diff options
| author | Mel <einebeere@gmail.com> | 2024-12-07 03:24:15 +0100 |
|---|---|---|
| committer | Mel <einebeere@gmail.com> | 2024-12-07 03:41:20 +0100 |
| commit | 44a4f7c6bac97a3381a2b7de8707cd9389f5460f (patch) | |
| tree | f31f04984119dbdb6adba41ed8a1ff1303558d27 /services | |
| parent | 8930b867a5bc863cf1362d3d27579e784a4bbe97 (diff) | |
| download | network-44a4f7c6bac97a3381a2b7de8707cd9389f5460f.tar.zst network-44a4f7c6bac97a3381a2b7de8707cd9389f5460f.zip | |
Move secrets and keys into agenix
Signed-off-by: Mel <einebeere@gmail.com>
Diffstat (limited to 'services')
| -rw-r--r-- | services/pds.nix | 9 |
1 files changed, 6 insertions, 3 deletions
diff --git a/services/pds.nix b/services/pds.nix index 55dc157..45be843 100644 --- a/services/pds.nix +++ b/services/pds.nix @@ -1,4 +1,4 @@ -{ pkgs, auxiliaryPkgs, ... }: +{ config, pkgs, auxiliaryPkgs, ... }: let inherit (pkgs) dockerTools glibc; @@ -25,6 +25,10 @@ let in { + age.secrets.pds-secrets = { + file = ../secrets/pds-secrets.age; + }; + foundation.services.pds = { image = { imageFile = pdsImage; image = "pds:${pds.version}"; }; ports = [ [ pdsLocalPort 3000 ] ]; @@ -51,8 +55,7 @@ in LOG_ENABLED = "true"; }; - # TODO: use age - environmentFiles = [ /srv/pds/secret.env ]; + environmentFiles = [ config.age.secrets.pds-secrets.path ]; workdir = "/pds"; entrypoint = "${pds}/bin/pds"; |