Commit f65fead4ea41

Vincent Demeester <vincent@sbr.pm>
2021-11-24 18:19:27
systems/profiles: fix mode for system-connections
If there at too "wide", NetworkManager doesn't take them into account. Signed-off-by: Vincent Demeester <vincent@sbr.pm>
main
1 parent 4d5665a
Changed files (1)
systems
modules
profiles
redhat.nix
systems/modules/profiles/redhat.nix
@@ -30,28 +30,34 @@ in
     };
     # NetworkManager
     sops.secrets."1-RHVPN.ovpn" = {
-      inherit (common) mode owner group sopsFile;
+      inherit (common) owner group sopsFile;
       path = "/etc/NetworkManager/system-connections/1-RHVPN.ovpn";
+      mode = "600";
     };
     sops.secrets."AMS2.ovpn" = {
-      inherit (common) mode owner group sopsFile;
+      inherit (common) owner group sopsFile;
       path = "/etc/NetworkManager/system-connections/AMS2.ovpn";
+      mode = "600";
     };
     sops.secrets."BBRQ.ovpn" = {
-      inherit (common) mode owner group sopsFile;
+      inherit (common) owner group sopsFile;
       path = "/etc/NetworkManager/system-connections/BBRQ.ovpn";
+      mode = "600";
     };
     sops.secrets."RDU2.ovpn" = {
-      inherit (common) mode owner group sopsFile;
+      inherit (common) owner group sopsFile;
       path = "/etc/NetworkManager/system-connections/RDU2.ovpn";
+      mode = "600";
     };
     sops.secrets."PNQ2.ovpn" = {
-      inherit (common) mode owner group sopsFile;
+      inherit (common) owner group sopsFile;
       path = "/etc/NetworkManager/system-connections/PNQ2.ovpn";
+      mode = "600";
     };
     sops.secrets."FAB.ovpn" = {
-      inherit (common) mode owner group sopsFile;
+      inherit (common) owner group sopsFile;
       path = "/etc/NetworkManager/system-connections/FAB.ovpn";
+      mode = "600";
     };
     # Certificates
     sops.secrets."ipa.crt" = {