summaryrefslogtreecommitdiff
path: root/hosts/surtr/bifrost
diff options
context:
space:
mode:
authorGregor Kleen <gkleen@yggdrasil.li>2022-08-09 11:23:00 +0300
committerGregor Kleen <gkleen@yggdrasil.li>2022-08-09 11:23:00 +0300
commitc1f62e9827efe7c8e303e3cfa70dac8f544312b1 (patch)
treed20ff0f367804bc87996c6312cebe2fa57b5bd4c /hosts/surtr/bifrost
parentde66ba821b2851cb23bcc7b064e84de3dd848e26 (diff)
downloadnixos-c1f62e9827efe7c8e303e3cfa70dac8f544312b1.tar
nixos-c1f62e9827efe7c8e303e3cfa70dac8f544312b1.tar.gz
nixos-c1f62e9827efe7c8e303e3cfa70dac8f544312b1.tar.bz2
nixos-c1f62e9827efe7c8e303e3cfa70dac8f544312b1.tar.xz
nixos-c1f62e9827efe7c8e303e3cfa70dac8f544312b1.zip
...
Diffstat (limited to 'hosts/surtr/bifrost')
-rw-r--r--hosts/surtr/bifrost/default.nix8
1 files changed, 4 insertions, 4 deletions
diff --git a/hosts/surtr/bifrost/default.nix b/hosts/surtr/bifrost/default.nix
index 790af94a..bdedf5b6 100644
--- a/hosts/surtr/bifrost/default.nix
+++ b/hosts/surtr/bifrost/default.nix
@@ -14,7 +14,7 @@ in {
14 Kind = "wireguard"; 14 Kind = "wireguard";
15 }; 15 };
16 wireguardConfig = { 16 wireguardConfig = {
17 PrivateKeyFile = config.sops.secrets.bifrost.path; 17 PrivateKeyFile = "/run/credentials/systemd-networkd.service/bifrost.priv";
18 ListenPort = 51822; 18 ListenPort = 51822;
19 }; 19 };
20 wireguardPeers = [ 20 wireguardPeers = [
@@ -49,12 +49,12 @@ in {
49 }; 49 };
50 }; 50 };
51 }; 51 };
52 systemd.services."systemd-networkd".serviceConfig.LoadCredential = [
53 "bifrost.priv:${config.sops.secrets.bifrost.path}"
54 ];
52 sops.secrets.bifrost = { 55 sops.secrets.bifrost = {
53 format = "binary"; 56 format = "binary";
54 sopsFile = ./surtr.priv; 57 sopsFile = ./surtr.priv;
55 mode = "0640";
56 owner = "root";
57 group = "systemd-network";
58 }; 58 };
59 }; 59 };
60} 60}
generated by cgit v1.2.3 (git 2.25.1) at 2025-10-26 00:43:35 +0000