forked from c3d2/nix-config
hydra: fix ownership of the sops ssh keys
This commit is contained in:
parent
d52b1cc385
commit
837c185c05
|
@ -276,20 +276,24 @@ in
|
||||||
inherit (config.users.users.hydra-queue-runner) group;
|
inherit (config.users.users.hydra-queue-runner) group;
|
||||||
};
|
};
|
||||||
"ssh-keys/hydra/private" = {
|
"ssh-keys/hydra/private" = {
|
||||||
|
owner = "hydra";
|
||||||
mode = "400";
|
mode = "400";
|
||||||
path = "/var/lib/hydra/.ssh/id_ed25519";
|
path = "/var/lib/hydra/.ssh/id_ed25519";
|
||||||
};
|
};
|
||||||
"ssh-keys/hydra/public" = {
|
"ssh-keys/hydra/public" = {
|
||||||
|
owner = "hydra";
|
||||||
mode = "440";
|
mode = "440";
|
||||||
path = "/var/lib/hydra/.ssh/id_ed25519.pub";
|
path = "/var/lib/hydra/.ssh/id_ed25519.pub";
|
||||||
};
|
};
|
||||||
"ssh-keys/root/private" = {
|
"ssh-keys/root/private" = {
|
||||||
|
owner = "hydra-queue-runner";
|
||||||
mode = "400";
|
mode = "400";
|
||||||
path = "/root/.ssh/id_ed25519";
|
path = "/var/lib/hydra/queue-runner/.ssh/id_ed25519";
|
||||||
};
|
};
|
||||||
"ssh-keys/root/public" = {
|
"ssh-keys/root/public" = {
|
||||||
|
owner = "hydra-queue-runner";
|
||||||
mode = "440";
|
mode = "440";
|
||||||
path = "/root/.ssh/id_ed25519.pub";
|
path = "/var/lib/hydra/queue-runner/.ssh/id_ed25519.pub";
|
||||||
};
|
};
|
||||||
"ssh-keys/updater/private" = {
|
"ssh-keys/updater/private" = {
|
||||||
owner = "updater";
|
owner = "updater";
|
||||||
|
|
Loading…
Reference in New Issue
Block a user