Twins
/
server-configuration
2
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

sec: put lldap default admin password in agenix and update it

main
LeRoyce Pearson 2023-12-30 19:39:57 -07:00
parent f4029e6197
commit cd4c98a4a8
4 changed files with 9 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

5
agenix-config-module.nix
View File

@ -4,4 +4,9 @@
owner = "dynamicdns"; owner = "dynamicdns";
group = "dynamicdns"; group = "dynamicdns";
}; };
age.secrets.LLDAP_DEFAULT_ADMIN_PASSWORD = {
file = ./secrets/LLDAP_DEFAULT_ADMIN_PASSWORD.age;
owner = "lldap";
group = "lldap";
};
} }

5
configuration.nix
View File

@ -130,10 +130,11 @@
ldap_base_dn = "dc=twins,dc=pearson"; ldap_base_dn = "dc=twins,dc=pearson";
# Sets the root administrator's user name # Sets the root administrator's user name
ldap_user_dn = "admin"; ldap_user_dn = "admin";
# Default administrator password
ldap_user_pass = "extending pulsate nastily";
http_host = "127.0.0.1"; http_host = "127.0.0.1";
}; };
environment = {
LLDAP_LDAP_USER_PASS_FILE = config.age.secrets.LLDAP_DEFAULT_ADMIN_PASSWORD.path;
};
}; };
# Dynamic DNS through duck dns # Dynamic DNS through duck dns

BIN
secrets/LLDAP_DEFAULT_ADMIN_PASSWORD.age Normal file
View File

Binary file not shown.

1
secrets/secrets.nix
View File

@ -6,4 +6,5 @@ let
in in
{ {
"samsehu_DUCK_DNS_TOKEN.age".publicKeys = geemili ++ [ samsehu ]; "samsehu_DUCK_DNS_TOKEN.age".publicKeys = geemili ++ [ samsehu ];
"LLDAP_DEFAULT_ADMIN_PASSWORD.age".publicKeys = geemili ++ [ samsehu ];
} }