From 0c05fb49b4ae7379807251c0282a71a27f34f09a Mon Sep 17 00:00:00 2001 From: Franck Cuny Date: Wed, 20 Jul 2022 17:41:25 -0700 Subject: docs(gerrit): how to edit the secrets Change-Id: Ibc81727971cfbd7b05c383a1c58ca02b907683f7 Reviewed-on: https://cl.fcuny.net/c/world/+/661 Tested-by: CI Reviewed-by: Franck Cuny --- docs/gerrit.org | 4 +++- 1 file changed, 3 insertions(+), 1 deletion(-) diff --git a/docs/gerrit.org b/docs/gerrit.org index bee0509..28ab95f 100644 --- a/docs/gerrit.org +++ b/docs/gerrit.org @@ -6,7 +6,7 @@ A gerrit instance is running at [[https://cl.fcuny.net][cl.fcuny.net]]. - branches other than main can be pushed to the server - the main branch can only be modified by gerrit * Secure configuration -The file =/var/lib/gerrit/etc/secure.config= is managed by nix. The file contains: +The file =/var/lib/gerrit/etc/secure.config= is managed by nix and is encrypted with age. The file contains the following settings: #+begin_src ini [auth] registerEmailPrivateKey = @@ -16,6 +16,8 @@ The file =/var/lib/gerrit/etc/secure.config= is managed by nix. The file contain [plugin "gerrit-oauth-provider-google-oauth"] client-secret = #+end_src + +From the directory =hosts/tahoe/secrets= you can run =nix run github:ryantm/agenix -- -e gerrit/secure-config.age= to edit the secrets. * Notes The [[https://gerrit.googlesource.com/plugins/reviewnotes/][review notes]] plugin is enabled. The plugin stores into the notes the information about the reviews. -- cgit 1.4.1