staging plume: cleanup and update

author: Alex Auvolat <alex@adnab.me> 2023-05-15 13:36:38 +0200
committer: Alex Auvolat <alex@adnab.me> 2023-05-15 13:36:38 +0200
commit: 2488ad0ac296732eb7c3c9c3bc28e1e73f5b06bc (patch)
tree: c61d46f9a299771bd4389dfd927ff9ba8ddf3b7b /cluster/staging/app/plume/secrets.toml
parent: 5c7a8c72d80a2c818e41f5d6aafb4acc70867f1c (diff)
download: nixcfg-2488ad0ac296732eb7c3c9c3bc28e1e73f5b06bc.tar.gz
nixcfg-2488ad0ac296732eb7c3c9c3bc28e1e73f5b06bc.zip
1 files changed, 6 insertions, 4 deletions
diff --git a/cluster/staging/app/plume/secrets.toml b/cluster/staging/app/plume/secrets.toml
index 4d68a5c..e61eb4e 100644
--- a/cluster/staging/app/plume/secrets.toml
+++ b/cluster/staging/app/plume/secrets.toml
@@ -1,10 +1,12 @@
-[service_user."plume"]
-password_secret = "plume/pgsql_pw"
-
-
 [secrets."plume/secret_key"]
 type = 'command'
 rotate = true
 command = 'openssl rand -base64 32'
 
+[secrets."plume/s3_access_key"]
+type = 'user'
+description = 'S3 access key ID for database and media storage'
 
+[secrets."plume/s3_secret_key"]
+type = 'user'
+description = 'S3 secret key for database and media storage'
author	Alex Auvolat <alex@adnab.me>	2023-05-15 13:36:38 +0200
committer	Alex Auvolat <alex@adnab.me>	2023-05-15 13:36:38 +0200
commit	2488ad0ac296732eb7c3c9c3bc28e1e73f5b06bc (patch)
tree	c61d46f9a299771bd4389dfd927ff9ba8ddf3b7b /cluster/staging/app/plume/secrets.toml
parent	5c7a8c72d80a2c818e41f5d6aafb4acc70867f1c (diff)
download	nixcfg-2488ad0ac296732eb7c3c9c3bc28e1e73f5b06bc.tar.gz nixcfg-2488ad0ac296732eb7c3c9c3bc28e1e73f5b06bc.zip