Move secrets to flakes

[perso/Immae/Config/Nix.git] / modules / private / websites / tools / diaspora / default.nix

diff --git a/modules/private/websites/tools/diaspora/default.nix b/modules/private/websites/tools/diaspora/default.nix
index 5d2b19f27fa88d7affd70518961155f53ab10161..663fe88d143596be0eb9be82ccffa9068d8ee572 100644 (file)
--- a/modules/private/websites/tools/diaspora/default.nix
+++ b/modules/private/websites/tools/diaspora/default.nix
@@ -17,6 +17,13 @@ in {
     users.users.diaspora.extraGroups = [ "keys" ];
 
     secrets.keys = [
+      {
+        dest = "webapps/diaspora";
+        isDir = true;
+        user = "diaspora";
+        group = "diaspora";
+        permissions = "0500";
+      }
       {
         dest = "webapps/diaspora/diaspora.yml";
         user = "diaspora";
@@ -146,7 +153,7 @@ in {
       package = pkgs.webapps.diaspora.override { ldap = true; };
       dataDir = "/var/lib/diaspora_immae";
       adminEmail = "diaspora@tools.immae.eu";
-      configDir = "/var/secrets/webapps/diaspora";
+      configDir = config.secrets.fullPaths."webapps/diaspora";
     };
 
     services.filesWatcher.diaspora = {