};
users.users.diaspora.extraGroups = [ "keys" ];
- secrets.keys = [
- {
- dest = "webapps/diaspora/diaspora.yml";
+ secrets.keys = {
+ "webapps/diaspora" = {
+ isDir = true;
+ user = "diaspora";
+ group = "diaspora";
+ permissions = "0500";
+ };
+ "webapps/diaspora/diaspora.yml" = {
user = "diaspora";
group = "diaspora";
permissions = "0400";
development:
environment:
'';
- }
- {
- dest = "webapps/diaspora/database.yml";
+ };
+ "webapps/diaspora/database.yml" = {
user = "diaspora";
group = "diaspora";
permissions = "0400";
<<: *combined
database: diaspora_integration2
'';
- }
- {
- dest = "webapps/diaspora/secret_token.rb";
+ };
+ "webapps/diaspora/secret_token.rb" = {
user = "diaspora";
group = "diaspora";
permissions = "0400";
text = ''
Diaspora::Application.config.secret_key_base = '${env.secret_token}'
'';
- }
- ];
+ };
+ };
services.diaspora = {
enable = true;
package = pkgs.webapps.diaspora.override { ldap = true; };
dataDir = "/var/lib/diaspora_immae";
adminEmail = "diaspora@tools.immae.eu";
- configDir = "/var/secrets/webapps/diaspora";
+ configDir = config.secrets.fullPaths."webapps/diaspora";
};
services.filesWatcher.diaspora = {