kiara/Fediversity
1
0
Fork 0
forked from Fediversity/Fediversity
Code Pull requests Activity

point deployed TF to panel ssh key

Browse source
This commit is contained in:
Kiara Grouwstra 2025-04-10 11:12:39 +02:00
parent 4f83f51e17
commit 8f785d7582
Signed by: kiara
SSH key fingerprint: SHA256:COspvLoLJ5WC5rFb9ZDe5urVCkK4LJZOsjfF4duRJFU
2 changed files with 4 additions and 2 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

4
infra/machines/fedi201/fedipanel.nix
View file

@ -1,6 +1,5 @@
{ {
config, config,
pkgs,
... ...
}: }:
let let
@ -55,6 +54,9 @@ in
CSRF_TRUSTED_ORIGINS = [ "https://${cfg.domain}" ]; CSRF_TRUSTED_ORIGINS = [ "https://${cfg.domain}" ];
COMPRESS_OFFLINE = true; COMPRESS_OFFLINE = true;
LIBSASS_OUTPUT_STYLE = "compressed"; LIBSASS_OUTPUT_STYLE = "compressed";
ENV_VARS = {
ssh_private_key_file = config.age.secrets.panel-ssh-key.path;
};
}; };
secrets = { secrets = {
SECRET_KEY = config.age.secrets.panel-secret-key.path; SECRET_KEY = config.age.secrets.panel-secret-key.path;

2
panel/src/panel/views.py
View file

@ -146,7 +146,7 @@ class DeploymentStatus(ConfigurationForm):
} | { } | {
# pass in form info to our deployment # pass in form info to our deployment
# FIXME: ensure sensitive info is protected # FIXME: ensure sensitive info is protected
f"TF_VAR_{k}": v if isinstance(v, str) else json.dumps(v) for k, v in deployment_params.items() f"TF_VAR_{k}": v if isinstance(v, str) else json.dumps(v) for k, v in (settings.ENV_VARS | deployment_params).items()
} }
cwd = f"{settings.repo_dir}/launch" cwd = f"{settings.repo_dir}/launch"
cmd = [ cmd = [