alioth/nixpkgs
3
0
Fork 0
forked from mirrors/nixpkgs
Code Releases Activity
nixpkgs/nixos/modules/services
History
Maximilian Bosch d54d70f166
nixos/mxisd: allow passing secrets 
Suppose you want to provide a LDAP-based directory search to your
homeserver via a service-user with a bind-password. To make sure that
this doesn't end up in the Nix store, it's now possible to set a
substitute for the bindPassword like

    services.mxisd.extraConfig.ldap.connection = {
      # host, bindDn etc.
      bindPassword = "$LDAP_BIND_PW";
    };

and write the actual secret into an environment file that's readable for
`mxisd.service` containing

    LDAP_BIND_PW=<your secret bind pw>

and the following setting in the Nix expression:

    services.mxisd.environmentFile = "/runs/ecrets/mxisd";

(cherry picked from commit aa25ce7aa1a89618e4257fd46c7d20879f54c728)
2022-07-13 19:19:17 +02:00
..
admin
amqp
audio Merge pull request #151642 from antifuchs/fix-151550 2022-06-26 23:32:18 +02:00
backup nixos/restic: add backup{Prepare,Cleanup}Command options 2022-06-03 11:22:22 -03:00
blockchain/ethereum
cluster k3s: remove docker support 2022-06-15 16:40:29 -03:00
computing nixos/slurm: update systemd service for slurmd 2022-05-29 17:17:01 +02:00
continuous-integration nixos/hydra: use runuser like hydra flake 2022-07-07 22:37:51 +02:00
databases nixos.redis: Fix disabling of RDB persistence. 2022-07-05 07:37:38 -04:00
desktops nixos/pipewire: fix wireplumber with system-wide 2022-06-18 18:46:41 -07:00
development Merge pull request #164048 from hqurve/jupyter-extra-paths 2022-07-01 16:43:02 +00:00
display-managers
editors
finance
games nixos/asf: ipcPasswordFile use nullOr 2022-06-04 12:00:45 -06:00
hardware nixos/argonone: init 2022-06-24 21:20:32 -03:00
home-automation nixos/home-assistant: reload the daemon when configuration changed 2022-06-22 16:20:11 +02:00
logging logrotate: fix config check without sandbox 2022-07-09 09:55:03 +09:00
mail nixos/mailman: strip trailing \n when reading the secret 2022-07-04 21:15:56 +02:00
matrix Merge pull request #178858 from Ma27/matrix-docs 2022-07-04 16:56:27 +02:00
misc nixos/polaris: init 2022-07-08 12:27:48 -04:00
monitoring Merge pull request #177783 from talyz/parsedmarc-secrets 2022-06-27 15:26:10 +02:00
network-filesystems Merge pull request #166340 from max-privatevoid/patch-6 2022-06-28 19:55:10 +03:00
networking nixos/mxisd: allow passing secrets 2022-07-13 19:19:17 +02:00
printing
scheduling
search
security nixos/privacyidea: pin python to 3.9 2022-07-05 19:38:54 +02:00
system cachix-agent: expose verbose option 2022-06-30 09:56:28 -05:00
torrent
tracing nixos: add module for tempo 2022-07-08 21:33:17 +03:00
ttys
video
wayland
web-apps nixos/hedgedoc: convert to settings-style configuration 2022-07-10 08:07:14 -05:00
web-servers nixos/nginx: allow recommended proxy settings to be enabled per location 2022-06-12 19:52:35 -04:00
x11 Merge pull request #177389 from K900/plasma-exclude-packages 2022-07-08 21:33:35 +03:00