torjus/nixos-servers
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects 1 Releases Wiki Activity

fixup! vault: replace vault with openbao
Some checks failed
Run nix flake check / flake-check (push) Failing after 3m18s
Details

Browse Source
This commit is contained in:
Torjus Håkestad
2026-02-01 22:02:35 +01:00
parent 8df1d4398a
commit afff1877ab
1 changed files with 9 additions and 2 deletions
Download Patch File Download Diff File Expand all files Collapse all files

11
services/vault/default.nix
View File

@@ -10,8 +10,8 @@
listener.default = { listener.default = {
type = "tcp"; type = "tcp";
address = "0.0.0.0:8200"; address = "0.0.0.0:8200";
tls_cert_file = "/var/lib/openbao/cert.pem"; tls_cert_file = "/run/credentials/openbao.service/cert.pem";
tls_key_file = "/var/lib/openbao/key.pem"; tls_key_file = "/run/credentials/openbao.service/key.pem";
}; };
listener.socket = { listener.socket = {
type = "unix"; type = "unix";
@@ -19,4 +19,11 @@
}; };
}; };
}; };
systemd.services.openbao.serviceConfig = {
LoadCredential = [
"key.pem:/var/lib/openbao/key.pem"
"cert.pem:/var/lib/openbao/cert.pem"
];
};
} }