wrapProgram $out/check_eriomem --prefix PATH : ${lib.makeBinPath [
pkgs.s3cmd pkgs.python3
]}
- wrapProgram $out/check_eriomem_age --prefix PATH : ${lib.makeBinPath [
+ makeWrapper $out/check_backup_age $out/check_backup_eriomem_age --prefix PATH : ${lib.makeBinPath [
pkgs.duplicity
]} --set SECRETS_PATH ${lib.optionalString cfg.master config.secrets.fullPaths."eriomem_access_key"}
+ makeWrapper $out/check_backup_age $out/check_backup_ovh_age --prefix PATH : ${lib.makeBinPath [
+ pkgs.duplicity
+ ]} --set SECRETS_PATH ${lib.optionalString cfg.master config.secrets.fullPaths."ovh_access_key"}
wrapProgram $out/notify_by_email --prefix PATH : ${lib.makeBinPath [
pkgs.mailutils
]}
permissions = "0400";
text = config.myEnv.monitoring.ssh_secret_key;
}
- ] ++ lib.optional cfg.master (
+ ] ++ lib.optionals cfg.master (
+ lib.mapAttrsToList (k: v:
{
- dest = "eriomem_access_key";
+ dest = "${k}_access_key";
user = "naemon";
group = "naemon";
permissions = "0400";
text = ''
- export AWS_ACCESS_KEY_ID="${config.myEnv.backup.accessKeyId}"
- export AWS_SECRET_ACCESS_KEY="${config.myEnv.backup.secretAccessKey}"
- export BASE_URL="${config.myEnv.backup.remote}"
+ export AWS_ACCESS_KEY_ID="${v.accessKeyId}"
+ export AWS_SECRET_ACCESS_KEY="${v.secretAccessKey}"
+ export BASE_URL="${v.remote "immae-eldiron"}"
'';
- }
+ }) config.myEnv.backup.remotes
);
# needed since extraResource is not in the closure
systemd.services.naemon.path = [ myplugins ];
projects / perso / Immae / Config / Nix.git / blobdiff