diff options
| author | Fuwn <[email protected]> | 2024-10-09 15:58:15 -0700 |
|---|---|---|
| committer | Fuwn <[email protected]> | 2024-10-09 15:58:15 -0700 |
| commit | 9710259a08b205ff941c23b53792283426f4bbc6 (patch) | |
| tree | 5e117fd6b575c8b8660cc13f6a4b2a35e7b0199d /modules/server | |
| parent | september: disallow mastogem (diff) | |
| download | nixos-config-9710259a08b205ff941c23b53792283426f4bbc6.tar.xz nixos-config-9710259a08b205ff941c23b53792283426f4bbc6.zip | |
tor: declare fuwnme onion secret key
Diffstat (limited to 'modules/server')
| -rw-r--r-- | modules/server/networking/tor.nix | 2 | ||||
| -rw-r--r-- | modules/server/sops.nix | 5 |
2 files changed, 7 insertions, 0 deletions
diff --git a/modules/server/networking/tor.nix b/modules/server/networking/tor.nix index 05e7fb7..ab3dc9f 100644 --- a/modules/server/networking/tor.nix +++ b/modules/server/networking/tor.nix @@ -1,3 +1,4 @@ +{ config, ... }: { services = { caddy.virtualHosts."fuwnme4wbs5x36jjf2usedw2zscozwhazykhyfkjsmudtb7egs3mb7yd.onion".extraConfig = "reverse_proxy localhost:8084"; @@ -9,6 +10,7 @@ relay.onionServices = { "fuwn.me" = { version = 3; + secretKey = config.sops.secrets."fuwnme_onion_secret_key".path; map = [ { diff --git a/modules/server/sops.nix b/modules/server/sops.nix index 8c2549a..a2b5e78 100644 --- a/modules/server/sops.nix +++ b/modules/server/sops.nix @@ -9,6 +9,11 @@ tailscale_authentication_key = { }; finnhub_token = { }; caddy_environment_file = { }; + + fuwnme_onion_secret_key = { + format = "binary"; + sopsFile = "${self}/secrets/fuwnme_hs_ed25519_secret_key.bin"; + }; }; }; } |