lukas/puter
1
0
Fork 0
Code Issues Pull requests Actions Packages Projects Releases Wiki Activity

Vaultwarden secrets

Browse source
This commit is contained in:
Lukas Wurzinger 2024-02-14 23:14:00 +01:00
parent 4bc84394c4
commit 60c4022ef3
1 changed files with 8 additions and 0 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

8
hosts/abacus/vaultwarden.nix
View file

@ -2,6 +2,12 @@
inherit (config.networking) domain;
virtualHostName = "vault.${domain}";
in {
age.secrets.vaultwarden = {
file = ../../secrets/vaultwarden.age;
owner = config.systemd.services.vaultwarden.serviceConfig.User;
group = config.systemd.services.vaultwarden.serviceConfig.Group;
};
services.vaultwarden = {
enable = true;
@ -23,6 +29,8 @@ in {
ROCKET_ADDRESS = "127.0.0.1";
ROCKET_PORT = 8000;
};
environmentFile = config.age.secrets.vaultwarden.path;
};
services.nginx.virtualHosts.${virtualHostName} = {