gensokyo-zone/infrastructure
1
0
Fork 0
mirror of https://github.com/gensokyo-zone/infrastructure.git synced 2026-02-09 12:29:19 -08:00
Code Issues Projects Releases Packages Wiki Activity Actions

Pass + Secrets rework in all services

Browse source
This commit is contained in:
kat witch 2021-08-08 21:19:07 +01:00
parent 5dd38fac70
commit 5081308279
No known key found for this signature in database
GPG key ID: 1B477797DCA5EC72
13 changed files with 78 additions and 83 deletions
Download patch file Download diff file Expand all files Collapse all files

9
config/services/mail/default.nix
View file

@ -5,10 +5,9 @@ with lib;
{
imports = [ sources.nixos-mailserver.outPath ];
deploy.tf.variables.domainkey_kitty = {
type = "string";
value.shellCommand = "bitw get infra/domainkey-kitty";
};
kw.secrets = [
"mail-domainkey-kitty"
];
deploy.tf.dns.records.services_mail_mx = {
tld = config.kw.dns.tld;
@ -34,7 +33,7 @@ with lib;
deploy.tf.dns.records.services_mail_domainkey = {
tld = config.kw.dns.tld;
domain = "mail._domainkey";
txt.value = tf.variables.domainkey_kitty.ref;
txt.value = tf.variables.mail-domainkey-kitty.ref;
};
mailserver = {