hyl.st / helm
nix config
fork atom

make wallabag pure (no secrets :( )

Anish Lakhwara efbaf0ff 96473e4d

+7 -14
+7 -14
hosts/profiles/wallabag/default.nix
··· 1 - { pkgs, config, lib, ... }: 1 + { self, pkgs, config, lib, ... }: 2 2 3 - let 4 - wallabag-password = builtins.readFile "/run/agenix/wallabag_password"; 5 - wallabag-secret = builtins.readFile "/run/agenix/wallabag_secret"; 6 - in 7 3 { 8 - age.secrets.wallabag-password.file = "/run/agenix/wallabag_password"; 9 - age.secrets.wallabag-password.owner = "wallabag"; 10 - age.secrets.wallabag-secret.file = "/run/agenix/wallabag_secret"; 11 - age.secrets.wallabag-secret.owner = "wallabag"; 12 - 4 + # age.secrets.wallabag-password.file = "${self}/secrets/wallabag-password.age"; 5 + # age.secrets.wallabag-secret.file = "${self}/secrets/wallabag-secret.age"; 6 + # age.secrets.wallabag-password.owner = "wallabag"; 7 + # age.secrets.wallabag-secret.owner = "wallabag"; 13 8 services.postgresql = { 14 9 enable = true; 15 10 package = pkgs.postgresql_11; ··· 36 31 database_port: ~ 37 32 database_name: wallabag 38 33 database_user: wallabag 39 - # TODO agenix 40 - database_password: ${wallabag-password} 34 + database_password: wallabag 41 35 # For SQLite, database_path should be "%kernel.project_dir%/data/db/wallabag.sqlite" 42 36 database_path: ~ 43 37 database_table_prefix: wallabag_ ··· 59 53 locale: en 60 54 61 55 # A secret key that's used to generate certain security-related tokens 62 - # TODO agenix 63 - secret: ${wallabag-secret} SAFGOECRIlfal89oe6u0(*^dsaaih961 56 + secret: SAFGOECRIlfal89oe6u0(*^dsaaih961 64 57 65 58 # two factor stuff 66 59 twofactor_auth: true