Commit 64785aef authored by Valentin Reis's avatar Valentin Reis

added key deployment tool.

parent 821c1939
No preview for this file type
......@@ -69,7 +69,7 @@ in
chownsec = {
text = ''
mkdir -p /run/secrets/
chown -R ${config.users.users.hydra-queue-runner.uid}:${config.users.groups.hydra.gid} /run/secrets
chown -R ${builtins.toString config.users.users.hydra-queue-runner.uid}:${builtins.toString config.users.groups.hydra.gid} /run/secrets
'';
deps = [];
};
......
#!/usr/bin/env bash
echo "extracting/sending hydra-master secret key from password store"
pass keys/rsa/PRIVATE/hydra-master@chameleon | ssh root@129.114.111.116 'cat > /run/secrets/id_buildfarm'
echo "chown-ing the key on the machine"
ssh root@129.114.111.116 'chown hydra-queue-runner:hydra /run/secrets/id_buildfarm'
Markdown is supported
0%
or
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment