From a5d23c80aee2e93436dc2ee09f3710975958d2dc Mon Sep 17 00:00:00 2001
From: Mel <einebeere@gmail.com>
Date: Sun, 29 Dec 2024 22:57:11 +0100
Subject: Create system user for specimen service, and allow it to read name
 secret

Signed-off-by: Mel <einebeere@gmail.com>
---
 configuration/specimen.nix | 3 +++
 1 file changed, 3 insertions(+)

(limited to 'configuration')

diff --git a/configuration/specimen.nix b/configuration/specimen.nix
index a20d4ab..53732b9 100644
--- a/configuration/specimen.nix
+++ b/configuration/specimen.nix
@@ -3,6 +3,9 @@
 {
   age.secrets.name = {
     file = ../secrets/name.age;
+    owner = "specimen";
+    group = "specimen";
+    mode = "440";
   };
 
   services.specimen = {
-- 
cgit 1.4.1