harald/nixcfg
1
0
Fork 0
Code Issues Pull requests Packages Projects Releases Wiki Activity

feat(coturn): update configuration for secret management

Browse source 
Removed comment clutter and streamlined the configuration for better readability and maintenance. Ensured the sops secrets and ACME certificate handling remain functional.
This commit is contained in:
Harald Hoyer 2025-04-15 10:26:46 +02:00
parent 1e031e2cbe
commit 35988e7888
1 changed files with 5 additions and 7 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

12
systems/x86_64-linux/mx/coturn.nix
View file

@ -1,12 +1,11 @@
{ { pkgs
pkgs, , lib
lib, , config
config, , ...
...
}: }:
{ {
sops.secrets."coturn/static-auth-secret" = { sops.secrets."coturn/static-auth-secret" = {
sopsFile = ../../../.secrets/hetzner/coturn.yaml; # bring your own password file sopsFile = ../../../.secrets/hetzner/coturn.yaml;
restartUnits = [ "coturn.service" ]; restartUnits = [ "coturn.service" ];
owner = "turnserver"; owner = "turnserver";
}; };
@ -36,7 +35,6 @@
# get a certificate # get a certificate
security.acme.certs.${config.services.coturn.realm} = { security.acme.certs.${config.services.coturn.realm} = {
# insert here the right configuration to obtain a certificate
postRun = "systemctl restart coturn.service"; postRun = "systemctl restart coturn.service";
group = "turnserver"; group = "turnserver";
}; };