Switch from tailscale authkeys to an oauth client to fix issues with key expirey

2025-09-06 22:17:24 +10:00
parent 2d497e5195
commit 786b2c6670
4 changed files with 11 additions and 6 deletions
--- a/2-nomad-config/readme.md
+++ b/2-nomad-config/readme.md
@@ -3,6 +3,10 @@
 Mount the state on the fileshare to 2-nomad-config/.tfstate/
 `sudo mount -t cifs //192.168.1.192/appdata/terraform /home/othrayte/Code/infra/2-nomad-config/.tfstate/ -o rw,username=othrayte,password=<pw>,uid=$(id -u),gid=$(id -g)`

+# Tailscale Oauth Client
+
+We use a Tailscale oauth client secret to allow our containers to connect to tailscale. We created an oauth client called `nomad` with the `auth_keys` (write) scope for the tag `nomad` and stored the secret in our secrets file.
+
 # Secrets

 The secrets file is encrypted using sops and will be automatically decrypted in the terraform provider.