Daholli/nixos-config
1
0
Fork 0
Code Issues 3 Pull requests Releases Packages Activity Actions

loptland: more sops configuration

Browse source
This commit is contained in:
Christoph Hollizeck 2024-11-06 16:57:10 +01:00
parent 84191e0192
commit c84aa6e7ae
WARNING! Although there is a key with this ID in the database it does not verify this commit! This commit is SUSPICIOUS.
GPG key ID: 1763BB530F50279E
2 changed files with 27 additions and 4 deletions
Download patch file Download diff file Expand all files Collapse all files

22
systems/x86_64-linux/loptland/default.nix
View file

@ -1,4 +1,5 @@
{
config,
lib,
namespace,
pkgs,
@ -6,12 +7,24 @@
}:
let
inherit (lib.${namespace}) enabled;
sopsFile = lib.snowfall.fs.get-file "secrets/secrets-loptland.yaml";
in
{
imports = [ ./hardware.nix ];
environment.systemPackages = [ pkgs.forgejo-cli ];
sops.secrets = {
domain = {
inherit sopsFile;
};
forgejo_db_password = {
inherit sopsFile;
};
};
services.openssh = {
enable = true;
settings = {
@ -23,6 +36,13 @@ in
services.forgejo = {
enable = true;
lfs.enable = true;
database = {
passwordFile = config.sops.secrets.forgejo_db_password.path;
};
# settings = {
# server.DOMAIN = config.sops.secrets.domain;
# };
};
${namespace} = {
@ -33,7 +53,7 @@ in
services = {
factorio-server = {
enable = true;
sopsFile = lib.snowfall.fs.get-file "secrets/secrets-loptland.yaml";
inherit sopsFile;
};
};