mirror of
https://github.com/alyraffauf/nixcfg.git
synced 2024-11-25 13:51:54 -05:00
mauville: fetch nix-cache secrets with agenix
This commit is contained in:
parent
931c929fe9
commit
fb7780e043
|
@ -19,7 +19,10 @@ in {
|
||||||
./home.nix
|
./home.nix
|
||||||
];
|
];
|
||||||
|
|
||||||
age.secrets.cloudflare.file = ../../secrets/cloudflare.age;
|
age.secrets = {
|
||||||
|
cloudflare.file = ../../secrets/cloudflare.age;
|
||||||
|
nixCache.file = ../../secrets/nixCache/privKey.age;
|
||||||
|
};
|
||||||
|
|
||||||
boot.loader = {
|
boot.loader = {
|
||||||
efi.canTouchEfiVariables = true;
|
efi.canTouchEfiVariables = true;
|
||||||
|
@ -164,7 +167,7 @@ in {
|
||||||
|
|
||||||
nix-serve = {
|
nix-serve = {
|
||||||
enable = true;
|
enable = true;
|
||||||
secretKeyFile = "/var/cache-priv-key.pem";
|
secretKeyFile = config.age.secrets.nixCache.path;
|
||||||
};
|
};
|
||||||
|
|
||||||
ollama = {
|
ollama = {
|
||||||
|
|
BIN
secrets/nixCache/privKey.age
Normal file
BIN
secrets/nixCache/privKey.age
Normal file
Binary file not shown.
1
secrets/nixCache/pubKey
Normal file
1
secrets/nixCache/pubKey
Normal file
|
@ -0,0 +1 @@
|
||||||
|
nixcache.raffauflabs.com:yFIuJde/izA4aUDI3MZmBLzynEsqVCT1OfCUghOLlt8=
|
|
@ -22,6 +22,7 @@ in {
|
||||||
"lastFM/secret.age".publicKeys = keys;
|
"lastFM/secret.age".publicKeys = keys;
|
||||||
"mail/achacega_gmail.age".publicKeys = keys;
|
"mail/achacega_gmail.age".publicKeys = keys;
|
||||||
"mail/alyraffauf_fastmail.age".publicKeys = keys;
|
"mail/alyraffauf_fastmail.age".publicKeys = keys;
|
||||||
|
"nixCache/privKey.age".publicKeys = keys;
|
||||||
"spotify/clientId.age".publicKeys = keys;
|
"spotify/clientId.age".publicKeys = keys;
|
||||||
"spotify/clientSecret.age".publicKeys = keys;
|
"spotify/clientSecret.age".publicKeys = keys;
|
||||||
"syncthing/fallarbor/cert.age".publicKeys = keys;
|
"syncthing/fallarbor/cert.age".publicKeys = keys;
|
||||||
|
|
Loading…
Reference in a new issue