diff options
| author | Freya Murphy <freya@freyacat.org> | 2025-06-21 22:33:33 -0400 |
|---|---|---|
| committer | Freya Murphy <freya@freyacat.org> | 2025-06-21 22:33:33 -0400 |
| commit | b8c3752242ba2362a875dba555ff2527043bfe66 (patch) | |
| tree | 8e6c0758546c262c22e04acc1913b0e1ac8ec5c9 /programs | |
| parent | run wl-clip-persist (diff) | |
| download | dotfiles-nix-b8c3752242ba2362a875dba555ff2527043bfe66.tar.gz dotfiles-nix-b8c3752242ba2362a875dba555ff2527043bfe66.tar.bz2 dotfiles-nix-b8c3752242ba2362a875dba555ff2527043bfe66.zip | |
move shiniji wireguard secretes to only shinji host (refactor hosts)
Diffstat (limited to 'programs')
| -rw-r--r-- | programs/default.nix | 2 | ||||
| -rw-r--r-- | programs/sops/default.nix | 30 | ||||
| -rw-r--r-- | programs/wireguard/default.nix | 39 |
3 files changed, 0 insertions, 71 deletions
diff --git a/programs/default.nix b/programs/default.nix index 1196899..692113e 100644 --- a/programs/default.nix +++ b/programs/default.nix @@ -8,7 +8,6 @@ ./kitty ./mako ./neovim - ./sops ./ssh ./starship ./steam @@ -16,7 +15,6 @@ ./tmux ./unofficial-homestuck-collection ./waybar - ./wireguard ./wofi ./zsh ]; diff --git a/programs/sops/default.nix b/programs/sops/default.nix deleted file mode 100644 index e5b3e6f..0000000 --- a/programs/sops/default.nix +++ /dev/null @@ -1,30 +0,0 @@ -{ - config, - pkgs, - inputs, - ... -}: let - isEd25519 = k: k.type == "ed25519"; - getKeyPath = k: k.path; - keys = builtins.filter isEd25519 config.services.openssh.hostKeys; -in { - imports = [ - inputs.sops-nix.nixosModules.sops - ]; - - environment.systemPackages = with pkgs; [ - sops - ]; - - sops = { - defaultSopsFile = ../../secrets.yaml; - - gnupg.home = config.homePath + "/.gnupg"; - gnupg.sshKeyPaths = []; - - secrets = { - freyanetWg = {}; - tinternetWg = {}; - }; - }; -} diff --git a/programs/wireguard/default.nix b/programs/wireguard/default.nix deleted file mode 100644 index 13669b3..0000000 --- a/programs/wireguard/default.nix +++ /dev/null @@ -1,39 +0,0 @@ -{ - config, - pkgs, - ... -}: { - environment.systemPackages = with pkgs; [ - wireguard-tools - ]; - - networking.wg-quick.interfaces = { - freyanet = { - address = ["10.2.0.2/32" "fd:cafe:dead:bee::2/128" "fe80::2/128"]; - dns = ["10.3.0.138"]; - privateKeyFile = config.sops.secrets.freyanetWg.path; - - peers = [ - { - publicKey = "x0ykwakpYCvI/pG+nR83lNUyeOE9m54thnX3bvZ+FUk="; - allowedIPs = ["10.0.0.0/14" "fd:cafe::/32"]; - endpoint = "cid.freya.cat:3000"; - persistentKeepalive = 25; - } - ]; - }; - - #tinternet = { - # address = [ "69.0.0.2/32" "cafe::2/128" "fe80::2/128" ]; - # dns = [ "1.1.1.1" ]; - # privateKeyFile = config.sops.secrets.tinternetWg.path; - - # peers = [{ - # publicKey = "8Ice49Yc7N75OYJW59ohDbfUjgrkwIuGWKWocJQGgzI="; - # allowedIPs = [ "0.0.0.0/0" "::/0" ]; - # endpoint = "freya.cat:51282"; - # persistentKeepalive = 25; - # }]; - #}; - }; -} |