diff options
author | tv <tv@krebsco.de> | 2017-06-20 00:02:04 +0200 |
---|---|---|
committer | tv <tv@krebsco.de> | 2017-06-20 00:44:29 +0200 |
commit | 97185fa2e30ef8bf94e14b1d7375fd987a171f4e (patch) | |
tree | ec6d64fbb83ea94457a591b13366793430e0c7ea | |
parent | ffb3dae30f88e0d735c9ca5dec6e181b06e207a6 (diff) |
tv dummy_secrets: init
-rw-r--r-- | tv/2configs/default.nix | 2 | ||||
-rw-r--r-- | tv/dummy_secrets/default.nix | 8 | ||||
-rw-r--r-- | tv/dummy_secrets/repos.nix | 1 | ||||
-rw-r--r-- | tv/dummy_secrets/ssh.id_ed25519 | 3 | ||||
-rw-r--r-- | tv/dummy_secrets/ssh.id_rsa | 3 |
5 files changed, 16 insertions, 1 deletions
diff --git a/tv/2configs/default.nix b/tv/2configs/default.nix index 93b9c01..4a1247e 100644 --- a/tv/2configs/default.nix +++ b/tv/2configs/default.nix @@ -11,7 +11,7 @@ with import <stockholm/lib>; nixos-config.symlink = "stockholm/tv/1systems/${host.name}.nix"; secrets.file = if getEnv "dummy_secrets" == "true" - then toString <stockholm/null> + then toString <stockholm/tv/dummy_secrets> else "/home/tv/secrets/${host.name}"; secrets-common.file = "/home/tv/secrets/common"; stockholm.file = "/home/tv/stockholm"; diff --git a/tv/dummy_secrets/default.nix b/tv/dummy_secrets/default.nix new file mode 100644 index 0000000..ab90db5 --- /dev/null +++ b/tv/dummy_secrets/default.nix @@ -0,0 +1,8 @@ +{ config, ... }: +{ + users.users.root = { + openssh.authorizedKeys.keys = [ + config.krebs.users.tv.pubkey + ]; + }; +} diff --git a/tv/dummy_secrets/repos.nix b/tv/dummy_secrets/repos.nix new file mode 100644 index 0000000..eed7124 --- /dev/null +++ b/tv/dummy_secrets/repos.nix @@ -0,0 +1 @@ +_: {} diff --git a/tv/dummy_secrets/ssh.id_ed25519 b/tv/dummy_secrets/ssh.id_ed25519 new file mode 100644 index 0000000..a7d2ada --- /dev/null +++ b/tv/dummy_secrets/ssh.id_ed25519 @@ -0,0 +1,3 @@ +-----BEGIN OPENSSH PRIVATE KEY----- +dummy +-----END OPENSSH PRIVATE KEY----- diff --git a/tv/dummy_secrets/ssh.id_rsa b/tv/dummy_secrets/ssh.id_rsa new file mode 100644 index 0000000..dd7209c --- /dev/null +++ b/tv/dummy_secrets/ssh.id_rsa @@ -0,0 +1,3 @@ +-----BEGIN RSA PRIVATE KEY----- +dummy +-----END RSA PRIVATE KEY----- |