25 lines
468 B
Nix
25 lines
468 B
Nix
{pkgs, ...}: {
|
|
environment.systemPackages = with pkgs; [
|
|
vault
|
|
];
|
|
|
|
services.vault = {
|
|
enable = true;
|
|
package = pkgs.vault-bin;
|
|
address = "127.0.0.1:8200";
|
|
storageBackend = "file";
|
|
extraConfig = ''
|
|
ui = true
|
|
raw_storage_endpoint = true
|
|
'';
|
|
};
|
|
|
|
services.nginx.virtualHosts."vault.owo.monster" = {
|
|
forceSSL = true;
|
|
enableACME = true;
|
|
locations = {
|
|
"/".proxyPass = "http://127.0.0.1:8200";
|
|
};
|
|
};
|
|
}
|