raphael/nixos
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

core(secrets): adding mailjet secrets

Browse source
This commit is contained in:
Raphael 2025-10-16 16:30:52 +02:00
parent c1b3df9e32
commit c0c7fd7be3
No known key found for this signature in database
3 changed files with 40 additions and 0 deletions
Download patch file Download diff file Expand all files Collapse all files

33
secrets/secrets.nix Normal file
View file

@ -0,0 +1,33 @@
{ config, pkgs, inputs, ... }:
let
main-server = "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIFEEuBgdANmzr69bapLdSxu6gnsLHGUQUBatS2dQsdOU root@nixos";
systems = [
main-server
];
root = "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIKQRq2M+a40lucGpjiWsWnjeUfA0ihzdtqyDbKznawAg root@nixos-server";
users = [
root
];
in
{
"mailjet-user.age".publicKeys = users ++ systems;
"mailjet-pass.age".publicKeys = users ++ systems;
imports = [ inputs.agenix.nixosModules.default ];
age.identityPaths = [ "/etc/ssh/ssh_host_ed25519_key" ];
age.secrets."mailjet-user" = {
file = ../../secrets/mailjet-user.age;
owner = "root";
group = "root";
mode = "0400";
};
age.secrets."mailjet-pass" = {
file = ../../secrets/mailjet-pass.age;
owner = "root";
group = "root";
mode = "0400";
};
}