Simon Bruder
4a8a7e0a4f
Use sops for secrets
...
Since I currently do not have access to sayuri, sayuri’s migration is
not done yet. The host keys and wg-home-private-key secret still have to
be added.
2021-04-06 14:05:48 +02:00
Simon Bruder
b595aceb7c
initrd-ssh: Treat host-key as state
...
This also removes the explicit passing of the public key fingerprint to
the unlock script, since the host key is no longer available in pass.
Unlocking still works, since the keys are configured in modules/ssh.nix.
2021-04-06 11:45:04 +02:00
Simon Bruder
c77328af22
Replace builtins with lib where possible
2021-02-27 19:57:00 +01:00
Simon Bruder
16c710d4a5
shell/unlock: Make unlock work if agent is locked
2021-02-16 15:55:17 +01:00
Simon Bruder
82d5a24dfa
deploy: Do not fail with broken local config
2021-01-29 16:04:38 +01:00
Simon Bruder
55fb2cfdda
shell.nix: Add luks remote unlock script
...
Closes #9 .
2021-01-28 19:02:19 +01:00
Simon Bruder
09c772514c
Add deploy script
2020-12-17 11:27:53 +01:00
Simon Bruder
e68bf4f2b6
shell.nix: Make scripts definition more dynamic
2020-12-13 17:57:10 +01:00
Simon Bruder
89d9af9834
shell.nix: Use buildInputs instead of nativeBuildInputs
2020-12-13 17:57:10 +01:00
Simon Bruder
d5cd67a5f2
shell.nix: Add update-sources script
2020-12-13 17:57:10 +01:00
Simon Bruder
b1882560b7
Use niv
2020-11-14 10:15:41 +01:00
Simon Bruder
5af4d282b6
Format shell.nix
2020-10-11 11:12:48 +02:00
Simon Bruder
99c4de6d66
Use nixpkgs-fmt hook from pre-commit-hooks.nix
2020-10-02 17:15:46 +02:00
Simon Bruder
db1348014e
Update to 20.09
...
MPV is disabled since the override options no longer work.
This also applies updated formatting.
2020-09-25 22:32:42 +02:00
Simon Bruder
a05102e91c
Initial commit
2020-08-22 17:44:39 +02:00