diff options
author | Gregor Kleen <gkleen@yggdrasil.li> | 2023-01-30 12:41:51 +0100 |
---|---|---|
committer | Gregor Kleen <gkleen@yggdrasil.li> | 2023-01-30 12:41:51 +0100 |
commit | 39094f52acc0b3c38fc1a50718b5cc8e25b8fb7a (patch) | |
tree | ae9412c9e38a8ccbdede30fd474bed674e0dca5a /hosts/vidhar/dns | |
parent | cfc871cce6aefaa0ff64619780a807cba761c6b2 (diff) | |
download | nixos-39094f52acc0b3c38fc1a50718b5cc8e25b8fb7a.tar nixos-39094f52acc0b3c38fc1a50718b5cc8e25b8fb7a.tar.gz nixos-39094f52acc0b3c38fc1a50718b5cc8e25b8fb7a.tar.bz2 nixos-39094f52acc0b3c38fc1a50718b5cc8e25b8fb7a.tar.xz nixos-39094f52acc0b3c38fc1a50718b5cc8e25b8fb7a.zip |
...
Diffstat (limited to 'hosts/vidhar/dns')
-rw-r--r-- | hosts/vidhar/dns/default.nix | 7 | ||||
-rw-r--r-- | hosts/vidhar/dns/keys/local (renamed from hosts/vidhar/dns/keys/local_yaml) | 0 |
2 files changed, 6 insertions, 1 deletions
diff --git a/hosts/vidhar/dns/default.nix b/hosts/vidhar/dns/default.nix index 2e943afc..ade884e7 100644 --- a/hosts/vidhar/dns/default.nix +++ b/hosts/vidhar/dns/default.nix | |||
@@ -79,9 +79,14 @@ in { | |||
79 | }; | 79 | }; |
80 | }; | 80 | }; |
81 | 81 | ||
82 | systemd.services.knot = { | ||
83 | unitConfig.RequiresMountsFor = [ "/var/lib/knot" ]; | ||
84 | serviceConfig.LoadCredential = map ({name, ...}: "${name}.yaml:${config.sops.secrets.${name}.path}") knotKeys; | ||
85 | }; | ||
86 | |||
82 | services.knot = { | 87 | services.knot = { |
83 | enable = true; | 88 | enable = true; |
84 | keyFiles = map ({name, ...}: config.sops.secrets.${name}.path) knotKeys; | 89 | keyFiles = map ({name, ...}: "/run/credentials/knot.service/${name}.yaml") knotKeys; |
85 | extraConfig = '' | 90 | extraConfig = '' |
86 | server: | 91 | server: |
87 | listen: 127.0.0.1@5353 | 92 | listen: 127.0.0.1@5353 |
diff --git a/hosts/vidhar/dns/keys/local_yaml b/hosts/vidhar/dns/keys/local index f682f05e..f682f05e 100644 --- a/hosts/vidhar/dns/keys/local_yaml +++ b/hosts/vidhar/dns/keys/local | |||