diff --git a/modules/coturn/default.nix b/modules/coturn/default.nix index bf364487..b47329ea 100644 --- a/modules/coturn/default.nix +++ b/modules/coturn/default.nix @@ -5,9 +5,8 @@ ... }: { - age.secrets."nachtigall-coturn-static-auth-secret" = { - file = "${flake.self}/secrets/nachtigall-coturn-static-auth-secret.age"; - path = "/run/agenix/coturn-static-auth-secret"; + age.secrets."coturn-static-auth-secret" = { + file = "${flake.self}/secrets/coturn-static-auth-secret.age"; mode = "400"; owner = "turnserver"; }; @@ -19,7 +18,7 @@ min-port = 49000; max-port = 50000; use-auth-secret = true; - static-auth-secret-file = config.age.secrets."nachtigall-coturn-static-auth-secret".path; + static-auth-secret-file = config.age.secrets."coturn-static-auth-secret".path; realm = "turn.${config.pub-solar-os.networking.domain}"; cert = "${config.security.acme.certs.${realm}.directory}/full.pem"; pkey = "${config.security.acme.certs.${realm}.directory}/key.pem"; diff --git a/secrets/nachtigall-coturn-static-auth-secret.age b/secrets/coturn-static-auth-secret.age similarity index 100% rename from secrets/nachtigall-coturn-static-auth-secret.age rename to secrets/coturn-static-auth-secret.age diff --git a/secrets/secrets.nix b/secrets/secrets.nix index 88a632aa..3678d9b0 100644 --- a/secrets/secrets.nix +++ b/secrets/secrets.nix @@ -92,7 +92,7 @@ in "mediawiki-oidc-client-secret.age".publicKeys = nachtigallKeys ++ adminKeys; "mediawiki-secret-key.age".publicKeys = nachtigallKeys ++ adminKeys; - "nachtigall-coturn-static-auth-secret.age".publicKeys = nachtigallKeys ++ adminKeys; + "coturn-static-auth-secret.age".publicKeys = nachtigallKeys ++ adminKeys; "grafana-admin-password.age".publicKeys = trinkgenossinKeys ++ adminKeys; "grafana-keycloak-client-secret.age".publicKeys = trinkgenossinKeys ++ adminKeys;