diff options
author | Christoph Cullmann <christoph@cullmann.io> | 2024-09-01 17:38:06 +0200 |
---|---|---|
committer | Christoph Cullmann <christoph@cullmann.io> | 2024-09-01 17:38:06 +0200 |
commit | 0b8bd0acc1564faef4a300a59112821261c4c205 (patch) | |
tree | d94d87aed2a12197f0eb1c3c69f768d5e5acc41a | |
parent | f640e44fd5520de3f4af27c51081979df7e59ff7 (diff) |
move secret stuff in own dir
-rw-r--r-- | .gitignore | 2 | ||||
-rw-r--r-- | share/common.nix | 2 | ||||
-rw-r--r-- | share/users.nix | 4 |
3 files changed, 4 insertions, 4 deletions
@@ -1,2 +1,2 @@ /secret/ -*.secret + diff --git a/share/common.nix b/share/common.nix index 3acde56..ad5ce15 100644 --- a/share/common.nix +++ b/share/common.nix @@ -488,7 +488,7 @@ in mode = "0400"; }; environment.etc."mail/secrets" = { - text = builtins.readFile "/nix/data/nixos/mail.secret"; + text = builtins.readFile "/nix/data/nixos/secret/mail.secret"; mode = "0400"; }; diff --git a/share/users.nix b/share/users.nix index 687f0f5..8deb5bf 100644 --- a/share/users.nix +++ b/share/users.nix @@ -23,10 +23,10 @@ in users.root = { # init password - hashedPassword = builtins.readFile "/nix/data/nixos/password.secret"; + hashedPassword = builtins.readFile "/nix/data/nixos/secret/password.secret"; # use fixed auth keys - openssh.authorizedKeys.keys = pkgs.lib.splitString "\n" (builtins.readFile "/nix/data/nixos/authorized_keys.secret"); + openssh.authorizedKeys.keys = pkgs.lib.splitString "\n" (builtins.readFile "/nix/data/nixos/secret/authorized_keys.secret"); }; # |