public
/
nixpkgs
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

nixos/gitlab: Fix swap of secrets 

Fix accidental swap of the otp and db secrets in the secrets.yml
file. Fixes #68613.
This commit is contained in:
talyz 2019-09-13 08:40:59 +02:00
parent c82b347947
commit 4b6ba5b27c
1 changed files with 2 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

4
nixos/modules/services/misc/gitlab.nix
View File

@ -806,8 +806,8 @@ in {
export otp="$(<'${cfg.secrets.otpFile}')" export otp="$(<'${cfg.secrets.otpFile}')"
export jws="$(<'${cfg.secrets.jwsFile}')" export jws="$(<'${cfg.secrets.jwsFile}')"
${pkgs.jq}/bin/jq -n '{production: {secret_key_base: $ENV.secret, ${pkgs.jq}/bin/jq -n '{production: {secret_key_base: $ENV.secret,
otp_key_base: $ENV.db, otp_key_base: $ENV.otp,
db_key_base: $ENV.otp, db_key_base: $ENV.db,
openid_connect_signing_key: $ENV.jws}}' \ openid_connect_signing_key: $ENV.jws}}' \
> '${cfg.statePath}/config/secrets.yml' > '${cfg.statePath}/config/secrets.yml'
) )