don/NixOS-Configs
1
0
Fork 0
Code Issues Pull requests Projects Releases 1 Activity

chore | add sops info, update smtp info

Browse source
This commit is contained in:
Don Harper 2026-02-25 23:01:00 -06:00
parent 77b747b3c0
commit ac0530def0
1 changed files with 50 additions and 4 deletions
Download patch file Download diff file Expand all files Collapse all files

54
hosts/server/default.nix
View file

@ -178,7 +178,7 @@ in {
lsof
lsscsi
nix-bash-completions
nixfmt-classic
nixfmt
pkg-config
podman
poppler-utils
@ -188,6 +188,52 @@ in {
udiskie
];
sops = {
age.keyFile = "/home/don/.config/sops/age/keys.txt";
defaultSopsFile = ../../secrets.yaml;
# defaultSymlinkPath = "/run/user/1000/secrets";
# defaultSecretsMountPoint = "/run/user/1000/secrets.d";
secrets = {
"users/root_password" = {
owner = "root";
mode = "0400";
};
"users/root_sshauth" = {
owner = "root";
mode = "0400";
path = "/etc/ssh/authorized_keys.d/root";
};
"users/don_password" = {
owner = "don";
mode = "0400";
};
"users/don_sshauth" = {
owner = "don";
mode = "0400";
path = "/etc/ssh/authorized_keys.d/don";
};
"users/vicky_password" = {
owner = "don";
mode = "0400";
};
"users/vicky_sshauth" = {
owner = "don";
mode = "0400";
path = "/etc/ssh/authorized_keys.d/vicky";
};
"smtp/smtp_password" = {
owner = "root";
mode = "0444";
};
"tailscale/ts_api" = {
owner = "root";
mode = "0400";
};
};
};
programs = {
dconf = {enable = true;};
mtr = {enable = true;};
@ -239,12 +285,12 @@ in {
accounts = {
default = {
auth = true;
tls = true;
tls = false;
port = 587;
from = "don@donharper.org";
host = "smtp.smtp2go.com";
user = "donharper.org";
passwordeval = "cat /home/don/.smtp_password.txt";
user = "duckunix";
passwordeval = "cat ${config.sops.secrets."smtp/smtp_password".path}";
};
};
};