feat: got secrets up and running
This commit is contained in:
parent
8330a47727
commit
7428a53325
3 changed files with 23 additions and 4 deletions
10
flake.nix
10
flake.nix
|
|
@ -18,12 +18,18 @@
|
||||||
meta = {
|
meta = {
|
||||||
nixpkgs = import nixpkgs {
|
nixpkgs = import nixpkgs {
|
||||||
system = "x86_64-linux";
|
system = "x86_64-linux";
|
||||||
overlays = [ agenix.overlay ];
|
overlays = [];
|
||||||
};
|
};
|
||||||
};
|
};
|
||||||
|
|
||||||
# installed for each machine
|
# installed for each machine
|
||||||
defaults = import ./machines/_base.nix;
|
defaults = {
|
||||||
|
imports = [
|
||||||
|
./machines/_base.nix
|
||||||
|
# for the secrets
|
||||||
|
agenix.nixosModule
|
||||||
|
];
|
||||||
|
};
|
||||||
|
|
||||||
# firewall machiene
|
# firewall machiene
|
||||||
agentjones = import ./machines/agentjones.nix;
|
agentjones = import ./machines/agentjones.nix;
|
||||||
|
|
|
||||||
|
|
@ -27,8 +27,6 @@
|
||||||
environment.systemPackages = [
|
environment.systemPackages = [
|
||||||
# for flakes
|
# for flakes
|
||||||
pkgs.git
|
pkgs.git
|
||||||
# for secrets
|
|
||||||
pkgs.agenix
|
|
||||||
# useful tools
|
# useful tools
|
||||||
pkgs.ncdu_2
|
pkgs.ncdu_2
|
||||||
pkgs.htop
|
pkgs.htop
|
||||||
|
|
|
||||||
15
secrets/secrets.nix
Normal file
15
secrets/secrets.nix
Normal file
|
|
@ -0,0 +1,15 @@
|
||||||
|
let
|
||||||
|
admin = "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIK6DjXTAxesXpQ65l659iAjzEb6VpRaWKSg4AXxifPw9 Skynet Admin";
|
||||||
|
users = [
|
||||||
|
admin
|
||||||
|
];
|
||||||
|
|
||||||
|
# change this when its properly set up
|
||||||
|
agentjones = "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIGJDVQGjIwMQmkElGshgKDAlChM2xdNN6iI5Ap2IbAs5";
|
||||||
|
systems = [
|
||||||
|
agentjones
|
||||||
|
];
|
||||||
|
in
|
||||||
|
{
|
||||||
|
#"secret1.age".publicKeys = users ++ systems;
|
||||||
|
}
|
||||||
Loading…
Reference in a new issue