luj/snowfield
1
0
Fork 0
mirror of https://github.com/JulienMalka/snowfield.git synced 2025-06-08 10:09:04 +02:00
Code Issues Projects Releases Packages Wiki Activity Actions

Lot of changes, playing with ssh keys

Browse source
This commit is contained in:
Julien Malka 2021-12-28 16:42:30 +01:00
parent 920ac9efc4
commit 6096bc5515
No known key found for this signature in database
GPG key ID: 3C68E13964FEA07F
13 changed files with 168 additions and 17 deletions
Download patch file Download diff file Expand all files Collapse all files

16
modules/drone/default.nix
View file

@ -29,6 +29,22 @@ in
sops.secrets.drone = { };
sops.secrets.ssh-drone-pub = {
owner = drone;
path = "/home/drone/.ssh/id_ed25519.pub";
mode = "0644";
format = "binary";
sopsFile = ../../secrets/ssh-drone-pub;
};
sops.secrets.ssh-drone-priv = {
owner = drone;
path = "/home/drone/.ssh/id_ed25519";
mode = "0600";
format = "binary";
sopsFile = ../../secrets/ssh-drone-priv;
};
systemd.services.drone-server = {
wantedBy = [ "multi-user.target" ];

1
modules/nix/default.nix
View file

@ -20,6 +20,7 @@ with lib;
package = pkgs.nixUnstable;
extraOptions = ''
experimental-features = nix-command flakes
narinfo-cache-negative-ttl = 0
'';
nixPath = [
"nixpkgs=${inputs.nixpkgs}"