From e9903081fe4f68f5efde69942d19b88db5cbe8af Mon Sep 17 00:00:00 2001
From: Raphael <rparodi@student.42.fr>
Date: Tue, 16 Dec 2025 15:12:44 +0100
Subject: [PATCH] feat(server/secrets): update secrets on server side

---
 hosts/server/secrets.nix | 29 +++++++++++++++++++++++++----
 1 file changed, 25 insertions(+), 4 deletions(-)

diff --git a/hosts/server/secrets.nix b/hosts/server/secrets.nix
index 33c06bd..dcbc6a1 100644
--- a/hosts/server/secrets.nix
+++ b/hosts/server/secrets.nix
@@ -18,10 +18,31 @@
     mode  = "0400";
   };
 
-  age.secrets."kanidm-pass" = {
-    file = ../../secrets/mailjet-pass.age;
-    owner = "root";
-    group = "root";
+  age.secrets."nextcloud-admin-pass" = {
+    file = ../../secrets/nextcloud-admin-pass.age;
+    owner = "nextcloud";
+    group = "nextcloud";
+    mode  = "0400";
+  };
+
+  age.secrets."nextcloud-database" = {
+    file = ../../secrets/nextcloud-database.age;
+    owner = "nextcloud";
+    group = "nextcloud";
+    mode  = "0400";
+  };
+
+  age.secrets."kanidm-admin" = {
+    file = ../../secrets/kandim-admin.age;
+    owner = "kanidm";
+    group = "kanidm";
+    mode  = "0400";
+  };
+
+  age.secrets."kanidm-idmAdmin" = {
+    file = ../../secrets/kandim-idmAdmin.age;
+    owner = "kanidm";
+    group = "kanidm";
     mode  = "0400";
   };