wizzy/home-server
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

secrets

Browse source
This commit is contained in:
Ellie 2026-04-01 14:46:37 -07:00
parent 6d8a3c0121
commit eb5b8052f6
2 changed files with 25 additions and 7 deletions
Download patch file Download diff file Expand all files Collapse all files

19
services/lk-jwt.nix
View file

@ -20,10 +20,14 @@ in
sops.secrets."livekit/api_key" = {
sopsFile = ./secrets/livekit_vps.yaml;
mode = "0400";
owner = "livekit";
group = "livekit";
};
sops.secrets."livekit/api_secret" = {
sopsFile = ./secrets/livekit_vps.yaml;
mode = "0400";
owner = "livekit";
group = "livekit";
};
systemd.services.lk-jwt = {
@ -36,17 +40,20 @@ in
wants = [ "network-online.target" ];
serviceConfig = {
DynamicUser = true;
User = "livekit";
Group = "livekit";
Restart = "always";
RestartSec = 5;
};
script = ''
export LIVEKIT_URL="wss://livekit.ellie.town"
export LIVEKIT_KEY=$(cat ${config.sops.secrets."livekit/api_key".path})
export LIVEKIT_SECRET=$(cat ${config.sops.secrets."livekit/api_secret".path})
export LK_JWT_PORT=8080
environment = {
LIVEKIT_URL = "wss://livekit.ellie.town";
LIVEKIT_KEY_FILE = config.sops.secrets."livekit/api_key".path;
LIVEKIT_SECRET_FILE = config.sops.secrets."livekit/api_secret".path;
LK_JWT_PORT = "8080";
};
script = ''
exec ${lk-jwt-service}/bin/lk-jwt-service
'';
};