0xa/nix-config
1
0
Fork 0
Code Issues Pull requests Projects Releases Wiki Activity

rotate secrets, retire microwave, comission toaster

Browse source
This commit is contained in:
Grigory Shipunov 2023-01-10 00:12:15 +01:00
parent f690251f13
commit 1a5575bab8
Signed by: 0xa
GPG key ID: 91FA5E5BF9AA901C
7 changed files with 286 additions and 229 deletions
Download patch file Download diff file Expand all files Collapse all files

20
hosts/toaster/secrets.nix Normal file
View file

@ -0,0 +1,20 @@
{ config, ... }:
{
sops.defaultSopsFile = ../../secrets/toaster/secrets.yaml;
sops.age.sshKeyPaths = [ "/etc/ssh/ssh_host_ed25519_key" ];
sops.secrets = {
"wg/zw" = {
owner = config.users.users.systemd-network.name;
};
"wg/dvb" = {
owner = config.users.users.systemd-network.name;
};
"wg/mullvad" = {
owner = config.users.users.systemd-network.name;
};
"wg/oxalab" = {
owner = config.users.users.systemd-network.name;
};
};
}