teutat3s/os
1
0
Fork 0
forked from pub-solar/os
Code Pull requests Activity

agenix: init environment-secrets

Browse source
This commit is contained in:
teutat3s 2021-10-24 01:14:04 +02:00
parent f2d20739e0
commit 3bb6c8bc66
Signed by: teutat3s
GPG key ID: 4FA1D3FA524F22C1
5 changed files with 10 additions and 3 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

9
hosts/dumpyourvms/dumpyourvms.nix
View file

@ -1,4 +1,4 @@
{ config, pkgs, lib, ... }:
{ config, pkgs, lib, self, ... }:
with lib;
let
psCfg = config.pub-solar;
@ -10,7 +10,12 @@ in
];
config = {
pub-solar.x-os.keyfile = "/etc/nixos/hosts/dumpyourvms/secrets/keyfile.bin";
age.secrets.environment-secrets = {
file = "${self}/secrets/environment-secrets.age";
mode = "700";
owner = "teutat3s";
};
pub-solar.virtualisation.enable = true;
# fix backlight for keyboard and brightness, adjust function key binding

BIN
secrets/environment-secrets.age Executable file
View file

Binary file not shown.

1
secrets/secrets.nix
View file

@ -6,4 +6,5 @@ let
in
{
"example-secret.age".publicKeys = allKeys;
"environment-secrets.age".publicKeys = allKeys;
}

2
users/teutat3s/session-variables.nix
View file

@ -6,7 +6,7 @@ in
{
home-manager = pkgs.lib.setAttrByPath [ "users" psCfg.user.name ] {
home.sessionVariables = {
DRONE_SERVER = "https://drone.greenbaum.cloud";
DRONE_SERVER = "https://ci.b12f.io";
};
};
}

1
users/teutat3s/zshrc.nix
View file

@ -83,4 +83,5 @@ pkgs:
complete -o nospace -C ${pkgs.waypoint}/bin/waypoint waypoint
complete -C '${pkgs.awscli2}/bin/aws_completer' ${pkgs.awscli2}/bin/aws
source /run/secrets/environment-secrets
''