diff options
author | Matthieu Coudron <mattator@gmail.com> | 2019-04-06 10:28:33 +0900 |
---|---|---|
committer | Matthieu Coudron <mattator@gmail.com> | 2019-04-11 11:44:49 +0900 |
commit | 08b8c6caf215f25e798ba578a71aa7a81c20ebca (patch) | |
tree | 60e942bdab59737098391fce4f517500ea5d966b | |
parent | 21d1b195c885f5bcef49f2d0485246ed8979f0a8 (diff) | |
download | nixpkgs-08b8c6caf215f25e798ba578a71aa7a81c20ebca.tar nixpkgs-08b8c6caf215f25e798ba578a71aa7a81c20ebca.tar.gz nixpkgs-08b8c6caf215f25e798ba578a71aa7a81c20ebca.tar.bz2 nixpkgs-08b8c6caf215f25e798ba578a71aa7a81c20ebca.tar.lz nixpkgs-08b8c6caf215f25e798ba578a71aa7a81c20ebca.tar.xz nixpkgs-08b8c6caf215f25e798ba578a71aa7a81c20ebca.tar.zst nixpkgs-08b8c6caf215f25e798ba578a71aa7a81c20ebca.zip |
nixos/strongswan: use strings for secrets.
The nixos module artifically enforces type.path whereas the ipsec secret configuration files accept pattern or relative paths. Enforcing absolute paths already caused problems with l2tp vpn: https://github.com/nm-l2tp/NetworkManager-l2tp/issues/108
-rw-r--r-- | nixos/modules/services/networking/strongswan.nix | 2 |
1 files changed, 1 insertions, 1 deletions
diff --git a/nixos/modules/services/networking/strongswan.nix b/nixos/modules/services/networking/strongswan.nix index 707d24b9220..41b69039ba7 100644 --- a/nixos/modules/services/networking/strongswan.nix +++ b/nixos/modules/services/networking/strongswan.nix @@ -54,7 +54,7 @@ in enable = mkEnableOption "strongSwan"; secrets = mkOption { - type = types.listOf types.path; + type = types.listOf types.str; default = []; example = [ "/run/keys/ipsec-foo.secret" ]; description = '' |