sid/sid.ovh
1
0
Fork 0
Code Issues 3 Pull requests 2 Projects Releases Packages Wiki Activity Actions

Merge pull request 'acme ownership for hetzner api key' (#16) from develop into master
All checks were successful
Deploy configs / deploy-configs (push) Successful in 21s
Details

Browse source 
Reviewed-on: #16
This commit is contained in:
sid 2026-04-03 16:45:19 +02:00
commit 127369802c
1 changed files with 14 additions and 2 deletions
Download patch file Download diff file Expand all files Collapse all files

16
hosts/sid/services/nginx.nix
View file

@ -51,8 +51,6 @@ in
credentialsFile = config.sops.templates.hetzner-dns-api-key.path; credentialsFile = config.sops.templates.hetzner-dns-api-key.path;
}; };
}; };
sops.secrets.hetzner-dns-api-key = { };
sops.templates.hetzner-dns-api-key.content = "HETZNER_API_TOKEN=${config.sops.placeholder.hetzner-dns-api-key}";
services.nginx = { services.nginx = {
enable = true; enable = true;
@ -114,4 +112,18 @@ in
# }; # };
# }; # };
}; };
sops =
let
owner = "acme";
group = "acme";
mode = "0400";
in
{
secrets.hetzner-dns-api-key = { inherit owner group mode; };
templates.hetzner-dns-api-key = {
inherit owner group mode;
content = "HETZNER_API_TOKEN=${config.sops.placeholder.hetzner-dns-api-key}";
};
};
} }