Joey Hafner
9311a40618
- Move secrets.env to registration.token. - Rotate key for registration token.
21 lines
514 B
Nix
21 lines
514 B
Nix
{ sys, ... }: let stack = "gitea-runner"; in {
|
|
home-manager.users."${sys.username}".home.file = {
|
|
"${stack}" = {
|
|
enable = true;
|
|
recursive = true;
|
|
source = ./.;
|
|
target = "stacks/${stack}/";
|
|
};
|
|
"${stack}/.env" = {
|
|
enable = true;
|
|
text = ''APPDATA=${sys.dataDirs.appdata}/${stack}'';
|
|
target = "stacks/${stack}/.env";
|
|
};
|
|
};
|
|
sops.secrets."${stack}" = {
|
|
sopsFile = ./registration.token;
|
|
key = "";
|
|
mode = "0440";
|
|
owner = sys.username;
|
|
};
|
|
} |