wurzel/fruitbasket
10
1
Fork 1
Code Issues 5 Pull requests Projects Releases Packages Wiki Activity

fixing funny sogo sops problem

Browse source
This commit is contained in:
revol-xut 2023-05-12 15:17:22 +02:00
parent 1e93c28e5a
commit 86a615bbf0
No known key found for this signature in database
GPG key ID: 4F56FF7759627D07
6 changed files with 24 additions and 12 deletions
Download patch file Download diff file Expand all files Collapse all files

15
modules/sogo.nix
View file

@ -5,11 +5,14 @@ let
pg-port = toString config.services.postgresql.port;
in
{
sops.secrets.ldap_search = {
owner = config.systemd.services.sogo.serviceConfig.User;
};
sops.secrets.postgres_sogo = {
owner = config.systemd.services.sogo.serviceConfig.User;
sops.secrets = {
postgres_sogo = {
owner = config.systemd.services.sogo.serviceConfig.User;
};
sogo_ldap_search = {
key = "portunus/users/search-password";
owner = config.systemd.services.sogo.serviceConfig.User;
};
};
services = {
@ -35,7 +38,7 @@ in
OCSSessionsFolderURL = "postgresql://sogo:POSTGRES_PASSWORD@localhost:${pg-port}/sogo/sogo_sessions_folder";
''; # Hier ist bindPassword noch nicht vollständig
configReplaces = {
"LDAP_SEARCH" = config.sops.secrets.ldap_search.path;
"LDAP_SEARCH" = config.sops.secrets.sogo_ldap_search.path;
"POSTGRES_PASSWORD" = config.sops.secrets.postgres_sogo.path;
};
vhostName = "${sogo-hostname}";