feat : Add of secret for roundcube and vaultwarden

2025-12-24 17:18:24 +01:00 · 2025-12-24 17:18:24 +01:00 · 2f5c8be389
commit 2f5c8be389
parent a59e409a49
18 changed files with 116 additions and 51 deletions
--- a/module/vaultWarden.nix
+++ b/module/vaultWarden.nix
@ -1,12 +1,22 @@
 { config, lib, ... }:

-lib.mkIf config.module.vaultwarden.enable {
+{
+  age.secrets.xHeDf80ikqG65h3u  = {
+    file = ../secrets/cache/xHeDf80ikqG65h3u;
+    owner = "vaultwarden";
+  };
+
  services.vaultwarden = {
    enable = true;
+    environmentFile = config.age.secrets.xHeDf80ikqG65h3u.path;
+
    config = {
+      DOMAIN = "https://vault.${config.module.domain}";
      ROCKET_PORT = config.module.vaultwarden.internalPort;
      ROCKET_ADDRESS = "127.0.0.1";
      SIGNUPS_ALLOWED = false;
+      SMTP_PORT = 587;
+      # SMTP_SSL = true;
    };
  };
 }