Gonne/nixConfig
1
0
Fork 0
forked from Fachschaft/nixConfig
Code Pull requests Activity

renamed secret files so they are easier to shell glob

Browse source
This commit is contained in:
Dennis Frieberg 2025-03-05 21:05:37 +01:00
parent e5e3fab14d
commit 064aca1705
Signed by untrusted user: nerf
GPG key ID: 7C58AFED036072C5
12 changed files with 9 additions and 9 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

0
nixos/machines/bragi/backupKey.yaml → nixos/machines/bragi/backupKey.secrets.yaml
View file

2
nixos/machines/bragi/configuration.nix
View file

@ -14,7 +14,7 @@
system.stateVersion = "23.11";
sops.secrets.backupKey = {
sopsFile = ./backupKey.yaml;
sopsFile = ./backupKey.secrets.yaml;
owner = config.users.users.fsaccount.name;
inherit (config.users.users.fsaccount) group;
mode = "0400";

0
nixos/machines/lobon/allowlistPass.yaml → nixos/machines/lobon/allowlistPass.secrets.yaml
View file

0
nixos/machines/lobon/backupKey.yaml → nixos/machines/lobon/backupKey.secrets.yaml
View file

4
nixos/machines/lobon/configuration.nix
View file

@ -21,13 +21,13 @@
sops.secrets = {
allowlistPass = {
sopsFile = ./allowlistPass.yaml;
sopsFile = ./allowlistPass.secrets.yaml;
owner = "mailman";
group = "mailman";
mode = "0400";
};
backupKey = {
sopsFile = ./backupKey.yaml;
sopsFile = ./backupKey.secrets.yaml;
owner = "root";
group = "root";
mode = "0400";

0
nixos/machines/nyarlathotep/allowlistPass.yaml → nixos/machines/nyarlathotep/allowlistPass.secrets.yaml
View file

0
nixos/machines/nyarlathotep/backupKey.yaml → nixos/machines/nyarlathotep/backupKey.secrets.yaml
View file

12
nixos/machines/nyarlathotep/configuration.nix
View file

@ -43,7 +43,7 @@
sops.secrets = let
allowlistSops = {
sopsFile = ./allowlistPass.yaml;
sopsFile = ./allowlistPass.secrets.yaml;
owner = "stalwart-mail";
group = "stalwart-mail";
mode = "0400";
@ -56,32 +56,32 @@
"allowlistPass/koma" = allowlistSops;
# Virtual alias file
"mathebau.aliases" = {
sopsFile = ./mathebau.aliases.yaml;
sopsFile = ./mathebau.aliases.secrets.yaml;
owner = "stalwart-mail";
group = "stalwart-mail";
mode = "0440";
};
"mathechor.aliases" = {
sopsFile = ./mathechor.aliases.yaml;
sopsFile = ./mathechor.aliases.secrets.yaml;
owner = "stalwart-mail";
group = "stalwart-mail";
mode = "0440";
};
"koma.aliases" = {
sopsFile = ./koma.aliases.yaml;
sopsFile = ./koma.aliases.secrets.yaml;
owner = "stalwart-mail";
group = "stalwart-mail";
mode = "0440";
};
# password for https://stalw.art/docs/auth/authorization/administrator/#fallback-administrator encoded to be supplied in the basic auth header
stalwartAdmin = {
sopsFile = ./stalwartAdmin.yaml;
sopsFile = ./stalwartAdmin.secrets.yaml;
owner = "stalwart-mail";
group = "stalwart-mail";
mode = "0400";
};
backupKey = {
sopsFile = ./backupKey.yaml;
sopsFile = ./backupKey.secrets.yaml;
owner = "root";
group = "root";
mode = "0400";

0
nixos/machines/nyarlathotep/koma.aliases.yaml → nixos/machines/nyarlathotep/koma.aliases.secrets.yaml
View file

0
nixos/machines/nyarlathotep/mathebau.aliases.yaml → nixos/machines/nyarlathotep/mathebau.aliases.secrets.yaml
View file

0
nixos/machines/nyarlathotep/mathechor.aliases.yaml → nixos/machines/nyarlathotep/mathechor.aliases.secrets.yaml
View file

0
nixos/machines/nyarlathotep/stalwartAdmin.yaml → nixos/machines/nyarlathotep/stalwartAdmin.secrets.yaml
View file