From 8ed758696c321a84b3d3d5d08b6bfa004779f211 Mon Sep 17 00:00:00 2001
From: Pascal Bach <pascal.bach@nextrem.ch>
Date: Sun, 17 Sep 2017 18:49:02 +0200
Subject: [PATCH] gluster service: use str instead of path for private key

This pervents the user from accidently commiting the key to the nix store.
If providing a path instead of a string.
---
 nixos/modules/services/network-filesystems/glusterfs.nix | 6 +++---
 1 file changed, 3 insertions(+), 3 deletions(-)

diff --git a/nixos/modules/services/network-filesystems/glusterfs.nix b/nixos/modules/services/network-filesystems/glusterfs.nix
index ae4f4521cf2d..e7f52bc4a7d1 100644
--- a/nixos/modules/services/network-filesystems/glusterfs.nix
+++ b/nixos/modules/services/network-filesystems/glusterfs.nix
@@ -61,9 +61,9 @@ in
         default = null;
         type = types.nullOr (types.submodule {
           options = {
-            tlsKey = mkOption {
+            tlsKeyPath = mkOption {
               default = null;
-              type = types.path;
+              type = types.str;
               description = "Path to the private key used for TLS.";
             };
 
@@ -93,7 +93,7 @@ in
 
     environment.etc = mkIf (cfg.tlsSettings != null) {
       "ssl/glusterfs.pem".source = cfg.tlsSettings.tlsPem;
-      "ssl/glusterfs.key".source = cfg.tlsSettings.tlsKey;
+      "ssl/glusterfs.key".source = cfg.tlsSettings.tlsKeyPath;
       "ssl/glusterfs.ca".source = cfg.tlsSettings.caCert;
     };