fi/nix-infra
1
2
Fork 1
Code Issues Pull requests Projects Releases Packages Wiki Activity

Migrate keycloak to sops-nix

Browse source
This commit is contained in:
Fiona Grzebien 2026-05-17 03:10:06 +02:00
commit 5d1fc8bbc3
Signed by: fi
SSH key fingerprint: SHA256:HQgl5VGC4+Yw3ds/0I/DqTge63SPBXvXwhNG/gRW26U
3 changed files with 33 additions and 14 deletions
Download patch file Download diff file Expand all files Collapse all files

9
config/hosts/keycloak/keycloak.nix
View file

@ -10,6 +10,13 @@
http-host = "127.0.0.1";
http-port = 8080;
};
database.passwordFile = "/secrets/keycloak-database-password.secret";
database.passwordFile = "/run/secrets/keycloak-database-password";
};
sops.secrets."keycloak-database-password" = {
mode = "0440";
owner = "root";
group = "systemd-network";
restartUnits = [ "keycloak.service" ];
};
}