secrets ldap: set up teh secrets for teh ldap

2023-05-20 21:28:15 +01:00 · 2023-05-20 21:28:15 +01:00 · b61a645824
commit b61a645824
parent 144f3bce54
9 changed files with 59 additions and 31 deletions
--- a/secrets/secrets.nix
+++ b/secrets/secrets.nix
@ -39,13 +39,22 @@ let
    vigil
  ];

-  # these need dns stuff
-  webservers = [
-    galatea
+  ldap = [
+    # only here as a tmp basis
    optimus
    kitt
  ];

+  # these need dns stuff
+  webservers = [
+    # ULFM
+    galatea
+    # Games
+    optimus
+  ]
+  # ldap servers are web facing
+  ++ ldap;
+
 in
 {
  # nix run github:ryantm/agenix -- -e secret1.age
@ -60,4 +69,8 @@ in
  "gitlab/db.age".publicKeys = users ++ [glados];
  "gitlab/db_pw.age".publicKeys = users ++ [glados];

+  # for ldap
+  "ldap/pw.age".publicKeys = users ++ ldap;
+  "ldap/self_service.age".publicKeys = users ++ ldap;
+
 }