summaryrefslogtreecommitdiff
diff options
context:
space:
mode:
Diffstat
-rw-r--r--modules/server/sops.nix1
-rw-r--r--modules/server/systemd.nix4
-rw-r--r--secrets/himeji.yamlbin1947 -> 2169 bytes
-rw-r--r--secrets/secrets.tomlbin1751 -> 1656 bytes
4 files changed, 3 insertions, 2 deletions
diff --git a/modules/server/sops.nix b/modules/server/sops.nix
index 186ec3e..3acae0d 100644
--- a/modules/server/sops.nix
+++ b/modules/server/sops.nix
@@ -6,6 +6,7 @@
secrets = {
"ghcr/user" = { };
"ghcr/password" = { };
+ tailscale_authentication_key = { };
};
};
}
diff --git a/modules/server/systemd.nix b/modules/server/systemd.nix
index 3ad7f06..1ffc1ce 100644
--- a/modules/server/systemd.nix
+++ b/modules/server/systemd.nix
@@ -1,4 +1,4 @@
-{ secrets, ... }:
+{ config, ... }:
{
systemd.services.tailscale-up = {
after = [ "tailscaled.service" ];
@@ -6,7 +6,7 @@
wantedBy = [ "multi-user.target" ];
serviceConfig = {
- ExecStart = "/run/current-system/sw/bin/tailscale up --authkey ${secrets.tailscale_authentication_key}";
+ ExecStart = "/run/current-system/sw/bin/tailscale up --authkey ${config.sops.secrets.tailscale_authentication_key.path}";
Restart = "on-failure";
};
};
diff --git a/secrets/himeji.yaml b/secrets/himeji.yaml
index 9aa6b68..03664d1 100644
--- a/secrets/himeji.yaml
+++ b/secrets/himeji.yaml
Binary files differ
diff --git a/secrets/secrets.toml b/secrets/secrets.toml
index ce51e0d..0be4cd0 100644
--- a/secrets/secrets.toml
+++ b/secrets/secrets.toml
Binary files differ
generated by cgit v1.2.3 (git 2.25.1) at 2026-06-06 18:34:48 +0000