ahuston-0/nix-dotfiles
1
0
Fork 0
Code Issues Pull Requests 4 Actions Packages Projects Releases Wiki Activity

using hooks url in sops

Browse Source
This commit is contained in:
Richie Cahill 2024-07-07 19:47:11 -04:00 committed by Alice Huston
parent bf4c08c81b
commit 023661129c
3 changed files with 23 additions and 6 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

8
systems/jeeves-jr/services.nix
View File

@ -1,4 +1,4 @@
{ inputs, ... }: { config, inputs, ... }:
{ {
systemd = { systemd = {
services.startup_validation = { services.startup_validation = {
@ -6,7 +6,7 @@
description = "validates startup"; description = "validates startup";
serviceConfig = { serviceConfig = {
Type = "oneshot"; Type = "oneshot";
Environment = "WEBHOOK_URL=test"; Environment = config.sops.secrets."server-validation/webhook".path;
ExecStart = "${inputs.server_tools.packages.x86_64-linux.default}/bin/validate_jeevesjr"; ExecStart = "${inputs.server_tools.packages.x86_64-linux.default}/bin/validate_jeevesjr";
}; };
}; };
@ -18,4 +18,8 @@
}; };
}; };
}; };
sops = {
defaultSopsFile = ./secrets.yaml;
secrets."server-validation/webhook".owner = "root";
};
} }

13
systems/jeeves/services.nix
View File

@ -1,4 +1,9 @@
{ inputs, pkgs, ... }: {
config,
inputs,
pkgs,
...
}:
{ {
systemd = { systemd = {
services = { services = {
@ -6,7 +11,6 @@
description = "maintains /zfs/storage/plex permissions"; description = "maintains /zfs/storage/plex permissions";
serviceConfig = { serviceConfig = {
Type = "oneshot"; Type = "oneshot";
Environment = "WEBHOOK_URL=test";
ExecStart = "${pkgs.bash}/bin/bash ${./scripts/plex_permission.sh}"; ExecStart = "${pkgs.bash}/bin/bash ${./scripts/plex_permission.sh}";
}; };
}; };
@ -14,6 +18,7 @@
wantedBy = [ "multi-user.target" ]; wantedBy = [ "multi-user.target" ];
description = "validates startup"; description = "validates startup";
serviceConfig = { serviceConfig = {
Environment = config.sops.secrets."server-validation/webhook".path;
Type = "oneshot"; Type = "oneshot";
ExecStart = "${inputs.server_tools.packages.x86_64-linux.default}/bin/validate_jeeves"; ExecStart = "${inputs.server_tools.packages.x86_64-linux.default}/bin/validate_jeeves";
}; };
@ -37,4 +42,8 @@
}; };
}; };
}; };
sops = {
defaultSopsFile = ./secrets.yaml;
secrets."server-validation/webhook".owner = "root";
};
} }

8
systems/palatine-hill/services.nix
View File

@ -1,4 +1,4 @@
{ inputs, ... }: { config, inputs, ... }:
{ {
systemd = { systemd = {
services.startup_validation = { services.startup_validation = {
@ -6,7 +6,7 @@
description = "validates startup"; description = "validates startup";
serviceConfig = { serviceConfig = {
Type = "oneshot"; Type = "oneshot";
Environment = "WEBHOOK_URL=test"; Environment = config.sops.secrets."server-validation/webhook".path;
ExecStart = "${inputs.server_tools.packages.x86_64-linux.default}/bin/validate_palatine_hill"; ExecStart = "${inputs.server_tools.packages.x86_64-linux.default}/bin/validate_palatine_hill";
}; };
}; };
@ -18,4 +18,8 @@
}; };
}; };
}; };
sops = {
defaultSopsFile = ./secrets.yaml;
secrets."server-validation/webhook".owner = "root";
};
} }