stockholm/kartei/lass/default.nix

59 lines
1.6 KiB
Nix
Raw Normal View History

2022-11-22 20:15:44 +01:00
with import ../../lib;
{ config, ... }: let
r6 = ip: (krebs.genipv6 "retiolum" "lass" ip).address;
2018-12-16 16:11:02 +01:00
w6 = ip: (krebs.genipv6 "wiregrill" "lass" ip).address;
2022-12-26 23:45:25 +01:00
hostFiles =
builtins.map (lib.removeSuffix ".nix") (
builtins.filter
(x: lib.hasSuffix ".nix" x && x != "default.nix")
(lib.attrNames (builtins.readDir ./.))
);
in {
2018-01-16 00:00:58 +01:00
dns.providers = {
"lassul.us" = "zones";
};
hosts = mapAttrs (_: recursiveUpdate {
owner = config.krebs.users.lass;
2022-11-15 15:48:15 +01:00
consul = true;
ci = true;
monitoring = true;
2022-12-27 18:03:51 +01:00
ssh.privkey.path = <secrets/ssh.id_ed25519>;
2022-12-26 23:45:25 +01:00
}) (
lib.genAttrs hostFiles (host: import (./. + "/${host}.nix") { inherit config krebs lib r6 w6; })
);
2018-05-16 20:19:08 +02:00
users = rec {
2021-02-16 19:50:25 +01:00
lass = lass-yubikey;
2019-10-14 13:11:31 +02:00
lass-yubikey = {
2021-02-18 20:16:07 +01:00
mail = "lass@lassul.us";
2019-10-14 13:11:31 +02:00
pubkey = builtins.readFile ./ssh/yubikey.rsa;
pgp.pubkeys.default = builtins.readFile ./pgp/yubikey.pgp;
};
2018-05-16 20:19:08 +02:00
lass-blue = {
mail = "lass@blue.r";
pubkey = builtins.readFile ./ssh/blue.rsa;
};
2021-01-23 17:33:17 +01:00
lass-green = {
mail = "lass@green.r";
pubkey = builtins.readFile ./ssh/green.ed25519;
};
2022-12-26 23:45:25 +01:00
lass-red = {
mail = "lass@red.r";
pubkey = builtins.readFile ./ssh/red.ed25519;
};
2018-05-16 20:19:08 +02:00
lass-mors = {
2017-04-12 11:00:36 +02:00
mail = "lass@mors.r";
2016-05-21 13:45:48 +02:00
pubkey = builtins.readFile ./ssh/mors.rsa;
pgp.pubkeys.default = builtins.readFile ./pgp/mors.pgp;
};
2017-10-01 18:39:14 +02:00
lass-android = {
mail = "lassulus@gmail.com";
2021-05-24 22:15:09 +02:00
pubkey = builtins.readFile ./ssh/android.ed25519;
2017-10-01 18:39:14 +02:00
};
2021-11-27 23:48:41 +01:00
lass-tablet = {
pubkey = builtins.readFile ./ssh/tablet.ed25519;
};
};
}