kat/nixfiles
1
0
Fork 0
mirror of https://github.com/kittywitch/nixfiles.git synced 2026-02-09 12:29:19 -08:00
Code Issues Projects Releases Packages Wiki Activity

[SECRETS] Now functional!

Browse source
This commit is contained in:
Kat Inskip 2023-04-25 15:32:24 -07:00
parent aa266cc383
commit a1f1dee6a1
Signed by: kat
GPG key ID: 465E64DECEA8CF0F
11 changed files with 274 additions and 19 deletions
Download patch file Download diff file Expand all files Collapse all files

13
systems/default.nix
View file

@ -95,13 +95,12 @@
nixos = sys args;
in
nixos.extendModules {
modules = [
({lib, ...}: {
scalpel.trafos = lib.mkForce {};
})
inputs.scalpel.nixosModules.scalpel
];
specialArgs = {prev = sys;};
modules =
nixos.config.scalpels
++ [
inputs.scalpel.nixosModules.scalpel
];
specialArgs = {prev = nixos;};
};
darwin = inputs.darwin.lib.darwinSystem;
macos = inputs.darwin.lib.darwinSystem;

35
systems/yukari.nix
View file

@ -5,10 +5,15 @@ _: let
modulesPath,
...
}: {
imports = with tree.nixos; [
roles.server
(modulesPath + "/profiles/qemu-guest.nix")
];
imports =
[
(modulesPath + "/profiles/qemu-guest.nix")
]
++ (with tree.nixos.roles; [
server
web-server
matrix-server
]);
boot = {
loader.grub = {
@ -31,9 +36,27 @@ _: let
swapDevices = [];
networking.interfaces.enp1s0.useDHCP = lib.mkDefault true;
networking = {
hostName = "yukari";
domain = "gensokyo.zone";
interfaces = {
enp1s0 = {
useDHCP = lib.mkDefault true;
ipv6.addresses = [
{
address = "2a01:4ff:1f0:e7bb::1";
prefixLength = 64;
}
];
};
};
defaultGateway6 = {
address = "fe80::1";
interface = "enp1s0";
};
};
networking.hostName = "yukari";
sops.defaultSopsFile = ./yukari.yaml;
system.stateVersion = "23.05";
};

42
systems/yukari.yaml Normal file
View file

@ -0,0 +1,42 @@
empty: ENC[AES256_GCM,data:fOxiDBM=,iv:W1Vjl8v7HJcoiP61x+HJh/ES1Mrk5RqWUvdg8h5xZU8=,tag:WLIBKXm7L62/SwyzitEwMQ==,type:str]
sops:
shamir_threshold: 1
kms: []
gcp_kms: []
azure_kv: []
hc_vault: []
age:
- recipient: age1n4kdchmkk3rfkaknxhveqr2ftprdpgwckutt23y6u8639lazzuks77tgav
enc: |
-----BEGIN AGE ENCRYPTED FILE-----
YWdlLWVuY3J5cHRpb24ub3JnL3YxCi0+IFgyNTUxOSBRd2trdFFYdWV6VDFUWHcx
a01PLzJVZkc1Z0I2TDhXQTExWFhWZXRodTA4ClEvWUEyZlZPSStneDNkM1g2ZmZZ
UlJGMlFGOW9iMTBxT2ZLcnVvZjZvNk0KLS0tIENsVWxBMFpFUzhyT0MwRnM0LzYv
ZjFvaGp1dmtNNzFpSVVEVDZYM29rdDgKZRPrP2Jl8I5eYae1iKiVRZN+leUEHWyO
TXXpwcoovbMnWKxYaYnx1EvT436WXVhro5Ba99XENz0tXAabDLFKJg==
-----END AGE ENCRYPTED FILE-----
lastmodified: "2023-04-25T21:41:19Z"
mac: ENC[AES256_GCM,data:psGeLVDyVzpH92Xb0L1E0YdM3b2H3LyiYnIacpIySote6pzwsiYJ8Kdq2AKmG2Dh+mS9b83K2zANebQt7ueyHKcdL0V28/8Lhu1GCZPeHneRD9LhijX3sDv2c3RMwZ1rwpLoZZPRH+TNgoylkfAfToj7EZrxv9/dOoJwivttt2M=,iv:duU1ohNy4PYWgak5S66Z/H205VxuLAfpCHoL5onPyD0=,tag:BWfuv4SHneB3meZM5QWT6A==,type:str]
pgp:
- created_at: "2023-04-25T21:49:07Z"
enc: |
-----BEGIN PGP MESSAGE-----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=ZUXh
-----END PGP MESSAGE-----
fp: CD8CE78CB0B3BDD4
unencrypted_suffix: _unencrypted
version: 3.7.3