infrastructure/hosts/phoenix.lewd.wtf/secrets.nix

25 lines
665 B
Nix
Raw Normal View History

2024-02-04 00:11:26 +00:00
{ config, ... }:
{
sops.age.sshKeyPaths = [ "/etc/ssh/ssh_host_ed25519_key" ];
2024-02-04 18:34:52 +00:00
# MSMTP
2024-02-04 00:11:26 +00:00
sops.secrets."services/msmtp/password" = {
mode = "0777";
sopsFile = ./secrets/msmtp.yaml;
};
2024-02-04 18:34:52 +00:00
# Wireguard
sops.secrets."services/wireguard/airvpn.private" = {
mode = "0400";
owner = config.users.users.systemd-network.name;
group = config.users.users.systemd-network.group;
2024-02-04 18:34:52 +00:00
sopsFile = ./secrets/wireguard.yaml;
};
sops.secrets."services/wireguard/airvpn.psk" = {
mode = "0400";
owner = config.users.users.systemd-network.name;
group = config.users.users.systemd-network.group;
2024-02-04 18:34:52 +00:00
sopsFile = ./secrets/wireguard.yaml;
};
2024-02-04 00:11:26 +00:00
}