xyno/nix-configs
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

meow

Browse source
This commit is contained in:
Lucy Hochkamp 2024-04-02 15:34:03 +02:00
parent 37fdae42d2
commit 9ef6e78e2d
No known key found for this signature in database
2 changed files with 25 additions and 19 deletions
Download patch file Download diff file Expand all files Collapse all files

20
hosts/picard/default.nix
View file

@ -11,6 +11,7 @@
./hardware-configuration.nix ./hardware-configuration.nix
./xynospace-matrix.nix ./xynospace-matrix.nix
./plausible.nix ./plausible.nix
./ts-ovpn.nix
../../nixos-modules/system/persist.nix ../../nixos-modules/system/persist.nix
../../nixos-modules/system/agenix.nix ../../nixos-modules/system/agenix.nix
@ -24,7 +25,6 @@
../../nixos-modules/services/authelia.nix ../../nixos-modules/services/authelia.nix
../../nixos-modules/services/hedgedoc.nix ../../nixos-modules/services/hedgedoc.nix
../../nixos-modules/services/ts3.nix ../../nixos-modules/services/ts3.nix
../../nixos-modules/services/tailscale-openvpn.nix
../../nixos-modules/user ../../nixos-modules/user
]; ];
@ -264,14 +264,6 @@
}; };
ragon = { ragon = {
agenix.secrets."ovpnNl" = { };
agenix.secrets."ovpnDe" = { };
agenix.secrets."ovpnTu" = { };
agenix.secrets."ovpnCrt1" = { };
agenix.secrets."ovpnPw1" = { };
agenix.secrets."ovpnPw2" = { };
agenix.secrets."tailscaleKey" = { };
user.enable = true; user.enable = true;
persist.enable = true; persist.enable = true;
persist.extraDirectories = [ "/var/lib/nixos-containers" "/srv/www" config.services.caddy.dataDir "/var/lib/syncthing" "/var/lib/${config.services.xynoblog.stateDirectory}" "/var/lib/postgresql" config.services.forgejo.stateDir ]; persist.extraDirectories = [ "/var/lib/nixos-containers" "/srv/www" config.services.caddy.dataDir "/var/lib/syncthing" "/var/lib/${config.services.xynoblog.stateDirectory}" "/var/lib/postgresql" config.services.forgejo.stateDir ];
@ -285,16 +277,6 @@
hedgedoc.enable = true; hedgedoc.enable = true;
authelia.enable = true; authelia.enable = true;
ts3.enable = true; ts3.enable = true;
tailscale-openvpn = {
enable = true;
tsAuthKey = config.age.secrets.tailscaleKey.path;
config = {
nl = config.age.secrets.ovpnNl.path;
de = config.age.secrets.ovpnDe.path;
tu = config.age.secrets.ovpnTu.path;
};
};
}; };
}; };

24
hosts/picard/ts-ovpn.nix Normal file
View file

@ -0,0 +1,24 @@
{ config, pkgs, options, ... }: {
imports = [
../../nixos-modules/services/tailscale-openvpn.nix
../../nixos-modules/system/agenix.nix
];
ragon = {
agenix.secrets."ovpnNl" = { };
agenix.secrets."ovpnDe" = { };
agenix.secrets."ovpnTu" = { };
agenix.secrets."ovpnCrt1" = { };
agenix.secrets."ovpnPw1" = { };
agenix.secrets."ovpnPw2" = { };
agenix.secrets."tailscaleKey" = { };
services.tailscale-openvpn = {
enable = true;
tsAuthKey = config.age.secrets.tailscaleKey.path;
config = {
nl = config.age.secrets.ovpnNl.path;
de = config.age.secrets.ovpnDe.path;
tu = config.age.secrets.ovpnTu.path;
};
};
};
}