kyra(hardening): step-ca service secrets managment
Signed-off-by: s0me1newithhand7s <git+me@hand7s.org>
This commit is contained in:
s0me1newithhand7s
parent
8894fdb401
commit
a04279affe
1 changed files with 13 additions and 0 deletions
13
kyra/systemd/step-ca-service.nix
Normal file
13
kyra/systemd/step-ca-service.nix
Normal file
|
|
@ -0,0 +1,13 @@
|
||||||
|
{config, ...}: {
|
||||||
|
systemd = {
|
||||||
|
services = {
|
||||||
|
"step-ca" = {
|
||||||
|
serviceConfig = {
|
||||||
|
EnvironmentFile = [
|
||||||
|
config.sops.templates."step-ca.env".path
|
||||||
|
];
|
||||||
|
};
|
||||||
|
};
|
||||||
|
};
|
||||||
|
};
|
||||||
|
}
|
||||||
Loading…
Add table
Add a link
Reference in a new issue