wireguard: initial setup
This commit is contained in:
parent
35563b1b07
commit
c60728e7aa
10 changed files with 99 additions and 4 deletions
19
secrets.nix
Normal file
19
secrets.nix
Normal file
|
|
@ -0,0 +1,19 @@
|
|||
let
|
||||
keys = import ./keys.nix;
|
||||
|
||||
commonKeys = keys.users.qenya;
|
||||
|
||||
secrets = with keys; {
|
||||
wireguard-hub = [ machines.orm ];
|
||||
wireguard-peer-orm = [ machines.orm ];
|
||||
wireguard-peer-tohru = [ machines.tohru ];
|
||||
};
|
||||
in
|
||||
builtins.listToAttrs (
|
||||
map
|
||||
(secretName: {
|
||||
name = "secrets/${secretName}.age";
|
||||
value.publicKeys = secrets."${secretName}" ++ commonKeys;
|
||||
})
|
||||
(builtins.attrNames secrets)
|
||||
)
|
||||
Loading…
Add table
Add a link
Reference in a new issue