nix-serve: DynamicUser makes key setup fragile

Opened by tazjin at 2021-08-12T14·41+00

The keys used by nix-serve (the thing) are in /etc/secrets and should be owned by the service user, but since that is now dynamic it changes after restarts and the service ends up being unable to read them.

Should probably do something like create a systemd state directory for the service and put them in there.