hackclub/burrow
1
0
Fork 0
Code Pull requests Releases Packages Activity Actions
burrow/secrets
History
Conrad Kramer c72426ef52
Some checks are pending
Build Rust / Cargo Test (push) Waiting to run
Details
Build Site / Next.js Build (push) Waiting to run
Details
Rotate Forgejo NSC token
2026-03-18 22:45:12 -07:00
..
forgejo Rotate Forgejo NSC token 2026-03-18 22:45:12 -07:00
README.md Move Forgejo NSC runtime into agenix 2026-03-18 22:40:44 -07:00
secrets.nix Move Forgejo NSC runtime into agenix 2026-03-18 22:40:44 -07:00

README.md

Secrets

Burrow secrets live in secrets/<name>.age and are managed with agenix.

For the Forgejo Namespace Cloud runtime:

  • secrets/forgejo/nsc-token.age
  • secrets/forgejo/nsc-dispatcher-config.age
  • secrets/forgejo/nsc-autoscaler-config.age

Use:

  • make secret name=forgejo/nsc-token
  • make secret-file name=forgejo/nsc-token file=/path/to/source

The forge host decrypts these files at activation time and feeds the resulting paths into services.burrow.forgejoNsc.