]> Git — Sourcephile - sourcephile-nix.git/blob - servers/mermet/keys.nix
sourcephile / git / sourcephile-nix.git / blob
? search:
summary | shortlog | log | commit | commitdiff | tree
history | raw | HEAD
mermet: prepare to receive autogeree.net's mails
[sourcephile-nix.git] / servers / mermet / keys.nix
1 { pkgs, lib, config, ... }:
2 let
3 inherit (builtins.extraBuiltins) pass;
4 in
5 {
6 deployment.keys = {
7 "sourcephile.fr.key.pem" = {
8 text = pass "x509/sourcephile.fr/key.pem";
9 user = "root";
10 group = "root";
11 destDir = "/run/keys/";
12 permissions = "0400"; # WARNING: not enforced when deployment.storeKeysOnMachine = true
13 };
14 "autogeree.net.key.pem" = {
15 text = pass "x509/autogeree.net/key.pem";
16 user = "root";
17 group = "root";
18 destDir = "/run/keys/";
19 permissions = "0400"; # WARNING: not enforced when deployment.storeKeysOnMachine = true
20 };
21 };
22 }
NixOS configurations for Sourcephile's infrastructure