ryan
/
systemd-openbao
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

Compare commits

base: ryan:ffb4bdbf4a925df7a3ad7790446433ca0ec9dc08
Branches Tags
ryan:main
...
compare: ryan:c646ca06188406cbddabef2baf09c1de749ede8e
Branches Tags
ryan:main

11 Commits
ffb4bdbf4a ... c646ca0618

Author SHA1 Message Date
Jörg Thalheim c646ca0618
fix mergify (#60) 5 months ago
Jean-François Roche 3a1c9b1c64
fix: add missing dependency on systemd-vaultd socket (#59) 
The systemd service unit file generate environment file requests secrets
from the systemd-vaultd socket.

We make sure this socket is ready before starting the service.
 5 months ago
Jean-François Roche 09e02c2f1c
Fix buildGoModule vendor hash attribute (#58) 
We cannot use the `vendorSha256` attribute in the `buildGoModule` function anymore.
 7 months ago
Jörg Thalheim dd1631fa3b
Merge pull request #56 from numtide/renovate/lock-file-maintenance 
chore(deps): lock file maintenance
 1 year ago
renovate[bot] a7b71dad31
chore(deps): lock file maintenance 1 year ago
Jörg Thalheim 02eaff6f0d
Merge pull request #55 from numtide/renovate/lock-file-maintenance 
chore(deps): lock file maintenance
 1 year ago
renovate[bot] 8c1b9cb5f8
chore(deps): lock file maintenance 1 year ago
Jörg Thalheim 42810c1518
Merge pull request #54 from numtide/renovate/lock-file-maintenance 
chore(deps): lock file maintenance
 1 year ago
renovate[bot] e3b832786f
chore(deps): lock file maintenance 1 year ago
Jörg Thalheim 1f97786408
Merge pull request #53 from numtide/renovate/lock-file-maintenance 
chore(deps): lock file maintenance
 1 year ago
renovate[bot] 6e41caf158
chore(deps): lock file maintenance 1 year ago
4 changed files with 14 additions and 19 deletions
Show Stats

11
.mergify.yml
Unescape Escape View File

@ -1,18 +1,11 @@
queue_rules: queue_rules:
- name: default - name: default
merge_conditions: merge_conditions:
- check-success=Evaluate flake.nix - check-success=buildbot/nix-eval
- check-success=check systemd-vaultd [x86_64-linux]
- check-success=check treefmt [x86_64-linux]
- check-success=check unittests [x86_64-linux]
- check-success=check vault-agent [x86_64-linux]
- check-success=devShell default [x86_64-linux]
- check-success=package default [x86_64-linux]
defaults: defaults:
actions: actions:
queue: queue:
allow_merging_configuration_change: true merge_method: rebase
method: rebase
pull_request_rules: pull_request_rules:
- name: merge using the merge queue - name: merge using the merge queue
conditions: conditions:

2
default.nix
Unescape Escape View File

@ -2,7 +2,7 @@
pkgs.buildGoModule { pkgs.buildGoModule {
name = "systemd-vaultd"; name = "systemd-vaultd";
src = ./.; src = ./.;
vendorSha256 = null; vendorHash = null;
meta = with pkgs.lib; { meta = with pkgs.lib; {
description = "A proxy for secrets between systemd services and vault"; description = "A proxy for secrets between systemd services and vault";
homepage = "https://github.com/numtide/systemd-vaultd"; homepage = "https://github.com/numtide/systemd-vaultd";

18
flake.lock
Unescape Escape View File

@ -7,11 +7,11 @@
] ]
}, },
"locked": { "locked": {
"lastModified": 1693611461, "lastModified": 1698579227,
"narHash": "sha256-aPODl8vAgGQ0ZYFIRisxYG5MOGSkIczvu2Cd8Gb9+1Y=", "narHash": "sha256-KVWjFZky+gRuWennKsbo6cWyo7c/z/VgCte5pR9pEKg=",
"owner": "hercules-ci", "owner": "hercules-ci",
"repo": "flake-parts", "repo": "flake-parts",
"rev": "7f53fdb7bdc5bb237da7fefef12d099e4fd611ca", "rev": "f76e870d64779109e41370848074ac4eaa1606ec",
"type": "github" "type": "github"
}, },
"original": { "original": {
@ -22,11 +22,11 @@
}, },
"nixpkgs": { "nixpkgs": {
"locked": { "locked": {
"lastModified": 1694928810, "lastModified": 1698443389,
"narHash": "sha256-M/3+pRQmM+FeBeSKRp0b01pncbNiiC2ggJE4Wpi7c1Q=", "narHash": "sha256-/IhqtAuFPL1gew2h1+b+xQipv2WVt9EuszSHz5a4PNI=",
"owner": "NixOS", "owner": "NixOS",
"repo": "nixpkgs", "repo": "nixpkgs",
"rev": "948e8754755a9f27587d5bd109af2cfad313add8", "rev": "a9d001fd4af2df7f5702bbdb28a0081c855cb625",
"type": "github" "type": "github"
}, },
"original": { "original": {
@ -50,11 +50,11 @@
] ]
}, },
"locked": { "locked": {
"lastModified": 1694528738, "lastModified": 1698438538,
"narHash": "sha256-aWMEjib5oTqEzF9f3WXffC1cwICo6v/4dYKjwNktV8k=", "narHash": "sha256-AWxaKTDL3MtxaVTVU5lYBvSnlspOS0Fjt8GxBgnU0Do=",
"owner": "numtide", "owner": "numtide",
"repo": "treefmt-nix", "repo": "treefmt-nix",
"rev": "7a49c388d7a6b63bb551b1ddedfa4efab8f400d8", "rev": "5deb8dc125a9f83b65ca86cf0c8167c46593e0b1",
"type": "github" "type": "github"
}, },
"original": { "original": {

2
nix/modules/vault-secrets.nix
Unescape Escape View File

@ -175,6 +175,8 @@ in
Before=${service}.service Before=${service}.service
BindsTo=${service}.service BindsTo=${service}.service
StopPropagatedFrom=${service}.service StopPropagatedFrom=${service}.service
After=systemd-vaultd.socket
Requires=systemd-vaultd.socket
[Service] [Service]
Type=oneshot Type=oneshot

Write Preview
Loading…
Cancel
Save