ryan
/
systemd-openbao
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

Procfile: avoid using sudo

Browse Source 
Aside from the running-as-root issue, it also means that the user has to
enter their password sometimes, and that doesn't work really well with
hivemind.
main
zimbatm 2 years ago
parent 974032c41a
commit 09aeac2ff1
No known key found for this signature in database
GPG Key ID: 71BAF6D40C1D63D7
1 changed files with 2 additions and 2 deletions
Show Stats Download Patch File Download Diff File

4
Procfile
Unescape Escape View File

@ -1,5 +1,5 @@
# run with `hivemind`` # run with `hivemind``
systemd-service: sleep 3 && sudo systemd-run --collect -u vault-nixos3.service -p LoadCredential=foo:$(pwd)/tmp/sock --wait --pipe cat '${CREDENTIALS_DIRECTORY}/foo' systemd-service: sleep 3 && systemd-run --user --collect -u vault-nixos3.service -p LoadCredential=foo:$(pwd)/tmp/sock --wait --pipe cat '${CREDENTIALS_DIRECTORY}/foo'
vault: vault server -dev -dev-root-token-id secret vault: vault server -dev -dev-root-token-id secret
vault-agent: sleep 5 && ./tests/setup-vault && sudo vault agent -config ./tests/vault-agent-example.hcl vault-agent: sleep 5 && ./tests/setup-vault && vault agent -config ./tests/vault-agent-example.hcl
systemd-vaultd: go run . -secrets tmp/secrets -sock tmp/sock systemd-vaultd: go run . -secrets tmp/secrets -sock tmp/sock

Write Preview
Loading…
Cancel
Save