Cloonar/nixos
2
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

many changes

Browse Source
This commit is contained in:
Dominik Polakovics Polakovics
2024-07-08 17:36:11 +02:00
parent 213101f8cd
commit 4a183af66c
9 changed files with 85 additions and 73 deletions
Download Patch File Download Diff File Expand all files Collapse all files

3
hosts/nb-new.cloonar.com/configuration.nix
View File

@@ -73,9 +73,8 @@ in {
services.openssh.enable = true;
sops.age.sshKeyPaths = [ "/etc/ssh/ssh_host_ed25519_key" ];
sops.defaultSopsFile = ./secrets.yaml;
sops.age.keyFile = "/var/lib/sops-nix/key.txt";
sops.age.generateKey = true;
sops.secrets.epicenter_vpn_ca = {};
sops.secrets.epicenter_vpn_cert = {};

26
hosts/nb-new.cloonar.com/users/dominik.nix
View File

@@ -90,22 +90,22 @@ in
home.persistence."/nix/persist/user/dominik" = {
allowOther = true;
directories = [
".ApacheDirectoryStudio"
".config/github-copilot"
".config/libreoffice"
".config/Nextcloud"
".config/rustdesk"
".config/Signal"
".config/sops"
".local/share/keyrings"
".mozilla"
".ssh"
".thunderbird"
"cloud.cloonar.com"
"cloud.epicenter.works"
"projects"
"go"
];
files = [
".ssh/known_hosts"
];
};
gtk = {
@@ -330,6 +330,8 @@ in
home.activation.projects = lib.hm.dag.entryAfter ["writeBoundary"] ''
PATH="${pkgs.git}/bin:${pkgs.openssh}/bin:$PATH"
set +eu
ssh-keygen -R git.cloonar.com
ssh-keyscan git.cloonar.com >> ~/.ssh/known_hosts
git clone gitea@git.cloonar.com:Cloonar/support-invoiced.git /nix/persist/user/dominik/projects/cloonar/support-invoiced 2>/dev/null
git clone gitea@git.cloonar.com:Cloonar/nixos.git /nix/persist/user/dominik/projects/cloonar/cloonar-nixos 2>/dev/null
git clone gitea@git.cloonar.com:Cloonar/website.git /nix/persist/user/dominik/projects/cloonar/cloonar-website 2>/dev/null
@@ -343,6 +345,8 @@ in
git clone gitea@git.cloonar.com:Cloonar/amz-frontend.git /nix/persist/user/dominik/projects/cloonar/amz/amz-frontend 2>/dev/null
git clone gitea@git.cloonar.com:myhidden.life/web.git /nix/persist/user/dominik/projects/myhidden.life/myhidden.life-web 2>/dev/null
ssh-keygen -R gitlab.epicenter.works
ssh-keyscan gitlab.epicenter.works >> ~/.ssh/known_hosts
git clone git@gitlab.epicenter.works:epicenter.works/campaigntool.git /nix/persist/user/dominik/projects/epicenter.works/campaigntool 2>/dev/null
git clone git@gitlab.epicenter.works:epicenter.works/website.git /nix/persist/user/dominik/projects/epicenter.works/epicenter.works 2>/dev/null
git clone git@gitlab.epicenter.works:epicenter.works/nixos.git /nix/persist/user/dominik/projects/epicenter.works/epicenter-nixos 2>/dev/null
@@ -361,51 +365,45 @@ in
matchBlocks = {
"git.cloonar.com" = {
user = "git";
identityFile = "/nix/persist/user/dominik/.ssh/id_rsa";
identitiesOnly = true;
};
"gitlab.epicenter.works" = {
user = "git";
identityFile = "/nix/persist/user/dominik/.ssh/id_rsa";
identitiesOnly = true;
};
"tools.epicenter.works" = {
user = "root";
identityFile = "/nix/persist/user/dominik/.ssh/epicenter.id_rsa";
identityFile = "epicenter.id_rsa";
};
"*.epicenter.works !tools.epicenter.works" = {
user = "dominik";
identityFile = "/nix/persist/user/dominik/.ssh/epicenter.id_rsa";
identityFile = "epicenter.id_rsa";
};
"*.dearmep.eu" = {
user = "root";
identityFile = "/nix/persist/user/dominik/.ssh/epicenter.id_rsa";
identityFile = "epicenter.id_rsa";
};
"*.akvorrat.at" = {
user = "dominik";
setEnv = {
TERM = "xterm-256color";
};
identityFile = "/nix/persist/user/dominik/.ssh/epicenter.id_rsa";
identityFile = "epicenter.id_rsa";
};
"*.cloonar.com" = {
user = "root";
identityFile = "/nix/persist/user/dominik/.ssh/id_rsa";
};
"*.cloonar.smart" = {
user = "root";
identityFile = "/nix/persist/user/dominik/.ssh/id_rsa";
};
"*.wsw.at" = {
user = "wswdpolakovics";
identityFile = "/nix/persist/user/dominik/.ssh/id_rsa";
setEnv = {
TERM = "xterm-256color";
};
};
"*.nycro.net" = {
user = "hilgenberg-gmbh.de_kk33i9d2xv"; # prod
identityFile = "/nix/persist/user/dominik/.ssh/id_rsa";
#user = "hilgenberg.gmbh.de_pci2n5aqzt"; # stage
setEnv = {
TERM = "xterm-256color";
@@ -413,11 +411,9 @@ in
};
"amz-websrv-01.amz.at" = {
user = "ebs";
identityFile = "/nix/persist/user/dominik/.ssh/id_rsa";
};
"u149513.your-backup.de" = {
user = "u149513";
identityFile = "/nix/persist/user/dominik/.ssh/id_rsa";
# user = "u149513-sub2"; # fw.cloonar.com
port = 23;
};