properly set up retiolum

Update facts/secrets for service tinc_retiolum in machine cherry
2024-06-11 13:44:14 +02:00 · 2024-06-11 13:42:19 +02:00
5 changed files with 44 additions and 1 deletions
--- a/flake.nix
+++ b/flake.nix
@ -360,9 +360,10 @@
            host = "cherry.bear";
            modules = [
              nixos-hardware.nixosModules.framework-13th-gen-intel
+              retiolum.nixosModules.retiolum
+              private_assets.nixosModules.yubikey
              homeManagerModules
              stylixModules
-              private_assets.nixosModules.yubikey
              { home-manager.users.mainUser.gui.enable = true; }
              {
                home-manager.users.mainUser = import ./homes/palo;
--- a/machines/cherry/configuration.nix
+++ b/machines/cherry/configuration.nix
@ -12,6 +12,7 @@
    ./qemu.nix

    ./network-tinc.nix
+    ./network-tinc_retiolum.nix
    ./network-wireguard.nix

    ./37c3.nix
--- a/machines/cherry/facts/tinc.retiolum.ed25519_key.pub
+++ b/machines/cherry/facts/tinc.retiolum.ed25519_key.pub
@ -0,0 +1 @@
+QvtcXLmAviX/uv0FPrFak1WV+U2WwyO5dGciRlPB2lG
--- a/machines/cherry/facts/tinc.retiolum.rsa_key.pub
+++ b/machines/cherry/facts/tinc.retiolum.rsa_key.pub
@ -0,0 +1,13 @@
+-----BEGIN RSA PUBLIC KEY-----
+MIICCgKCAgEAuDU2RZX+Hwa0sI/ZjnPd/gBLFs/KsS8SE18GEB8X/EH5D11qvRGi
+myAYbHdx5hWbFuJ6GyUL/k99y0vV3VI+IGLyZ3FmVUdPF5fK495+qas68GzBMwhw
+FilessbI1UvBjUITIpVibDW4jSt5ex5SeGSm7ZGpamVFNe442SYgL48V5B3nDRrf
+jdfwxXuBW5iYi7wxuUncfVkFHrh/HNhOQhqHDhWIlgckymsGMszz0sPNfZZOVw8g
+7OA0c4Pduc140icyTaNQzNQZ4KipeZpjUXWn2oGP9ZIb3AiB07BZv3b2x6NrHucW
+vWKtRkpBOMtYrIhVSuGE3MYHSCxrCR+e4moeeTUjpI5hPe9qtRwagKgchq3sxwWq
+p1FfT3zEjZKT2tYRu3w/DWgOize+HvF8GDFTNAcp6APUsyE3mTJkpgsAfG8Lkq+f
+RbrtEOqqqwKCz7IgJDnRSVHlaLP8v3LarhTVIqCkgveyd7wd9bh8fvpWc8fdnWXw
+WnIOj+KFxLIGr2xReRPbfi9SRnwTtt0E+oXEPC2tUrcWXGNMeiBmVUGH66pRnFP
+wzMBn1q4GzqlG2TVsbXL6Nbzw8caDKH3MGPUUxikJXUODk7PtnQ9TThlsg8xdMGr
+JCrPwL32VNXwXhxJ9vgxaXIfxIanye45j8lxwdnMkx5laULGWVq53bECAwEAAQ==
+-----END RSA PUBLIC KEY-----
--- a/machines/cherry/network-tinc_retiolum.nix
+++ b/machines/cherry/network-tinc_retiolum.nix
@ -0,0 +1,27 @@
+{ config, factsGenerator, ... }:
+{
+
+  clanCore.facts.services.tinc_retiolum = factsGenerator.tinc { name = "retiolum"; };
+
+  networking.retiolum.port = 720;
+  networking.retiolum.nodename = "cherry";
+
+  services.tinc.networks.retiolum = {
+    ed25519PrivateKeyFile = config.clanCore.facts.services.tinc_retiolum.secret."tinc.retiolum.ed25519_key.priv".path;
+    rsaPrivateKeyFile = config.clanCore.facts.services.tinc_retiolum.secret."tinc.retiolum.rsa_key.priv".path;
+  };
+
+  #fileSystems."/retiolum/sicily" = {
+  #  device = "//sicily.r/tonne";
+  #  fsType = "cifs";
+  #  options = [
+  #    "guest"
+  #    "nofail"
+  #    "noauto"
+  #    "ro"
+  #    "rsize=16777216"
+  #    "cache=loose"
+  #    "x-systemd.after=network.target"
+  #  ];
+  #};
+}
Author	SHA1	Message	Date
Ingolf Wagner	c16df33d29	properly set up retiolum	2024-06-11 13:44:14 +02:00
Ingolf Wagner	eef2f2bb8b	Update facts/secrets for service tinc_retiolum in machine cherry	2024-06-11 13:42:19 +02:00