cullmann/nixos
1
0
Fork 0
Code Issues Pull requests Actions Packages Projects Releases Wiki Activity

move secret stuff in own dir

Browse source
This commit is contained in:
Christoph Cullmann 2024-09-01 17:38:06 +02:00
parent f640e44fd5
commit 0b8bd0acc1
No known key found for this signature in database
3 changed files with 4 additions and 4 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

2
.gitignore vendored
View file

@ -1,2 +1,2 @@
/secret/
*.secret

2
share/common.nix
View file

@ -488,7 +488,7 @@ in
mode = "0400";
};
environment.etc."mail/secrets" = {
text = builtins.readFile "/nix/data/nixos/mail.secret";
text = builtins.readFile "/nix/data/nixos/secret/mail.secret";
mode = "0400";
};

4
share/users.nix
View file

@ -23,10 +23,10 @@ in
users.root = {
# init password
hashedPassword = builtins.readFile "/nix/data/nixos/password.secret";
hashedPassword = builtins.readFile "/nix/data/nixos/secret/password.secret";
# use fixed auth keys
openssh.authorizedKeys.keys = pkgs.lib.splitString "\n" (builtins.readFile "/nix/data/nixos/authorized_keys.secret");
openssh.authorizedKeys.keys = pkgs.lib.splitString "\n" (builtins.readFile "/nix/data/nixos/secret/authorized_keys.secret");
};
#