wrapProgram $out/check_eriomem --prefix PATH : ${lib.makeBinPath [
pkgs.s3cmd pkgs.python3
]}
+ wrapProgram $out/check_eriomem_age --prefix PATH : ${lib.makeBinPath [
+ pkgs.duplicity
+ ]} --set SECRETS_PATH ${lib.optionalString cfg.master config.secrets.fullPaths."eriomem_access_key"}
wrapProgram $out/notify_by_email --prefix PATH : ${lib.makeBinPath [
pkgs.mailutils
]}
lib.attrsets.optionalAttrs
(builtins.pathExists specific_file)
(pkgs.callPackage specific_file {
- inherit config emailCheck;
+ inherit config nodes emailCheck;
hostFQDN = config.hostEnv.fqdn;
hostName = name;
});
dest = "naemon/id_rsa";
user = "naemon";
group = "naemon";
- premissions = "0400";
+ permissions = "0400";
text = config.myEnv.monitoring.ssh_secret_key;
}
- ];
+ ] ++ lib.optional cfg.master (
+ {
+ dest = "eriomem_access_key";
+ user = "naemon";
+ group = "naemon";
+ permissions = "0400";
+ text = ''
+ export AWS_ACCESS_KEY_ID="${config.myEnv.backup.accessKeyId}"
+ export AWS_SECRET_ACCESS_KEY="${config.myEnv.backup.secretAccessKey}"
+ export BASE_URL="${config.myEnv.backup.remote}"
+ '';
+ }
+ );
# needed since extraResource is not in the closure
systemd.services.naemon.path = [ myplugins ];
services.naemon = {