feat: non-working ehex VPN

secrets/secrets.nix

@@ -52,6 +52,9 @@ in {
 
   "cat-test.ovpn.age".publicKeys = biolimoKeys ++ chocolatebarKeys ++ baseKeys;
 
+  "ehex.ovpn.age".publicKeys = biolimoKeys ++ chocolatebarKeys ++ baseKeys;
+  "ehex-vpn.creds.age".publicKeys = biolimoKeys ++ chocolatebarKeys ++ baseKeys;
+
   "firefly-secrets.env.age".publicKeys = pieKeys ++ baseKeys;
   "firefly-db-secrets.env.age".publicKeys = pieKeys ++ baseKeys;
   "firefly-importer-secrets.env.age".publicKeys = pieKeys ++ baseKeys;

users/b12f/default.nix

@@ -12,6 +12,7 @@ in {
     ./home.nix
     ./session-variables.nix
     ./concepts-and-training.nix
+    ./ehex.nix
     ./email
   ];
 

users/b12f/ehex.nix

@@ -0,0 +1,33 @@
+{
+  config,
+  pkgs,
+  lib,
+  flake,
+  ...
+}:
+with lib; let
+  psCfg = config.pub-solar;
+  xdg = config.home-manager.users."${psCfg.user.name}".xdg;
+  tmpConfigDir = "/tmp/ovpn/ehex";
+  tmpConfigFile = "${tmpConfigDir}/conf.ovpn";
+in {
+  age.secrets."ehex.ovpn" = {
+    file = "${flake.self}/secrets/cat-test.ovpn.age";
+    mode = "400";
+  };
+
+  age.secrets."ehex-vpn.creds" = {
+    file = "${flake.self}/secrets/ehex-vpn.creds.age";
+    mode = "400";
+  };
+
+  services.openvpn.servers = {
+    ehexVPN = {
+      autoStart = false;
+      config = ''
+        config ${config.age.secrets."ehex.ovpn".path}
+        # auth-user-pass ${config.age.secrets."ehex-vpn.creds".path}
+      '';
+    };
+  };
+}