RGBCube/ncc
1
Fork 0
mirror of https://github.com/RGBCube/ncc synced 2025-07-30 11:37:44 +00:00
Code Issues Activity

Use agenix

Browse source
This commit is contained in:
RGBCube 2024-01-10 14:38:49 +03:00
parent 63a70bd318
commit 722114295c
No known key found for this signature in database
16 changed files with 188 additions and 25 deletions
Download patch file Download diff file Expand all files Collapse all files

4
hosts/cube/acme.nix
View file

@ -1,11 +1,11 @@
{ ulib, ... }: with ulib;
{ config, ulib, ... }: with ulib;
serverSystemConfiguration {
security.acme = {
acceptTerms = true;
defaults = {
credentialsFile = "/home/cube/.credentials/acme";
credentialsFile = config.age.secrets.acme.path;
dnsProvider = "cloudflare";
dnsResolver = "1.1.1.1";
email = "rgbsphere@gmail.com";

11
hosts/cube/default.nix
View file

@ -1,18 +1,19 @@
{ ulib, ... }: with ulib; merge
{ config, ulib, keys, ... }: with ulib; merge
(let
rgbKey = "ssh-rsa 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 nixos@enka";
in systemConfiguration {
(systemConfiguration {
system.stateVersion = "23.05";
nixpkgs.hostPlatform = "x86_64-linux";
time.timeZone = "Europe/Amsterdam";
users.users.root.passwordFile = config.age.secrets."cube.password".path;
users.users.rgb = normalUser {
description = "RGB";
extraGroups = [ "wheel" ];
openssh.authorizedKeys.keys = [ rgbKey ];
openssh.authorizedKeys.keys = [ keys.rgbcube ];
passwordFile = config.age.secrets."cube.password".path;
};
})

6
hosts/enka/default.nix
View file

@ -1,4 +1,4 @@
{ ulib, ... }: with ulib; merge
{ config, ulib, ... }: with ulib; merge
(systemConfiguration {
system.stateVersion = "23.05";
@ -7,14 +7,18 @@
time.timeZone = "Europe/Istanbul";
users.users.root.passwordFile = config.age.secrets."enka.said.password".path;
users.users.said = graphicalUser {
description = "Said";
extraGroups = [ "wheel" ];
passwordFile = config.age.secrets."enka.said.password".path;
uid = 1000;
};
users.users.orhan = graphicalUser {
description = "Orhan";
passwordFile = builtins.trace (config.age.secrets) config.age.secrets."enka.orhan.password".path;
uid = 1001;
};