commit 48467689090388d3c1b0648c9079dcaec3671e6e · julien.rbrt.fr/tangled-core

+22

nix/modules/spindle.nix

···

       54
       54
        
                   example = "did:plc:qfpnj4og54vl56wngdriaxug";

     

       55
       55
        
                   description = "DID of owner (required)";

     

       56
       56
        
                 };

     

       57
       57
       +
       

     

       58
       58
       +
                 secrets = {

     

       59
       59
       +
                   provider = mkOption {

     

       60
       60
       +
                     type = types.str;

     

       61
       61
       +
                     default = "sqlite";

     

       62
       62
       +
                     description = "Backend to use for secret management, valid options are 'sqlite', and 'openbao'.";

     

       63
       63
       +
                   };

     

       64
       64
       +
       

     

       65
       65
       +
                   openbao = {

     

       66
       66
       +
                     proxyAddr = mkOption {

     

       67
       67
       +
                       type = types.str;

     

       68
       68
       +
                       default = "http://127.0.0.1:8200";

     

       69
       69
       +
                     };

     

       70
       70
       +
                     mount = mkOption {

     

       71
       71
       +
                       type = types.str;

     

       72
       72
       +
                       default = "spindle";

     

       73
       73
       +
                     };

     

       74
       74
       +
                   };

     

       75
       75
       +
                 };

     

       57
       76
        
               };

     

       58
       77
        
       

     

       59
       78
        
               pipelines = {

     
···

       89
       108
        
                   "SPINDLE_SERVER_JETSTREAM=${cfg.server.jetstreamEndpoint}"

     

       90
       109
        
                   "SPINDLE_SERVER_DEV=${lib.boolToString cfg.server.dev}"

     

       91
       110
        
                   "SPINDLE_SERVER_OWNER=${cfg.server.owner}"

     

       111
       111
       +
                   "SPINDLE_SERVER_SECRETS_PROVIDER=${cfg.server.secrets.provider}"

     

       112
       112
       +
                   "SPINDLE_SERVER_SECRETS_OPENBAO_PROXY_ADDR=${cfg.server.secrets.openbao.proxyAddr}"

     

       113
       113
       +
                   "SPINDLE_SERVER_SECRETS_OPENBAO_MOUNT=${cfg.server.secrets.openbao.mount}"

     

       92
       114
        
                   "SPINDLE_PIPELINES_NIXERY=${cfg.pipelines.nixery}"

     

       93
       115
        
                   "SPINDLE_PIPELINES_WORKFLOW_TIMEOUT=${cfg.pipelines.workflowTimeout}"

     

       94
       116
        
                 ];

nix/vm.nix

···

       62
       62
        
                 hostname = "localhost:6555";

     

       63
       63
        
                 listenAddr = "0.0.0.0:6555";

     

       64
       64
        
                 dev = true;

     

       65
       65
       +
                 secrets = {

     

       66
       66
       +
                   provider = "sqlite";

     

       67
       67
       +
                 };

     

       65
       68
        
               };

     

       66
       69
        
             };

     

       67
       70
        
           })