alyraffauf/nixcfg
1
0
Fork 0
mirror of https://github.com/alyraffauf/nixcfg.git synced 2024-11-22 00:53:55 -05:00
Code Issues Actions Packages Projects Releases Wiki Activity

hosts: add secrets.nix

Browse source
This commit is contained in:
Aly Raffauf 2024-07-22 19:56:56 -04:00
parent a281c7255b
commit d0e5ae23a3
10 changed files with 58 additions and 51 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

6
hosts/fallarbor/default.nix
View file

@ -8,14 +8,10 @@
../common
./disko.nix
./home.nix
./secrets.nix
self.inputs.nixhw.nixosModules.framework-13-intel-11th
];
age.secrets = {
syncthingCert.file = ../../secrets/syncthing/fallarbor/cert.age;
syncthingKey.file = ../../secrets/syncthing/fallarbor/key.age;
};
boot.loader = {
efi.canTouchEfiVariables = true;
systemd-boot.enable = true;

6
hosts/fallarbor/secrets.nix Normal file
View file

@ -0,0 +1,6 @@
{
age.secrets = {
syncthingCert.file = ../../secrets/syncthing/fallarbor/cert.age;
syncthingKey.file = ../../secrets/syncthing/fallarbor/key.age;
};
}

6
hosts/lavaridge/default.nix
View file

@ -8,14 +8,10 @@
../common
./disko.nix
./home.nix
./secrets.nix
self.inputs.nixhw.nixosModules.framework-13-amd-7000
];
age.secrets = {
syncthingCert.file = ../../secrets/syncthing/lavaridge/cert.age;
syncthingKey.file = ../../secrets/syncthing/lavaridge/key.age;
};
boot.loader = {
efi.canTouchEfiVariables = true;
systemd-boot.enable = true;

6
hosts/lavaridge/secrets.nix Normal file
View file

@ -0,0 +1,6 @@
{
age.secrets = {
syncthingCert.file = ../../secrets/syncthing/lavaridge/cert.age;
syncthingKey.file = ../../secrets/syncthing/lavaridge/key.age;
};
}

30
hosts/mauville/default.nix
View file

@ -14,6 +14,7 @@ in {
../common
./disko.nix
./home.nix
./secrets.nix
self.inputs.nixhw.nixosModules.common-amd-cpu
self.inputs.nixhw.nixosModules.common-amd-gpu
self.inputs.nixhw.nixosModules.common-bluetooth
@ -21,35 +22,6 @@ in {
self.inputs.raffauflabs.nixosModules.raffauflabs
];
age.secrets = {
cloudflare.file = ../../secrets/cloudflare.age;
lastfmId = {
owner = "navidrome";
file = ../../secrets/lastFM/apiKey.age;
};
lastfmSecret = {
owner = "navidrome";
file = ../../secrets/lastFM/secret.age;
};
spotifyId = {
owner = "navidrome";
file = ../../secrets/spotify/clientId.age;
};
spotifySecret = {
owner = "navidrome";
file = ../../secrets/spotify/clientSecret.age;
};
syncthingCert.file = ../../secrets/syncthing/mauville/cert.age;
syncthingKey.file = ../../secrets/syncthing/mauville/key.age;
transmission.file = ../../secrets/transmission.age;
};
boot = {
initrd = {
availableKernelModules = ["xhci_pci" "ahci" "nvme" "usbhid" "sd_mod" "r8169"];

29
hosts/mauville/secrets.nix Normal file
View file

@ -0,0 +1,29 @@
{
age.secrets = {
cloudflare.file = ../../secrets/cloudflare.age;
lastfmId = {
owner = "navidrome";
file = ../../secrets/lastFM/apiKey.age;
};
lastfmSecret = {
owner = "navidrome";
file = ../../secrets/lastFM/secret.age;
};
spotifyId = {
owner = "navidrome";
file = ../../secrets/spotify/clientId.age;
};
spotifySecret = {
owner = "navidrome";
file = ../../secrets/spotify/clientSecret.age;
};
syncthingCert.file = ../../secrets/syncthing/mauville/cert.age;
syncthingKey.file = ../../secrets/syncthing/mauville/key.age;
transmission.file = ../../secrets/transmission.age;
};
}

8
hosts/petalburg/default.nix
View file

@ -1,8 +1,6 @@
# Lenovo Yoga 9i Convertible with Intel Core i7-1360P, 16GB RAM, 512GB SSD.
{
config,
lib,
pkgs,
self,
...
}: {
@ -10,14 +8,10 @@
../common
./disko.nix
./home.nix
./secrets.nix
self.inputs.nixhw.nixosModules.lenovo-yoga-9i-intel-13th
];
age.secrets = {
syncthingCert.file = ../../secrets/syncthing/petalburg/cert.age;
syncthingKey.file = ../../secrets/syncthing/petalburg/key.age;
};
boot.loader = {
efi.canTouchEfiVariables = true;
systemd-boot.enable = true;

6
hosts/petalburg/secrets.nix Normal file
View file

@ -0,0 +1,6 @@
{
age.secrets = {
syncthingCert.file = ../../secrets/syncthing/petalburg/cert.age;
syncthingKey.file = ../../secrets/syncthing/petalburg/key.age;
};
}

6
hosts/rustboro/default.nix
View file

@ -8,14 +8,10 @@
../common
./disko.nix
./home.nix
./secrets.nix
self.inputs.nixhw.nixosModules.thinkpad-t440p
];
age.secrets = {
syncthingCert.file = ../../secrets/syncthing/rustboro/cert.age;
syncthingKey.file = ../../secrets/syncthing/rustboro/key.age;
};
boot.loader = {
efi.canTouchEfiVariables = true;
systemd-boot.enable = true;

6
hosts/rustboro/secrets.nix Normal file
View file

@ -0,0 +1,6 @@
{
age.secrets = {
syncthingCert.file = ../../secrets/syncthing/rustboro/cert.age;
syncthingKey.file = ../../secrets/syncthing/rustboro/key.age;
};
}