depot/ops
Luke Granger-Brown 58a907b700 nixos/vault-agent: listen on UDS only
This UDS is going to be private to vault-agent and tokend (which doesn't exist
yet).

As a stopgap, for the moment, secretsmgrd will be granted direct access to
speak to the Vault Agent over the UDS.

tokend will be responsible for provisioning applications with tokens, by
issuing subtokens which have roles corresponding to the user account requesting
access.
2022-03-20 11:14:51 +00:00
..
factorio ops/factorio/multiworld: prohibit /ws while hand-crafting 2022-02-05 21:04:03 +00:00
maint ops/maint/update_nixpkgs: remove propagatedBuildInputs 2020-11-25 13:19:35 +00:00
nixos nixos/vault-agent: listen on UDS only 2022-03-20 11:14:51 +00:00
raritan totoro: remove cloudflare credentials from raritan-sslrenew 2022-03-11 03:46:31 +00:00
secrets ssh-ca-vault: init 2022-03-11 21:48:06 +00:00
vault ops/vault: destroy existing secrets before provisioning a new one 2022-03-20 10:20:25 +00:00
default.nix ops/vault/cfg: init terranix stuff 2022-03-14 21:29:15 +00:00
home-manager-ext.nix treewide: fix eval fallout from nixpkgs bump 2022-03-11 14:56:55 +00:00