From 3f3b3d06048bc82767180f38e86bb4091ebe66e4 Mon Sep 17 00:00:00 2001 From: Giulio De Pasquale Date: Fri, 6 Dec 2024 20:55:44 +0000 Subject: [PATCH] refactor(teslamate.nix): update secrets file path and add age secret configuration --- hosts/architect/teslamate.nix | 7 ++++++- secrets/secrets.nix | 3 ++- secrets/teslamate.age | Bin 0 -> 331 bytes 3 files changed, 8 insertions(+), 2 deletions(-) create mode 100644 secrets/teslamate.age diff --git a/hosts/architect/teslamate.nix b/hosts/architect/teslamate.nix index ac83bec..b054ea7 100644 --- a/hosts/architect/teslamate.nix +++ b/hosts/architect/teslamate.nix @@ -8,6 +8,11 @@ let allowWAN = false; in { + age.secrets.teslamate = { + file = ../../secrets/teslamate.age; + owner = "teslamate"; + }; + architect.vhost.${domain} = with config.architect.networks; { dnsInterfaces = [ "lan" "tailscale" ]; locations = { @@ -43,7 +48,7 @@ in port = teslamatePort; listenAddress = "127.0.0.1"; - secretsFile = "/secrets/teslamate/teslamate.env"; + secretsFile = config.age.secrets.teslamate.path; virtualHost = domain; postgres.enable_server = true; grafana = { enable = true; port = grafanaPort; listenAddress = "127.0.0.1"; urlPath = "/grafana"; }; diff --git a/secrets/secrets.nix b/secrets/secrets.nix index 7f2a253..3b9ecfc 100644 --- a/secrets/secrets.nix +++ b/secrets/secrets.nix @@ -4,5 +4,6 @@ let ]; in { - "secrets/matrix-synapse.age".publicKeys = pubkeys; + "matrix-synapse.age".publicKeys = pubkeys; + "teslamate.age".publicKeys = pubkeys; } diff --git a/secrets/teslamate.age b/secrets/teslamate.age new file mode 100644 index 0000000000000000000000000000000000000000..7bc5eaa41a295720421a2334462dbd9398cb246f GIT binary patch literal 331 zcmV-R0kr;MXJsvAZewzJaCB*JZZ2A+=Xi;HoNLdOkEiE8%Vs2Z5X>_s_*?NX|kqe7o)AT?8EJkPDEhh__}Ruz|HR zh^1?x7RKO2`sRTXXju~o$B~I(i~vG7^p4C2iy>yN2+TojEj1YLVttBUu1mIR?-