126 Commits (70c13ed746f6a505d98ae5a769fa6518e90bd8c5)
 

Author SHA1 Message Date
Jörg Thalheim 12707af861 fix changeAction==none case 2 years ago
bors[bot] ee3c4a1363
Merge #18
18: CI r=Mic92 a=Mic92



Co-authored-by: Jörg Thalheim <joerg@thalheim.io>
2 years ago
Jörg Thalheim 8e4a523d36 drop applied systemd patch 2 years ago
Jörg Thalheim efb2a6e39b switch to nixos-unstable-small 2 years ago
Jörg Thalheim d01702db6f
Merge pull request #17 from numtide/ci
flake.lock: Update
2 years ago
Jörg Thalheim 96baf631d1 also add patched systemd to devshell 2 years ago
Jörg Thalheim 04fc1d1646 update bors configuration 2 years ago
Jörg Thalheim 16ab6ae069 apply treefmt 2 years ago
Jörg Thalheim cc78160e6e add treefmt-nix 2 years ago
Jörg Thalheim 05bce1e1f8 flake.lock: Update
Flake lock file updates:

• Updated input 'flake-parts':
    'github:hercules-ci/flake-parts/3f7172646953bf86dad5953bc45f0edae62ac445' (2022-12-18)
  → 'github:hercules-ci/flake-parts/82c16f1682cf50c01cb0280b38a1eed202b3fe9f' (2023-01-10)
• Updated input 'nixpkgs':
    'github:NixOS/nixpkgs/eb37a7f66312e845fba0b3cc7c36e727012b3dae' (2022-12-20)
  → 'github:NixOS/nixpkgs/81aef2338a3834f4d0071978dbc114497ec56a7e' (2023-01-17)
2 years ago
Jörg Thalheim 116c01575d
Merge pull request #16 from numtide/ci
bump nixpkgs and flake-parts
2 years ago
Jörg Thalheim 1b025cde78 systemd: fetch regression patch 2 years ago
Jörg Thalheim aafb1c159c bump nixpkgs and flake-parts 2 years ago
bors[bot] 06f5b36c29
Merge #15
15: test that also the service main process can read updated secrets r=Mic92 a=Mic92



Co-authored-by: Jörg Thalheim <joerg@thalheim.io>
2 years ago
Jörg Thalheim e5e1cfd714 test that also the service main process can read updated secrets 2 years ago
bors[bot] b7c1cf587a
Merge #14
14: nixos/vault-agent: default to stopIfChanged r=Mic92 a=Mic92



Co-authored-by: Jörg Thalheim <joerg@thalheim.io>
2 years ago
Jörg Thalheim 5ec7d0120a nixos/vault-agent: default to stopIfChanged 2 years ago
Jörg Thalheim c19c8c1b24
Merge pull request #13 from numtide/ci
add support for environment variables
2 years ago
Jörg Thalheim 7fa8deb568 add support for environment variables 2 years ago
Jörg Thalheim 6daead50b1
Merge pull request #12 from numtide/ci
vault-secrets: change action from none to restart
2 years ago
Jörg Thalheim cc1e801174 add test and fix systemd to reload secrets on reload 2 years ago
Jörg Thalheim bd069c7295 vault-secrets: change action from none to reload-or-restart 2 years ago
Jörg Thalheim f86721c4d4
Merge pull request #11 from numtide/ci
Ci
2 years ago
Jörg Thalheim aa418152b3 add bors.toml 2 years ago
Jörg Thalheim ed9c3d275b accept non string values in secret map 2 years ago
Jörg Thalheim c1a11deabe
Merge pull request #10 from numtide/ci
add vault.secrets options to systemd services
2 years ago
Jörg Thalheim 06495a406e add vault.secrets options to systemd services 2 years ago
Jörg Thalheim 4513408db4
Merge pull request #9 from numtide/ci
update README
2 years ago
Jörg Thalheim 4659edf942 update README 2 years ago
Jörg Thalheim 493a8fb26d
Merge pull request #8 from numtide/ci
systemd-vaultd: switch to use a json file for reading files
2 years ago
Jörg Thalheim 194336d1d0 systemd-vaultd: switch to use a json file for reading files 2 years ago
Jonas Chevalier bd1c3bccdc
Merge pull request #7 from numtide/runCommand
replace runCommandNoCC by runCommand
2 years ago
zimbatm d409d508a5
replace runCommandNoCC by runCommand
runCommandNoCC has been replaced by runCommand in nixpkgs
2 years ago
Jörg Thalheim d99afdeafd
Merge pull request #6 from numtide/permissions
allow processes to read from secrets directory
2 years ago
Jörg Thalheim 44746e793b allow processes to read from secrets directory 2 years ago
Jörg Thalheim b32efc23a7
Merge pull request #5 from numtide/readme
README: refactor the text a bit
2 years ago
zimbatm b79d65923d
README: refactor the text a bit 2 years ago
Jörg Thalheim 1c901c071c
Merge pull request #4 from numtide/executable-procfile
make the Procfile executable
2 years ago
zimbatm 2c19dcf811
make the Procfile executable
Because.. why not :)
2 years ago
Jörg Thalheim 0ab471db02
Merge pull request #3 from numtide/add-license-1
Create LICENSE
2 years ago
Jonas Chevalier bf7efc0a9e
Create LICENSE 2 years ago
Jörg Thalheim e2d7197f61
Merge pull request #2 from numtide/no-sudo
Procfile: avoid using sudo
2 years ago
Jörg Thalheim 6da13d433c nixos/systemd-vaultd: don't stop on nixos upgrades 2 years ago
Jörg Thalheim 7cd4acbc14 switch to nixpkgs fork 2 years ago
zimbatm 09aeac2ff1
Procfile: avoid using sudo
Aside from the running-as-root issue, it also means that the user has to
enter their password sometimes, and that doesn't work really well with
hivemind.
2 years ago
zimbatm 974032c41a
treefmt 2 years ago
zimbatm f1df228d66
go fmt 2 years ago
Jörg Thalheim 2afab6a7ba update end-to-end procfile example 2 years ago
Jörg Thalheim 46bc2aa7a1 add systemd-vaultd nixos module and test 2 years ago
Jörg Thalheim 88d2fbd55d procfile: setup vault server 2 years ago