Jo/puzzlevision
1
0
Fork 0
mirror of https://github.com/Jokiller230/puzzlevision.git synced 2025-09-10 04:40:05 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions

feat: finish sops-nix configuration

Browse source 
feat(modules): update traefik service to letsencrypt staging servers

various other tweaks
This commit is contained in:
Jo 2024-09-22 23:07:08 +02:00
parent b7a3e4c97c
commit 92fae1bed4
6 changed files with 57 additions and 5 deletions
Download patch file Download diff file Expand all files Collapse all files

6
systems/x86_64-linux/absolutesolver/default.nix
View file

@ -14,6 +14,12 @@
inputs.hardware.nixosModules.common-pc-laptop-ssd
];
# Setup Sops
sops.defaultSopsFile = lib.snowfall.fs.get-file "secrets/default.yaml";
sops.age.sshKeyPaths = [ "/etc/ssh/ssh_host_ed25519_key" ];
sops.age.keyFile = "/var/lib/sops-nix/key.txt";
sops.age.generateKey = true;
# Set hostname
# Todo: move to common/networking module
networking.hostName = "absolutesolver";

8
systems/x86_64-linux/puzzlevision/default.nix
View file

@ -14,6 +14,13 @@
inputs.hardware.nixosModules.common-pc-laptop-ssd
];
# Configure Sops
sops.defaultSopsFile = lib.snowfall.fs.get-file "secrets/default.yaml";
sops.age.keyFile = "/var/lib/sops-nix/key.txt"; # The main AGE key is expected in this location, it is only needed for this system.
# Sops keys
sops.secrets."user/jo/password_hash".neededForUsers = true;
# Set hostname
# Todo: move to common/networking module
networking.hostName = "puzzlevision";
@ -53,6 +60,7 @@
snowfallorg.users.jo.admin = true;
users.users.jo.isNormalUser = true;
users.users.jo.extraGroups = [ "dialout" "docker" ];
users.users.jo.hashedPasswordFile = config.sops.secrets."user/jo/password_hash".path;
# Configure home-manager
home-manager = {