talexander/machine_setup
1
0
Fork 0
Code Issues Pull Requests Releases Activity

Add service account.

Browse Source
This commit is contained in:
Tom Alexander
2025-12-14 13:37:46 -05:00
parent 41f9847262
commit 51feef1582
7 changed files with 83 additions and 3 deletions
Download Patch File Download Diff File Expand all files Collapse all files

15
nix/kubernetes/keys/scope.nix
View File

@@ -137,6 +137,20 @@ makeScope newScope (
group = 10024;
mode = "0600";
}
{
dest_dir = "/vm/${vm_name}/persist/keys/kube";
file = "${self.service_account}/service-account.pem";
owner = 10024;
group = 10024;
mode = "0600";
}
{
dest_dir = "/vm/${vm_name}/persist/keys/kube";
file = "${self.service_account}/service-account-key.pem";
owner = 10024;
group = 10024;
mode = "0600";
}
])
)
);
@@ -181,6 +195,7 @@ makeScope newScope (
{
ca = (callPackage ./package/k8s-ca/package.nix additional_vars);
kubernetes = (callPackage ./package/k8s-kubernetes/package.nix additional_vars);
service_account = (callPackage ./package/k8s-service-account/package.nix additional_vars);
keys = (callPackage ./package/k8s-keys/package.nix additional_vars);
deploy_script = (writeShellScript "deploy-keys" deploy_script);
}