Skip to content
Snippets Groups Projects
Commit 754f8d2d authored by Jean-Paul Calderone's avatar Jean-Paul Calderone
Browse files

Avoid repetition of the secret destination paths in issuer config

parent 39e2c445
No related branches found
No related tags found
3 merge requests!97Merge staging into production,!96Merge develop into staging,!86Secure key storage
......@@ -8,7 +8,7 @@
, stateVersion
, publicIPv4
, ...
}: {
}: rec {
deployment = {
targetHost = publicIPv4;
......@@ -41,8 +41,8 @@
services.private-storage-issuer = {
enable = true;
tls = true;
ristrettoSigningKeyPath = "/var/secrets/ristretto.signing-key";
stripeSecretKeyPath = "/var/secrets/stripe.secret-key";
ristrettoSigningKeyPath = deployment.secrets.ristretto-signing-key.destination;
stripeSecretKeyPath = deployment.secrets.stripe-secret-key.destination;
database = "SQLite3";
databasePath = "/var/db/vouchers.sqlite3";
inherit letsEncryptAdminEmail;
......
0% Loading or .
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment