lukegb/depot
1
0
Fork 0
Code Issues 1 Pull requests Projects Packages Activity Actions
depot/ops/nixos
History
Luke Granger-Brown 58a907b700 nixos/vault-agent: listen on UDS only 
This UDS is going to be private to vault-agent and tokend (which doesn't exist
yet).

As a stopgap, for the moment, secretsmgrd will be granted direct access to
speak to the Vault Agent over the UDS.

tokend will be responsible for provisioning applications with tokens, by
issuing subtokens which have roles corresponding to the user account requesting
access.
2022-03-20 11:14:51 +00:00
..
blade-chakotay ops/nixos: remove rebuilder 2022-01-23 16:57:20 +00:00
blade-janeway ops/nixos: remove rebuilder 2022-01-23 16:57:20 +00:00
blade-kim ops/nixos: remove rebuilder 2022-01-23 16:57:20 +00:00
blade-paris ops/nixos: remove rebuilder 2022-01-23 16:57:20 +00:00
blade-torres ops/nixos: remove rebuilder 2022-01-23 16:57:20 +00:00
blade-tuvok nixos: migrate to secretsmgr for sshd and ACME 2022-03-17 23:31:55 +00:00
bvm-heptapod ops/nixos: move nix cache tokens into vault 2022-03-11 16:46:50 +00:00
bvm-ipfs ipfs: add to pomerium, explicitly set IPs for swarm 2021-04-18 16:24:59 +00:00
bvm-logger ops/nixos: more cleanups 2022-01-09 00:22:52 +00:00
bvm-matrix nixos: migrate to secretsmgr for sshd and ACME 2022-03-17 23:31:55 +00:00
bvm-minecraft bvm-minecraft: java 8 :( 2021-05-24 02:46:48 +00:00
bvm-netbox ops/nixos: migrate from services.redis to services.redis.servers."" 2021-12-24 02:02:57 +00:00
bvm-nixosmgmt nhsenglandtests: init 2021-12-31 07:00:32 +00:00
bvm-prosody nixos: migrate to secretsmgr for sshd and ACME 2022-03-17 23:31:55 +00:00
bvm-radius bvm-radius: reenable roaming2.ja.net 2022-03-20 11:08:34 +00:00
bvm-twitterchiver depot: fixups 2021-12-08 02:37:12 +00:00
clouvider-fra01 ts3spotifybot: remove for now 2022-03-11 10:02:22 +00:00
clouvider-lon01 nixos: migrate to secretsmgr for sshd and ACME 2022-03-17 23:31:55 +00:00
etheroute-lon01 nixos: migrate to secretsmgr for sshd and ACME 2022-03-17 23:31:55 +00:00
frantech-las01 ops/nixos: remove rebuilder 2022-01-23 16:57:20 +00:00
frantech-lux01 ops/nixos: remove rebuilder 2022-01-23 16:57:20 +00:00
frantech-nyc01 ops/nixos: remove rebuilder 2022-01-23 16:57:20 +00:00
howl ops/nixos: migrate nix.maxJobs/binaryCaches/trustedBinaryCaches to the nix.settings equivalents 2022-01-30 20:30:20 +00:00
installcd ops/nixos: remove rebuilder 2022-01-23 16:57:20 +00:00
lib nixos/vault-agent: listen on UDS only 2022-03-20 11:14:51 +00:00
netboot ops/nixos: remove rebuilder 2022-01-23 16:57:20 +00:00
porcorosso porcorosso: remove defunct nvidiaWayland option 2022-02-13 21:29:00 +00:00
swann swann: also put v6 RA routes into the correct route table 2022-03-13 20:35:11 +00:00
totoro nixos: migrate to secretsmgr for sshd and ACME 2022-03-17 23:31:55 +00:00
assimilate.sh licensing: Apache-2.0, make almost reuse-lint clean 2020-06-07 15:03:12 +01:00
default.nix treewide: fix eval fallout from nixpkgs bump 2022-03-11 14:56:55 +00:00
install.sh ops/nixos: add other blade hosts 2021-02-08 22:26:22 +00:00