19 lines
748 B
Markdown
19 lines
748 B
Markdown
# Terraform State
|
|
|
|
Mount the state on the fileshare to 2-nomad-config/.tfstate/
|
|
`sudo mount -t cifs //192.168.1.192/appdata/terraform /home/othrayte/Code/infra/2-nomad-config/.tfstate/ -o rw,username=othrayte,password=<pw>,uid=$(id -u),gid=$(id -g)`
|
|
|
|
# Tailscale Oauth Client
|
|
|
|
We use a Tailscale oauth client secret to allow our containers to connect to tailscale. We created an oauth client called `nomad` with the `auth_keys` (write) scope for the tag `nomad` and stored the secret in our secrets file.
|
|
|
|
# Secrets
|
|
|
|
The secrets file is encrypted using sops and will be automatically decrypted in the terraform provider.
|
|
|
|
Put the age keys in /home/<user>/.config/sops/age/keys.txt
|
|
|
|
## Adding Secrets
|
|
|
|
Edit the secrets using `sops secrets.enc.json`
|