nki/nix-home
1
0
Fork 0
Code Issues Pull requests 1 Projects Releases Packages Wiki Activity

Add ed25519 keys to the cloud host

Browse source
This commit is contained in:
Natsu Kagami 2022-10-17 13:51:03 +02:00
parent a884c74cfd
commit 146dedcdd4
Signed by: nki
GPG key ID: 7306B3D3C3AD6E51
4 changed files with 13 additions and 6 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

2
modules/my-tinc/default.nix
View file

@ -93,6 +93,8 @@ in
ed25519PrivateKeyFile = cfg.ed25519PrivateKey; ed25519PrivateKeyFile = cfg.ed25519PrivateKey;
rsaPrivateKeyFile = cfg.rsaPrivateKey; rsaPrivateKeyFile = cfg.rsaPrivateKey;
settings.ExperimentalProtocol = "yes";
}; };
} }
) )

1
modules/my-tinc/hosts/default.nix
View file

@ -4,6 +4,7 @@
subnetAddr = "11.0.0.1"; subnetAddr = "11.0.0.1";
address = "nki.personal"; address = "nki.personal";
rsaPublicKey = builtins.readFile ./nki-cloud.pub; rsaPublicKey = builtins.readFile ./nki-cloud.pub;
ed25519PublicKey = "fZi75omD1Z2vZYH7FleZ+ygKLqGj2emlLMvw3XcmZPM";
}; };
home = { home = {

6
nki-personal-do/configuration.nix
View file

@ -45,8 +45,10 @@
# tinc # tinc
services.my-tinc.enable = true; services.my-tinc.enable = true;
services.my-tinc.hostName = "cloud"; services.my-tinc.hostName = "cloud";
sops.secrets.tinc-private-key = { }; sops.secrets."tinc/rsa-private-key" = { };
services.my-tinc.rsaPrivateKey = config.sops.secrets.tinc-private-key.path; sops.secrets."tinc/ed25519-private-key" = { };
services.my-tinc.rsaPrivateKey = config.sops.secrets."tinc/rsa-private-key".path;
services.my-tinc.ed25519PrivateKey = config.sops.secrets."tinc/ed25519-private-key".path;
# Set up traefik # Set up traefik
sops.secrets.cloudflare-dns-api-token = { owner = "traefik"; }; sops.secrets.cloudflare-dns-api-token = { owner = "traefik"; };

10
nki-personal-do/secrets/secrets.yaml
View file

File diff suppressed because one or more lines are too long