Fixup nomad consul default token injection for connect

input-output-hk · Sep 16, 2021 · 22ea496 · 22ea496
1 parent 1bcf127
commit 22ea496
Showing 1 changed file with 8 additions and 0 deletions.
diff --git a/modules/vault-agent-client.nix b/modules/vault-agent-client.nix
@@ -107,6 +107,14 @@ in {
           command = "${pkgs.systemd}/bin/systemctl try-restart consul.service";
         };
 
+        "/run/keys/nomad-consul-token" = mkIf config.services.nomad.enable {
+          contents = ''
+            {{- with secret "consul/creds/consul-default" }}{{ .Data.token }}{{ end -}}
+          '';
+
+          command = "${pkgs.systemd}/bin/systemctl restart nomad.service";
+        };
+
         "/etc/vault.d/consul-token.json" = mkIf config.services.vault.enable {
           contents = ''
             {{ with secret "consul/creds/vault-client" }}