disable auto-secrets for vault

2023-09-20 18:08:00 +01:00 · 2023-09-20 18:08:00 +01:00 · c3575e0d27
parent 8aa000a506
commit c3575e0d27
1 changed files with 2 additions and 7 deletions
--- a/hosts/vault/secrets.nix
+++ b/hosts/vault/secrets.nix
@ -1,10 +1,4 @@
 {...}: {
-  # Since this is the machine that hosts vault
-  systemd.services.vault = {
-    before = ["auto-secrets.service"];
-    serviceConfig.PartOf = ["auto-secrets.service"];
-  };
-
  services.secrets = {
    enable = true;

@ -16,7 +10,8 @@
    };

    autoSecrets = {
-      enable = true;
+      # won't work when sealed
+      enable = false;
    };

    requiredVaultPaths = [