secrets: fix too open permissions

This commit is contained in:
teutat3s 2024-05-12 22:18:28 +02:00
parent 9245fa6797
commit d1a68a7c13
Signed by: teutat3s
GPG key ID: 4FA1D3FA524F22C1
2 changed files with 4 additions and 4 deletions

View file

@ -8,7 +8,7 @@
{
age.secrets.forgejo-actions-runner-token = {
file = "${flake.self}/secrets/forgejo-actions-runner-token.age";
mode = "644";
mode = "440";
};
# Trust docker bridge interface traffic

View file

@ -8,18 +8,18 @@
{
age.secrets.grafana-admin-password = {
file = "${flake.self}/secrets/grafana-admin-password.age";
mode = "644";
mode = "440";
owner = "grafana";
};
age.secrets.grafana-smtp-password = {
file = "${flake.self}/secrets/grafana-smtp-password.age";
mode = "644";
mode = "440";
owner = "grafana";
group = "prometheus";
};
age.secrets.grafana-keycloak-client-secret = {
file = "${flake.self}/secrets/grafana-keycloak-client-secret.age";
mode = "644";
mode = "440";
owner = "grafana";
};