37 lines
920 B
Nix
37 lines
920 B
Nix
{
|
|
config,
|
|
lib,
|
|
...
|
|
}: let
|
|
inherit (lib) mkIf;
|
|
inherit (config.niksos) server;
|
|
|
|
serviceUser = x: config.systemd.services.${x}.serviceConfig.User;
|
|
abstrServiceUser = x: config.services.${x}.user;
|
|
in {
|
|
age.secrets = {
|
|
password.file = ./password.age;
|
|
|
|
# NOTE: server things
|
|
dcbot = mkIf server {
|
|
file = ./dcbot.age;
|
|
owner = serviceUser "dcbot"; #
|
|
};
|
|
bread-dcbot = mkIf server {
|
|
file = ./bread-dcbot.age;
|
|
owner = "bread-dcbot";
|
|
};
|
|
matrix-registration = mkIf server {
|
|
file = ./matrix-registration.age;
|
|
owner = abstrServiceUser "matrix-continuwuity";
|
|
};
|
|
mail-admin = mkIf server {
|
|
# owner = serviceUser "stalwart-mail"; #FIXME: revert when stopped using docker for stalwart.
|
|
file = ./mail-admin.age;
|
|
};
|
|
zitadel-key = mkIf server {
|
|
file = ./zitadel-key.age;
|
|
owner = abstrServiceUser "zitadel";
|
|
};
|
|
};
|
|
}
|