commit f65fead4ea41593c32707e46bcc865815ec3f220
parent 4d5665a592ac1586bf34d3a7be15396532e86a69
Author: Vincent Demeester <vincent@sbr.pm>
Date: Wed, 24 Nov 2021 18:19:27 +0100
systems/profiles: fix mode for system-connections
If there at too "wide", NetworkManager doesn't take them into account.
Signed-off-by: Vincent Demeester <vincent@sbr.pm>
Diffstat:
1 file changed, 12 insertions(+), 6 deletions(-)
diff --git a/systems/modules/profiles/redhat.nix b/systems/modules/profiles/redhat.nix
@@ -30,28 +30,34 @@ in
};
# NetworkManager
sops.secrets."1-RHVPN.ovpn" = {
- inherit (common) mode owner group sopsFile;
+ inherit (common) owner group sopsFile;
path = "/etc/NetworkManager/system-connections/1-RHVPN.ovpn";
+ mode = "600";
};
sops.secrets."AMS2.ovpn" = {
- inherit (common) mode owner group sopsFile;
+ inherit (common) owner group sopsFile;
path = "/etc/NetworkManager/system-connections/AMS2.ovpn";
+ mode = "600";
};
sops.secrets."BBRQ.ovpn" = {
- inherit (common) mode owner group sopsFile;
+ inherit (common) owner group sopsFile;
path = "/etc/NetworkManager/system-connections/BBRQ.ovpn";
+ mode = "600";
};
sops.secrets."RDU2.ovpn" = {
- inherit (common) mode owner group sopsFile;
+ inherit (common) owner group sopsFile;
path = "/etc/NetworkManager/system-connections/RDU2.ovpn";
+ mode = "600";
};
sops.secrets."PNQ2.ovpn" = {
- inherit (common) mode owner group sopsFile;
+ inherit (common) owner group sopsFile;
path = "/etc/NetworkManager/system-connections/PNQ2.ovpn";
+ mode = "600";
};
sops.secrets."FAB.ovpn" = {
- inherit (common) mode owner group sopsFile;
+ inherit (common) owner group sopsFile;
path = "/etc/NetworkManager/system-connections/FAB.ovpn";
+ mode = "600";
};
# Certificates
sops.secrets."ipa.crt" = {