22 Commits (a3ddc57244937806d1cf95600c546846c35ff8be)

Author SHA1 Message Date
Raito Bezarius a3ddc57244 fix(secrets): set templates
Signed-off-by: Raito Bezarius <masterancpp@gmail.com>
1 month ago
Raito Bezarius 41e83f4b39 feat(secrets): further adapt to openbao
Signed-off-by: Raito Bezarius <masterancpp@gmail.com>
1 month ago
Raito Bezarius 7eb31a5fcd fix: remove the warning because it's wrong
/run/credentials is stable for system services.

Signed-off-by: Raito Bezarius <masterancpp@gmail.com>
1 month ago
Raito Bezarius 9e07182d3e feat(proxy): further adapt to openbao
Signed-off-by: Raito Bezarius <masterancpp@gmail.com>
1 month ago
Raito Bezarius 8be31345fa feat(agent): further adapt to openbao
Signed-off-by: Raito Bezarius <masterancpp@gmail.com>
1 month ago
Jean-François Roche 3a1c9b1c64
fix: add missing dependency on systemd-vaultd socket (#59)
The systemd service unit file generate environment file requests secrets
from the systemd-vaultd socket.

We make sure this socket is ready before starting the service.
5 months ago
Jörg Thalheim fd6e4709c8 vault-agent: link to new getent 1 year ago
Jean-François Roche 35dc7e58ed fix: vault agent with environment secrets only
Sometimes we only need to inject secrets as environment variables
1 year ago
Jean-François Roche ad5f37f7a8 feat: add optional command timeout
Some template command can last longer than the default 30s. Add option
to override default timeout.

Define template commands using `exec` as `command` is deprecated.
(https://developer.hashicorp.com/vault/docs/agent/template#command)
1 year ago
Jörg Thalheim 97b656163a get rid systemd patches 2 years ago
Jörg Thalheim 12707af861 fix changeAction==none case 2 years ago
Jörg Thalheim 16ab6ae069 apply treefmt 2 years ago
Jörg Thalheim 1b025cde78 systemd: fetch regression patch 2 years ago
Jörg Thalheim 5ec7d0120a nixos/vault-agent: default to stopIfChanged 2 years ago
Jörg Thalheim 7fa8deb568 add support for environment variables 2 years ago
Jörg Thalheim cc1e801174 add test and fix systemd to reload secrets on reload 2 years ago
Jörg Thalheim bd069c7295 vault-secrets: change action from none to reload-or-restart 2 years ago
Jörg Thalheim 06495a406e add vault.secrets options to systemd services 2 years ago
Jörg Thalheim 6da13d433c nixos/systemd-vaultd: don't stop on nixos upgrades 2 years ago
zimbatm 974032c41a
treefmt 2 years ago
Jörg Thalheim 46bc2aa7a1 add systemd-vaultd nixos module and test 2 years ago
Jörg Thalheim fca242ec8d add vaultAgent module + test 2 years ago