stalwart-mail";
|
owner = "stalwart-mail";
|
||||||
group = "stalwart-mail";
|
group = "stalwart-mail";
|
||||||
mode = "0440";
|
mode = "0440";
|
||||||
};
|
};
|
||||||
"mathechor.aliases" = {
|
"mathechor.aliases" = {
|
||||||
sopsFile = ./mathechor.aliases.yaml;
|
sopsFile = ./mathechor.aliases.secrets.yaml;
|
||||||
owner = "stalwart-mail";
|
owner = "stalwart-mail";
|
||||||
group = "stalwart-mail";
|
group = "stalwart-mail";
|
||||||
mode = "0440";
|
mode = "0440";
|
||||||
};
|
};
|
||||||
"koma.aliases" = {
|
"koma.aliases" = {
|
||||||
sopsFile = ./koma.aliases.yaml;
|
sopsFile = ./koma.aliases.secrets.yaml;
|
||||||
owner = "stalwart-mail";
|
owner = "stalwart-mail";
|
||||||
group = "stalwart-mail";
|
group = "stalwart-mail";
|
||||||
mode = "0440";
|
mode = "0440";
|
||||||
};
|
};
|
||||||
# password for https://stalw.art/docs/auth/authorization/administrator/#fallback-administrator encoded to be supplied in the basic auth header
|
# password for https://stalw.art/docs/auth/authorization/administrator/#fallback-administrator encoded to be supplied in the basic auth header
|
||||||
stalwartAdmin = {
|
stalwartAdmin = {
|
||||||
sopsFile = ./stalwartAdmin.yaml;
|
sopsFile = ./stalwartAdmin.secrets.yaml;
|
||||||
owner = "stalwart-mail";
|
owner = "stalwart-mail";
|
||||||
group = "stalwart-mail";
|
group = "stalwart-mail";
|
||||||
mode = "0400";
|
mode = "0400";
|
||||||
};
|
};
|
||||||
backupKey = {
|
backupKey = {
|
||||||
sopsFile = ./backupKey.yaml;
|
sopsFile = ./backupKey.secrets.yaml;
|
||||||
owner = "root";
|
owner = "root";
|
||||||
group = "root";
|
group = "root";
|
||||||
mode = "0400";
|
mode = "0400";
|
||||||
|
|
|
||||||
Loading…
Add table
Reference in a new issue