Include fwknop into CaT VPN config

2023-05-05 14:17:14 +02:00 · 2023-05-05 14:17:14 +02:00 · 5aa65b766f
parent ad1a6db3a8
commit 5aa65b766f
2 changed files with 3 additions and 4 deletions
--- a/modules/devops/default.nix
+++ b/modules/devops/default.nix
@ -16,7 +16,6 @@ in {
    home-manager = with pkgs;
      pkgs.lib.setAttrByPath ["users" psCfg.user.name] {
        home.packages = [
          fwknop
          croc
          drone-cli
          nmap
--- a/users/ben/concepts-and-training.nix
+++ b/users/ben/concepts-and-training.nix
@ -17,17 +17,17 @@ in {
  age.secrets.".fwknoprc" = {
    file = "${self}/secrets/.fwknoprc";
    path = "${config.users.users."${psCfg.user.name}".home}/.fwknoprc";
    mode = "600";
    owner = psCfg.user.name;
  };
  services.openvpn.servers = {
    catVPN = {
-      config = ''config /run/agenix/cat-test.ovpn '';
+      config = ''config ${config.age.secrets."cat-test.ovpn".path}'';
    };
  };
  systemd.services.openvpn-catVPN.serviceConfig.ExecStartPre = "${pkgs.fwknop}/bin/fwknop --rc-file=${config.age.secrets.".fwknoprc".path} --no-save-args --no-home-dir --save-args-file=/dev/null -n hetzner_test_cloud --wget-cmd=${pkgs.wget}/bin/wget";
  home-manager = pkgs.lib.setAttrByPath ["users" psCfg.user.name] {
    programs.ssh = {
      matchBlocks = {