diff options
author | Benedikt Peetz <benedikt.peetz@b-peetz.de> | 2024-06-13 15:34:09 +0200 |
---|---|---|
committer | Benedikt Peetz <benedikt.peetz@b-peetz.de> | 2024-06-13 20:13:58 +0200 |
commit | c33889e7e53386204dae25b1eed6b36aaf006b21 (patch) | |
tree | d8f37decdb4296d66259fa21b1a176c3d9a03f7b /system/secrets | |
parent | refactor(modules): Ensure strict coherence to patterns (diff) | |
download | nixos-server-c33889e7e53386204dae25b1eed6b36aaf006b21.tar.gz nixos-server-c33889e7e53386204dae25b1eed6b36aaf006b21.zip |
refactor(modules/etesync): Move to a complete module
Diffstat (limited to 'system/secrets')
-rw-r--r-- | system/secrets/default.nix | 6 | ||||
-rw-r--r-- | system/secrets/etebase-server/passwd.age | 17 | ||||
-rw-r--r-- | system/secrets/secrets.nix | 23 |
3 files changed, 0 insertions, 46 deletions
diff --git a/system/secrets/default.nix b/system/secrets/default.nix index 1656cec..b74e883 100644 --- a/system/secrets/default.nix +++ b/system/secrets/default.nix @@ -1,12 +1,6 @@ {...}: { age = { secrets = { - etebase-server = { - file = ./etebase-server/passwd.age; - mode = "700"; - owner = "etebase-server"; - group = "etebase-server"; - }; invidiousHmac = { file = ./invidious/hmac.age; mode = "700"; diff --git a/system/secrets/etebase-server/passwd.age b/system/secrets/etebase-server/passwd.age deleted file mode 100644 index 8d8e3c2..0000000 --- a/system/secrets/etebase-server/passwd.age +++ /dev/null @@ -1,17 +0,0 @@ ------BEGIN AGE ENCRYPTED FILE----- -YWdlLWVuY3J5cHRpb24ub3JnL3YxCi0+IFgyNTUxOSA0UiswNDhQNWpsaFZUQTdY -U3F2TFlrSzhMbmRBWEIyTGQ2VGVramdPTDI4CjRGSnlqUm5rWWJ2Vk5neE56azdt -WitpbXlPWngxSGtEalBKWkRZdHF5QjQKLT4gWDI1NTE5IDRSSW1jcHhocjBIM0tM -ZjRxNUhZWkhkd1c5aVlucTMxTTVhSHRIMHMyU0EKbWlQZ0xKRXUvOWluSkZQRWdp -UjNMQWR3MHNwbUVYbm4vSGJQOGtrb2ZxVQotPiBzc2gtZWQyNTUxOSBPRDhUNGcg -SEpCY1JWZm5yMG1lL3QwUERPVUFqRWo5ZVJEb1JqNGVLS3pXVkhaYk1SYwpjb3dW -UWcrMkdmYTlvckFOYmsvcGwvY1dvc1oxY1FaY2p4eURCK3BIR044Ci0+ICgreWhl -KG9RLWdyZWFzZSAobEpLXVEgNVA3IGQKekx5YVFkeFRBUlJiUis2cFVyWlBPNncK -LS0tIFJxa0hDZUIyYm5uYlhiZjRnNHRLNTRrRW01d1hCL2dCZnByL1M2SkFyQXMK -gsR7erKGQrBhXlcnR73PbnC+PzOQlsBOg6a6DosGyixbnEgZ4DfyeK5Ep1oPB81Q -zcS9AV7h+8NlpmVM4G+0JCIC8I3TTCEQyOPwiu+GVXr4GYy/3stg+pK1htkt2V2M -WraPl//K3kvFln1KRt5lbsVXLX8SYZS4UJDzK25oJElwdNuqXHqwMkTmXjEgnbvS -pjgaNak5ooxHiZfCtzismLx5iL+P/+oohegUPvW16fQTq/eKp3mIjeBZmrWNnTuL -/xlhk0vp0+jS3+TqgGWSwAAqoCp/+TewUZ9f+GhU0/pkU3HP4+tx35rKN2wxerQj -nMbQ8SphigUeMpc501oDRw6X5ZAasoww ------END AGE ENCRYPTED FILE----- diff --git a/system/secrets/secrets.nix b/system/secrets/secrets.nix deleted file mode 100644 index 21558e3..0000000 --- a/system/secrets/secrets.nix +++ /dev/null @@ -1,23 +0,0 @@ -let - soispha = "age1mshh4ynzhhzhff25tqwkg4j054g3xwrfznh98ycchludj9wjj48qn2uffn"; - sils = "age1vuhaey7kd9l76y6f9weeqmde3s4kjw38869ju6u3027yece2r3rqssjxst"; - - server1 = "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIMnqsfIZjelH7rcvFvnLR5zUZuC8thsBupBlvjcMRBUm"; - - allSecrets = [ - soispha - sils - server1 - ]; -in { - "backup/backuppass.age".publicKeys = allSecrets; - "backup/backupssh.age".publicKeys = allSecrets; - "etebase-server/passwd.age".publicKeys = allSecrets; - "invidious/hmac.age".publicKeys = allSecrets; - "invidious/settings.age".publicKeys = allSecrets; - "mastodon/mail.age".publicKeys = allSecrets; - "matrix-synapse/passwd.age".publicKeys = allSecrets; - "miniflux/admin.age".publicKeys = allSecrets; - "taskserver/ca.age".publicKeys = allSecrets; - "taskserver/systemd_tmpfiles.age".publicKeys = allSecrets; -} |