diff options
author | Ismaël Bouya <ismael.bouya@normalesup.org> | 2019-04-16 01:48:11 +0200 |
---|---|---|
committer | Ismaël Bouya <ismael.bouya@normalesup.org> | 2019-04-16 01:48:11 +0200 |
commit | 85f5ed68104de9edd8f8e532dc0c2de931e3ca1b (patch) | |
tree | 4a5da5f6d5e808db249f282a4743a1e56680aace /nixops/modules/websites/tools/diaspora | |
parent | ec2a5ffb986e9b21dff31e16d112aa9052a4bc5c (diff) | |
download | Nix-85f5ed68104de9edd8f8e532dc0c2de931e3ca1b.tar.gz Nix-85f5ed68104de9edd8f8e532dc0c2de931e3ca1b.tar.zst Nix-85f5ed68104de9edd8f8e532dc0c2de931e3ca1b.zip |
Fix secret permissions
Diffstat (limited to 'nixops/modules/websites/tools/diaspora')
-rw-r--r-- | nixops/modules/websites/tools/diaspora/diaspora.nix | 6 |
1 files changed, 3 insertions, 3 deletions
diff --git a/nixops/modules/websites/tools/diaspora/diaspora.nix b/nixops/modules/websites/tools/diaspora/diaspora.nix index 074dfb2..c7af9da 100644 --- a/nixops/modules/websites/tools/diaspora/diaspora.nix +++ b/nixops/modules/websites/tools/diaspora/diaspora.nix | |||
@@ -33,7 +33,7 @@ let | |||
33 | destDir = "/run/keys/webapps"; | 33 | destDir = "/run/keys/webapps"; |
34 | user = "diaspora"; | 34 | user = "diaspora"; |
35 | group = "diaspora"; | 35 | group = "diaspora"; |
36 | permissions = "0700"; | 36 | permissions = "0400"; |
37 | text = '' | 37 | text = '' |
38 | Diaspora::Application.config.secret_key_base = '${env.secret_token}' | 38 | Diaspora::Application.config.secret_key_base = '${env.secret_token}' |
39 | ''; | 39 | ''; |
@@ -42,7 +42,7 @@ let | |||
42 | destDir = "/run/keys/webapps"; | 42 | destDir = "/run/keys/webapps"; |
43 | user = "diaspora"; | 43 | user = "diaspora"; |
44 | group = "diaspora"; | 44 | group = "diaspora"; |
45 | permissions = "0700"; | 45 | permissions = "0400"; |
46 | text = '' | 46 | text = '' |
47 | configuration: | 47 | configuration: |
48 | environment: | 48 | environment: |
@@ -121,7 +121,7 @@ let | |||
121 | destDir = "/run/keys/webapps"; | 121 | destDir = "/run/keys/webapps"; |
122 | user = "diaspora"; | 122 | user = "diaspora"; |
123 | group = "diaspora"; | 123 | group = "diaspora"; |
124 | permissions = "0700"; | 124 | permissions = "0400"; |
125 | text = '' | 125 | text = '' |
126 | postgresql: &postgresql | 126 | postgresql: &postgresql |
127 | adapter: postgresql | 127 | adapter: postgresql |