re-add zone.

This commit is contained in:
Joseph Hanson 2024-04-29 12:55:40 -05:00
parent 8d0cd78c59
commit 47389f8486
Signed by: jahanson
SSH key fingerprint: SHA256:vy6dKBECV522aPAwklFM3ReKAVB086rT3oWwiuiFG7o

View file

@ -11,12 +11,16 @@
]; ];
sops = { sops = {
# Mounts unencrypted sops values at /run/secrets/bind/rndc_keys/externaldns accessible by root only by default. # Mounts unencrypted sops values at /run/secrets/rndc_keys accessible by root only by default.
secrets = { secrets = {
"bind/rndc-keys/externaldns" = { "bind/rndc-keys/externaldns" = {
owner = config.users.users.named.name; owner = config.users.users.named.name;
inherit (config.users.users.named) group; inherit (config.users.users.named) group;
}; };
"bind/zones/jahanson.tech" = {
owner = config.users.users.named.name;
inherit (config.users.users.named) group;
};
}; };
}; };
@ -53,7 +57,9 @@
services.bind = { services.bind = {
enable = true; enable = true;
extraConfig = import ./config/bind.nix {inherit config;}; extraConfig = ''
import ./config/bind.nix {inherit config;};
'';
}; };
# Some programs need SUID wrappers, can be configured further or are # Some programs need SUID wrappers, can be configured further or are