felschr/nixos-config
1
1
Fork 0
Code Issues Pull requests Actions Packages Projects Releases Wiki Activity

fix(secrets): fix more permission issues

Browse source
This commit is contained in:
Felix Schröter 2022-05-06 15:48:57 +02:00
parent 557d744846
commit 867bd7d3de
Signed by: felschr
GPG key ID: 671E39E6744C807D
5 changed files with 5 additions and 8 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

8
rpi4.nix
View file

@ -32,11 +32,7 @@ in with builtins; {
./services/nextcloud.nix
];
age.secrets.cfdyndns = {
file = ./secrets/cfdyndns.age;
owner = "cfdyndns";
group = "cfdyndns";
};
age.secrets.cloudflare.file = ./secrets/cloudflare.age;
age.secrets.hostKey.file = ./secrets/home-server/hostKey.age;
nixpkgs.config.allowUnfree = true;
@ -70,7 +66,7 @@ in with builtins; {
use = "web";
zone = "felschr.com";
username = "felschr@pm.me";
passwordFile = config.age.secrets.cfdyndns.path;
passwordFile = config.age.secrets.cloudflare.path;
domains = [
"home.felschr.com"
"cloud.felschr.com"

0
secrets/cfdyndns.age → secrets/cloudflare.age
View file

2
secrets/secrets.nix
View file

@ -21,7 +21,7 @@ in {
"mqtt/tasmota.age".publicKeys = [ felschr home-pc home-server ];
"mqtt/owntracks.age".publicKeys = [ felschr home-pc home-server ];
"mqtt/owntracks-plain.age".publicKeys = [ felschr home-pc home-server ];
"cfdyndns.age".publicKeys = [ felschr home-pc home-server ];
"cloudflare.age".publicKeys = [ felschr home-pc home-server ];
"owntracks/htpasswd.age".publicKeys = [ felschr home-pc home-server ];
"etebase-server.age".publicKeys = [ felschr home-pc home-server ];
"miniflux.age".publicKeys = [ felschr home-pc home-server ];

2
services/home-assistant.nix
View file

@ -120,5 +120,7 @@ in {
age.secrets.hass-secrets = {
file = ../secrets/hass/secrets.age;
path = "/var/lib/hass/secrets.yaml";
owner = "hass";
group = "hass";
};
}

1
services/mosquitto.nix
View file

@ -9,7 +9,6 @@ let
mkSecret = file: {
inherit file;
owner = "mosquitto";
group = "mosquitto";
};
in {
age.secrets = {