alyraffauf/nixcfg
1
0
Fork 0
mirror of https://github.com/alyraffauf/nixcfg.git synced 2024-11-22 07:13:55 -05:00
Code Issues Actions 3 Packages Projects Releases Wiki Activity

mauville: fetch nix-cache secrets with agenix

Browse source
This commit is contained in:
Aly Raffauf 2024-06-30 23:28:24 -04:00
parent 931c929fe9
commit fb7780e043
4 changed files with 7 additions and 2 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

7
hosts/mauville/default.nix
View file

@ -19,7 +19,10 @@ in {
./home.nix ./home.nix
]; ];
age.secrets.cloudflare.file = ../../secrets/cloudflare.age; age.secrets = {
cloudflare.file = ../../secrets/cloudflare.age;
nixCache.file = ../../secrets/nixCache/privKey.age;
};
boot.loader = { boot.loader = {
efi.canTouchEfiVariables = true; efi.canTouchEfiVariables = true;
@ -164,7 +167,7 @@ in {
nix-serve = { nix-serve = {
enable = true; enable = true;
secretKeyFile = "/var/cache-priv-key.pem"; secretKeyFile = config.age.secrets.nixCache.path;
}; };
ollama = { ollama = {

BIN
secrets/nixCache/privKey.age Normal file
View file

Binary file not shown.

1
secrets/nixCache/pubKey Normal file
View file

@ -0,0 +1 @@
nixcache.raffauflabs.com:yFIuJde/izA4aUDI3MZmBLzynEsqVCT1OfCUghOLlt8=

1
secrets/secrets.nix
View file

@ -22,6 +22,7 @@ in {
"lastFM/secret.age".publicKeys = keys; "lastFM/secret.age".publicKeys = keys;
"mail/achacega_gmail.age".publicKeys = keys; "mail/achacega_gmail.age".publicKeys = keys;
"mail/alyraffauf_fastmail.age".publicKeys = keys; "mail/alyraffauf_fastmail.age".publicKeys = keys;
"nixCache/privKey.age".publicKeys = keys;
"spotify/clientId.age".publicKeys = keys; "spotify/clientId.age".publicKeys = keys;
"spotify/clientSecret.age".publicKeys = keys; "spotify/clientSecret.age".publicKeys = keys;
"syncthing/fallarbor/cert.age".publicKeys = keys; "syncthing/fallarbor/cert.age".publicKeys = keys;