From 0d3b0ee75c5e6d278bda70762d731e2052197655 Mon Sep 17 00:00:00 2001 From: RGBCube Date: Tue, 22 Jul 2025 17:50:23 +0300 Subject: [PATCH] hosts.pala: add ssh ids --- hosts/pala/default.nix | 10 ++++++++++ hosts/pala/id-cull.age | Bin 0 -> 709 bytes hosts/pala/id-no.age | Bin 0 -> 709 bytes hosts/pala/id.age | Bin 0 -> 709 bytes secrets.nix | 7 ++++++- 5 files changed, 16 insertions(+), 1 deletion(-) create mode 100644 hosts/pala/id-cull.age create mode 100644 hosts/pala/id-no.age create mode 100644 hosts/pala/id.age diff --git a/hosts/pala/default.nix b/hosts/pala/default.nix index add1ba3..649527a 100644 --- a/hosts/pala/default.nix +++ b/hosts/pala/default.nix @@ -6,6 +6,16 @@ in { type = "desktop"; + secrets.id.file = ./id.age; + secrets.id-cull.file = ./id-cull.age; + secrets.id-no.file = ./id-no.age; + + services.openssh.extraConfig = /* sshclientconfig */ '' + HostKey ${config.secrets.id.path} + HostKey ${config.secrets.id-cull.path} + HostKey ${config.secrets.id-no.path} + ''; + networking.hostName = "pala"; users.users.pala = { diff --git a/hosts/pala/id-cull.age b/hosts/pala/id-cull.age new file mode 100644 index 0000000000000000000000000000000000000000..37684bb37dc17c2d634f88fc56b6a477cf9f7971 GIT binary patch literal 709 zcmYdHPt{G$OD?J`D9Oyv)5|YP*Do{V(zR14F3!+RO))YxHMCT4t}09l2vi8wE;S0z zbqkI32{aG#2+DRb4E3li4)!z-%k(QVbT9U-Dsj{<^^OY64&-tzH7(6E^v`z7smixZ z&G9YK4h+l;bab(F5BGMhNGmDx3^gy0a5N9pj>KVGRdI-;wv$_4rG9{aUa(QFtBJq2 zv!Pq1nOAACxuw2GSV3iFX=XuAQARmeWomX+aGJYYWPqbzhO2K*vYW9%W^zTMS3pE~ zcyeM`QL7 zPq1fNWKcmxrF$S(`txU|j!x58oR2LZk~9@_{89tu&IBJh?T&KLl#f}FHKnT zvhvux$h@PLZS!BJJwMdv7jZFU$uWHml@8W6%V}@KvZZb*)uz9zGfzG0b!3b0E7J+< z!$z^QeA(+r7GW2N$^{Z?!&q zt!{Sb;`zynGX1wSr*2VVoq6f#qv!>R20Y$ptQY>ztk`p|?a#-3<RjREcI%r3%IRMlw(XW@UbZi>g4Oiw@s?)2SKi&9MC7(l z)I58$f9<~*-R&#mrrB@@rG~Y0s-6p7e0if!OoCe5jbr*3jvear>7H|alEWSTw!Ck) z5o>!dU+6k5)fr>2F8X_S=yjd@g4%&XCjvmE qw|3@D>^AwzqO(D3wXW~<8FB`Sx8FWH6b zDDw(%%5-F8mziD8iS8AkTRH$JQ>$|>e$xgm?vbhD1s*7G;bl5Hv_xJZ&KW-sO z->ZRo?~Y&E;}p~KAx_;x>|gmVmrF<7FSjnM-Xa&ded5lO&$v|&trQIT@^1bG)4#9$ zcgE_;t1ew_^L|dq;s-pYr!xIF&G~Ke)5hV! z2c2bd7iCpg9~-i&-jcf~=pmvotHSQm9#J9ViE8$zrLSah&9qheV1Bq)vQj<3=VxT? zlpSx}HJa|o^qsBS^epQ~5I5cH@WP#1zw#gXzmVoDVfuOX!uA9GzV{vG1zuWUxLnY>x8bP0&#(IekHo!S zseg#zW1FU~z+kJlXx4;sZ<&tCyUiCpll=Vu+Aj?=mt%@yXD8$-OuN>$Ak8apb>YjO zr(I%yS*Uv4$XUf)XmM)(RNEDr=g!>NKXc}^1+z9LNSA)gIqz}Wec!`5SzDNvgvG2| r*#1#nnX_S;{)40G9~qp={`fbX|4^*y-FAKw`@~hJqGt7 literal 0 HcmV?d00001 diff --git a/hosts/pala/id.age b/hosts/pala/id.age new file mode 100644 index 0000000000000000000000000000000000000000..dd61a45b2c086de8ccf4413ec47ed086cf6ccfd0 GIT binary patch literal 709 zcmYdHPt{G$OD?J`D9Oyv)5|YP*Do{V(zR14F3!+RO))YxHMCT4t}09l2vo2P3b6D@ zEe&n~h|a`DMb&&Od~vVWjozH>xaRYpphiE*(T$@4dAjgKt?+U}P-NGP^?~O*{{6OLjB9hc^x#e2qRler!Xy@+jL@htHRfFTOgV)`=1rQf z@3khD2%GlUiUSYhLT_&MYzklUaQn>W7ta#?RX_UJpF6syp6jL6_Hf3caL?(SLa&-{ zn|HdN{3Z29@_L}JgpjbrjimGg(FS=LtUB@;nH;~nH|j}0{~Ez`J>%-xKgF^MyPc(u zd35z=iL)$qaLlbb9Dh1ZW9L^@@6Qvsrv&{MYnj|$^I`6hqw2AaKVM~+y*nFe6ng1$ z`emQVr=&EGm)&0{a_^aJMrslJ)5)QIOLzQkjhSR{2K1TM-|IKA4Z`hMDyGXPazD`o%y literal 0 HcmV?d00001 diff --git a/secrets.nix b/secrets.nix index e013ff2..1a8a8a2 100644 --- a/secrets.nix +++ b/secrets.nix @@ -1,5 +1,5 @@ let - inherit (import ./keys.nix) best disk nine admins all; + inherit (import ./keys.nix) admins all best disk nine pala; in { # best "hosts/best/id.age".publicKeys = [ best ] ++ admins; @@ -33,6 +33,11 @@ in { "hosts/nine/github2forgejo/environment.age".publicKeys = [ nine ] ++ admins; + # pala + "hosts/pala/id.age".publicKeys = [ pala ] ++ admins; + "hosts/pala/id-cull.age".publicKeys = [ pala ] ++ admins; + "hosts/pala/id-no.age".publicKeys = [ pala ] ++ admins; + # shared "modules/common/ssh/config.age".publicKeys = all; "modules/linux/restic/password.age".publicKeys = all;