| Commit message (Collapse) | Author | Age | Files | Lines |
|
|
|
|
|
|
| |
Change-Id: I84deb43c422668719157a5027e8dbea9a1ec92cf
Reviewed-on: https://cl.fcuny.net/c/world/+/662
Tested-by: CI
Reviewed-by: Franck Cuny <franck@fcuny.net>
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Secrets can have multiple attributes: the owner, group, mode and path.
So far, we were setting the file (path where it should be read from),
the owner (if it exists), the group (if it exists) and the mode. The
attribute 'path' was not propagated correctly.
We now check for all these attributes (as optional) and if they exists
we set them. We still validate that the user and group exist before
setting them.
Change-Id: Ifeccf2ee9d0acd17a3cd05de8d08968cea49550b
Reviewed-on: https://cl.fcuny.net/c/world/+/641
Tested-by: CI
Reviewed-by: Franck Cuny <franck@fcuny.net>
|
|
|
|
|
|
|
|
|
| |
This was done by running `nixpkgs-fmt .'.
Change-Id: I4ea6c1e759bf468d08074be2111cbc7af72df295
Reviewed-on: https://cl.fcuny.net/c/world/+/404
Tested-by: CI
Reviewed-by: Franck Cuny <franck@fcuny.net>
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
It took me a while to understand why the group and mode were not set
correctly for the buildkite agent secrets. This module is an abstraction
on top of agenix to modify the filename and ensure that the owner of the
file is actually defined in the configuration.
This was not passing the group and mode to agenix, which is why these
values were never set.
This change modify the library to check that the group exists (as we do
for the user), and pass the mode down.
Change-Id: I7f8545868986110ad92fa63ef8efe4cd3bbd9b0f
Reviewed-on: https://cl.fcuny.net/c/world/+/282
Reviewed-by: Franck Cuny <franck@fcuny.net>
|
| |
|
| |
|
|
|
|
|
|
| |
Having the secrets closer to the host is easier to manage. At the moment
I don't have secrets that are shared across multiple hosts, so that's an
OK approach.
|
| |
|
| |
|
|
Refactor a bit the configuration, which should simplify the management
and usage of secrets from now on.
|