jonas/.hive
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

feat(harbor): add wg server

Browse Source
This commit is contained in:
Jonas Röger 2025-04-23 00:31:20 +02:00
parent 99e902a08d
commit cd2bbd09f4
Signed by: jonas
GPG Key ID: 4000EB35E1AE0F07
1 changed files with 9 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

10
hosts/harbor/configuration.nix
View File

@ -5,8 +5,9 @@
}: { }: {
imports = [ imports = [
./hardware-configuration.nix ./hardware-configuration.nix
../../modules/services/nextcloud-instance.nix ../../modules/networking/wireguard
../../modules/services/borg-server.nix ../../modules/services/borg-server.nix
../../modules/services/nextcloud-instance.nix
]; ];
# Secret management # Secret management
@ -16,6 +17,10 @@
owner = "nextcloud"; owner = "nextcloud";
key = "admin-pass"; key = "admin-pass";
}; };
sops.secrets."wg-priv" = {
sopsFile = ../../secrets/harbor/wg.yaml;
key = "privateKey";
};
# Configure nix and garbage collection # Configure nix and garbage collection
nix = { nix = {
@ -56,6 +61,9 @@
services.borg-server.enable = true; services.borg-server.enable = true;
services.borg-server.repositories.comfy-station.ssh_public_key = builtins.readFile (../../static/keys + "/borg-jonas@comfy-station.pub"); services.borg-server.repositories.comfy-station.ssh_public_key = builtins.readFile (../../static/keys + "/borg-jonas@comfy-station.pub");
networking.wg.server.enable = true;
networking.wg.server.privateKey = config.sops.secrets.wg-priv.path;
# Allow unfree packages # Allow unfree packages
nixpkgs.config.allowUnfree = true; nixpkgs.config.allowUnfree = true;