felixalb/pvv-nixos-config
1
0
Fork 0
mirror of https://git.pvv.ntnu.no/Drift/pvv-nixos-config.git synced 2026-05-24 23:31:12 +02:00
Code Issues Projects Releases Wiki Activity

bekkalokk/vaultwarden: restart service on changed sops secrets

Browse Source
This commit is contained in:
h7x4
2026-05-22 18:09:51 +09:00
parent 6f99fa575d
commit 543fd19f8d
1 changed files with 3 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

3
hosts/bekkalokk/services/vaultwarden.nix
View File

@@ -10,11 +10,13 @@ in {
owner = "vaultwarden"; owner = "vaultwarden";
group = "vaultwarden"; group = "vaultwarden";
mode = "440"; mode = "440";
restartUnits = [ "vaultwarden.service" ];
}; };
sops.secrets."vaultwarden/rsa_key.pub.pem" = { sops.secrets."vaultwarden/rsa_key.pub.pem" = {
owner = "vaultwarden"; owner = "vaultwarden";
group = "vaultwarden"; group = "vaultwarden";
mode = "440"; mode = "440";
restartUnits = [ "vaultwarden.service" ];
}; };
sops.secrets."vaultwarden/env/DATABASE_PASSWORD" = { }; sops.secrets."vaultwarden/env/DATABASE_PASSWORD" = { };
sops.secrets."vaultwarden/env/SMTP_PASSWORD" = { }; sops.secrets."vaultwarden/env/SMTP_PASSWORD" = { };
@@ -22,6 +24,7 @@ in {
owner = "vaultwarden"; owner = "vaultwarden";
group = "vaultwarden"; group = "vaultwarden";
mode = "440"; mode = "440";
restartUnits = [ "vaultwarden.service" ];
content = '' content = ''
DATABASE_URL=postgresql://vaultwarden:${config.sops.placeholder."vaultwarden/env/DATABASE_PASSWORD"}@postgres.pvv.ntnu.no/vaultwarden DATABASE_URL=postgresql://vaultwarden:${config.sops.placeholder."vaultwarden/env/DATABASE_PASSWORD"}@postgres.pvv.ntnu.no/vaultwarden
SMTP_PASSWORD=${config.sops.placeholder."vaultwarden/env/SMTP_PASSWORD"} SMTP_PASSWORD=${config.sops.placeholder."vaultwarden/env/SMTP_PASSWORD"}