ecoppens/colmena
1
0
Fork 0
forked from DGNum/colmena
Code Pull requests Activity

README.md: Add example usage of keyCommand

Browse source
This commit is contained in:
Zhaofeng Li 2021-02-10 18:12:28 -08:00
parent 52622ecd27
commit 28b635a6e8
1 changed files with 4 additions and 4 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

8
README.md
View file

@ -181,10 +181,10 @@ For example, to deploy DNS-01 credentials for use with `security.acme`:
shared-box = { shared-box = {
security.acme.certs."my-site.tld".credentialsFile = "/run/keys/acme-credentials.secret"; security.acme.certs."my-site.tld".credentialsFile = "/run/keys/acme-credentials.secret";
deployment.keys."acme-credentials.secret" = { deployment.keys."acme-credentials.secret" = {
text = '' # Alternatively, `text` (string) or `keyFile` (path to file)
PDNS_API_URL=https://dns.provider # may be specified.
PDNS_API_KEY=top-secret-api-key keyCommand = [ "vault" "read" "-field=env" "secret/dns01" ];
'';
destDir = "/run/keys"; # Default: /run/keys destDir = "/run/keys"; # Default: /run/keys
user = "acme"; # Default: root user = "acme"; # Default: root
group = "nginx"; # Default: root group = "nginx"; # Default: root