1
0

Compare commits

...

2 Commits

Author SHA1 Message Date
9982a4d710 hosts/hydra: use secrets for nix-cache 2023-05-02 20:14:02 +02:00
9d6a7b1c88 hosts/gatekeeper: add vpn secret 2023-05-02 19:57:21 +02:00
5 changed files with 21 additions and 2 deletions

View File

@ -100,7 +100,7 @@
]; ];
listenPort = 51820; listenPort = 51820;
allowedIPsAsRoutes = false; allowedIPsAsRoutes = false;
privateKeyFile = "/var/src/secrets/wireguard/wg-vpn"; privateKeyFile = config.age.secrets.wg-vpn.path;
}; };
}; };

View File

@ -0,0 +1,9 @@
age-encryption.org/v1
-> ssh-ed25519 HwR33w mc6hKfB2yixGjxjDoUlz5e+KQ9CdlTveXhecg+fnBz0
PvS1xgw1EpHKjHyjnAQQ6bt5wZF42rE5TE/tNJ4KEKU
-> ssh-ed25519 W4Oy+w Cfmoqb/Odb+XJECaXhm7yDqdOi0776l8I3rsZimfNkw
86jSNwg/eKkxCvncnnVDwc6OZovXFMwLnqPeCtuWGHg
-> c-grease nQ | u[<tiR5
ZJfBhhmLf64ruvxrxxHtjSuZ00snW+w9
--- f8ZhZlLEbwre1PYWOGu2rBVllDbDIjj7FmW8Jrq9EQM
W*àË:§ºA˜Í2¢°¢Úú^<5E>- 'ÛÒ¦qé_©ì-ÂøWd+*EŽäƒ¿ÿÿGÊýY$ý©—t\b™Ï\Ô3º[}a}\âˆV3ïg

View File

@ -84,7 +84,7 @@
enable = true; enable = true;
port = 5005; port = 5005;
bindAddress = "127.0.0.1"; bindAddress = "127.0.0.1";
secretKeyFile = "/var/src/secrets/nix-serve/secret-key.key"; secretKeyFile = config.age.secrets.nix-cache-key.path;
# Workaround https://github.com/NixOS/nix/issues/7704#issuecomment-1409480909 # Workaround https://github.com/NixOS/nix/issues/7704#issuecomment-1409480909
package = pkgs.nix-serve-ng.override { package = pkgs.nix-serve-ng.override {
nix = pkgs.nixVersions.nix_2_12; nix = pkgs.nixVersions.nix_2_12;

View File

@ -0,0 +1,9 @@
age-encryption.org/v1
-> ssh-ed25519 HwR33w XAZWRRep4zdbZFwRvWGa9yyLe44TlOGIMwtLo/WZXyw
G8Rv8Oqbvx5qYr8ZrQlmIyhYqUG6aJArfhMoqu4U/Uc
-> ssh-ed25519 UgSomQ sP6Z3WzhBXDaDfsSNHY7p/vV20/eytII2VhO6+vUAhE
q6+FH+k04jG0417KvY8cHnNeb8hEzEtxX+hLmKWqvdk
-> *A>\V=-grease
wpRswQ45ywiN+jit7kj5p0s2a+WloUueeu5E+Nn41WOMNQLJ3RaJqxRk
--- TVK8uHcE2tn7qfDF2oAGb24N6a670Fc+QVU7agmJYNo
_ aà­ ˜-è¦'ÀÓ³ÞýAbSØ ÆXÊ2Ñ$À\‰M³œÅ¾ç×ý¦#6žwP˜çÉ…<18>²'ÚGK‰<4B>&Ü´|œýó7³PŸÕŒŒ-v¨õÐ_Sb&^YÒ±bÍ(KÏñ´9oÀ¢í¼ß‰{Cž³m<C2B3>F0w¸î±Æ£- ¨9õ<5 LÌ¥ì

View File

@ -0,0 +1 @@
nix-cache.clerie.de:bAt1GJTS9BOTcXFWj3nURrSlcjqikCev9yDvqArMP5g=