diff options
author | Alex Auvolat <alex@adnab.me> | 2023-05-15 13:36:38 +0200 |
---|---|---|
committer | Alex Auvolat <alex@adnab.me> | 2023-05-15 13:36:38 +0200 |
commit | 2488ad0ac296732eb7c3c9c3bc28e1e73f5b06bc (patch) | |
tree | c61d46f9a299771bd4389dfd927ff9ba8ddf3b7b /cluster/staging/app/plume/secrets.toml | |
parent | 5c7a8c72d80a2c818e41f5d6aafb4acc70867f1c (diff) | |
download | nixcfg-2488ad0ac296732eb7c3c9c3bc28e1e73f5b06bc.tar.gz nixcfg-2488ad0ac296732eb7c3c9c3bc28e1e73f5b06bc.zip |
staging plume: cleanup and update
Diffstat (limited to 'cluster/staging/app/plume/secrets.toml')
-rw-r--r-- | cluster/staging/app/plume/secrets.toml | 10 |
1 files changed, 6 insertions, 4 deletions
diff --git a/cluster/staging/app/plume/secrets.toml b/cluster/staging/app/plume/secrets.toml index 4d68a5c..e61eb4e 100644 --- a/cluster/staging/app/plume/secrets.toml +++ b/cluster/staging/app/plume/secrets.toml @@ -1,10 +1,12 @@ -[service_user."plume"] -password_secret = "plume/pgsql_pw" - - [secrets."plume/secret_key"] type = 'command' rotate = true command = 'openssl rand -base64 32' +[secrets."plume/s3_access_key"] +type = 'user' +description = 'S3 access key ID for database and media storage' +[secrets."plume/s3_secret_key"] +type = 'user' +description = 'S3 secret key for database and media storage' |