about summary refs log tree commit diff
diff options
context:
space:
mode:
-rw-r--r--hosts/aptos/secrets/secrets.nix18
-rw-r--r--hosts/aptos/secrets/syncthing/cert.agebin0 -> 1209 bytes
-rw-r--r--hosts/aptos/secrets/syncthing/key.agebin0 -> 664 bytes
-rw-r--r--hosts/aptos/secrets/wireguard_privatekey.agebin467 -> 470 bytes
-rw-r--r--profiles/trusted/default.nix1
5 files changed, 17 insertions, 2 deletions
diff --git a/hosts/aptos/secrets/secrets.nix b/hosts/aptos/secrets/secrets.nix
index 28c4078..425a15f 100644
--- a/hosts/aptos/secrets/secrets.nix
+++ b/hosts/aptos/secrets/secrets.nix
@@ -1,4 +1,18 @@
 let
-  aptos =
+  fcuny =
     "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIIdlm/qoR/dnMjZhVSTtqFzkgN3Yf9eQ3pgKMiipg+dl";
-in { "wireguard_privatekey.age".publicKeys = [ aptos ]; }
+  aptos =
+    "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIOTcPGaiL+/Mwl8JzLHrBwas7QvWPjix4lnaAA1tw+5t";
+in {
+  "wireguard_privatekey.age".publicKeys = [ fcuny aptos ];
+
+  "syncthing/key.age" = {
+    publicKeys = [ fcuny aptos ];
+    owner = "fcuny";
+  };
+
+  "syncthing/cert.age" = {
+    publicKeys = [ fcuny aptos ];
+    owner = "fcuny";
+  };
+}
diff --git a/hosts/aptos/secrets/syncthing/cert.age b/hosts/aptos/secrets/syncthing/cert.age
new file mode 100644
index 0000000..33c6645
--- /dev/null
+++ b/hosts/aptos/secrets/syncthing/cert.age
Binary files differdiff --git a/hosts/aptos/secrets/syncthing/key.age b/hosts/aptos/secrets/syncthing/key.age
new file mode 100644
index 0000000..4e5c123
--- /dev/null
+++ b/hosts/aptos/secrets/syncthing/key.age
Binary files differdiff --git a/hosts/aptos/secrets/wireguard_privatekey.age b/hosts/aptos/secrets/wireguard_privatekey.age
index 2f6edf3..17559c3 100644
--- a/hosts/aptos/secrets/wireguard_privatekey.age
+++ b/hosts/aptos/secrets/wireguard_privatekey.age
Binary files differdiff --git a/profiles/trusted/default.nix b/profiles/trusted/default.nix
index bbaa1df..95f0645 100644
--- a/profiles/trusted/default.nix
+++ b/profiles/trusted/default.nix
@@ -16,5 +16,6 @@ in {
     my.home.mail.enable = true;
     my.home.pass.enable = true;
     my.home.seahorse.enable = isEnabled;
+    my.services.syncthing.enable = true;
   };
 }