From 1b3154e40a568a296c74759d68827366b5f26da9 Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?Isma=C3=ABl=20Bouya?= Date: Thu, 25 Apr 2019 01:37:42 +0200 Subject: Move websites to new secrets --- nixops/modules/websites/chloe/chloe.nix | 10 +++++----- 1 file changed, 5 insertions(+), 5 deletions(-) (limited to 'nixops/modules/websites/chloe/chloe.nix') diff --git a/nixops/modules/websites/chloe/chloe.nix b/nixops/modules/websites/chloe/chloe.nix index 0861cdf..e2381d8 100644 --- a/nixops/modules/websites/chloe/chloe.nix +++ b/nixops/modules/websites/chloe/chloe.nix @@ -3,7 +3,7 @@ let chloe = { config }: rec { environment = config.environment; phpFpm = rec { - serviceDeps = [ "mysql.service" "${environment}-chloe-key.service" ]; + serviceDeps = [ "mysql.service" ]; socket = "/var/run/phpfpm/chloe-${environment}.sock"; pool = '' listen = ${socket} @@ -28,8 +28,8 @@ let pm.max_spare_servers = 3 ''}''; }; - keys."${environment}-chloe" = { - destDir = "/run/keys/webapps"; + keys = [{ + dest = "webapps/${environment}-chloe"; user = apache.user; group = apache.group; permissions = "0400"; @@ -48,7 +48,7 @@ let SetEnv SPIP_MYSQL_USER "${config.mysql.user}" SetEnv SPIP_MYSQL_PASSWORD "${config.mysql.password}" ''; - }; + }]; apache = rec { user = "wwwrun"; group = "wwwrun"; @@ -56,7 +56,7 @@ let webappName = "chloe_${environment}"; root = "/run/current-system/webapps/${webappName}"; vhostConf = '' - Include /run/keys/webapps/${environment}-chloe + Include /var/secrets/webapps/${environment}-chloe RewriteEngine On ${if environment == "prod" then '' -- cgit v1.2.3