No description
Find a file
Luke Granger-Brown 58a907b700 nixos/vault-agent: listen on UDS only
This UDS is going to be private to vault-agent and tokend (which doesn't exist
yet).

As a stopgap, for the moment, secretsmgrd will be granted direct access to
speak to the Vault Agent over the UDS.

tokend will be responsible for provisioning applications with tokens, by
issuing subtokens which have roles corresponding to the user account requesting
access.
2022-03-20 11:14:51 +00:00
.reuse treewide: add some SPDX headers 2021-03-20 20:46:56 +00:00
go nixos: migrate to secretsmgr for sshd and ACME 2022-03-17 23:31:55 +00:00
hack hack/deploy: we have jq now 2021-03-20 13:11:23 +00:00
LICENSES hack: make nixpkgs look like a git submodule to reuse 2020-06-07 15:16:27 +01:00
nix nix/gitlab-ci: try to restrict deploy steps to only default 2022-03-20 10:26:56 +00:00
ops nixos/vault-agent: listen on UDS only 2022-03-20 11:14:51 +00:00
py py/valveindexinstock: init 2021-02-22 21:31:23 +00:00
third_party go/secretsmgr: init 2022-03-15 03:07:34 +00:00
web as205479: add /privacy/ 2021-12-12 20:28:35 +00:00
.gitlab-ci.yml gitlab-ci: block parent pipeline until child is complete 2021-03-28 15:30:15 +00:00
.hgignore ops/vault/cfg: initial configuration 2022-03-14 23:34:33 +00:00
ci-root.nix porcorosso-wsl: init 2022-02-27 19:32:48 +00:00
default.nix ops/vault/cfg: init terranix stuff 2022-03-14 21:29:15 +00:00
home-manager-ext.nix treewide: add some SPDX headers 2021-03-20 20:46:56 +00:00
README.md Initial commit 2020-04-24 23:41:31 +01:00
version.nix depot: make version build faster 2021-03-28 01:14:59 +00:00