From c707909f4fd8f28b339727d9d862f0619dad5073 Mon Sep 17 00:00:00 2001 From: reo101 Date: Mon, 23 Oct 2023 09:24:31 +0300 Subject: [PATCH] fix(jeeves): wireguard peer's `PublicKey` should not be a file --- machines/nixos/x86_64-linux/jeeves/wireguard.nix | 7 +------ secrets/home/wireguard/cheetah.pub.age | 15 --------------- secrets/secrets.nix | 1 - 3 files changed, 1 insertion(+), 22 deletions(-) delete mode 100644 secrets/home/wireguard/cheetah.pub.age diff --git a/machines/nixos/x86_64-linux/jeeves/wireguard.nix b/machines/nixos/x86_64-linux/jeeves/wireguard.nix index f863c39..6fbf4c6 100644 --- a/machines/nixos/x86_64-linux/jeeves/wireguard.nix +++ b/machines/nixos/x86_64-linux/jeeves/wireguard.nix @@ -18,11 +18,6 @@ file = ../../../../secrets/home/wireguard/server.public.age; }; - # Peers - age.secrets."wireguard/cheetah.pub" = { - file = ../../../../secrets/home/wireguard/cheetah.pub.age; - }; - networking.firewall.allowedUDPPorts = [51820]; systemd.network = { netdevs = { @@ -40,7 +35,7 @@ { # cheetah wireguardPeerConfig = { - PublicKey = config.age.secrets."wireguard/cheetah.pub".path; + PublicKey = "CFTGvBcly791ClwyS6PzTjmqztvYJW2eklR7it/QhxI="; AllowedIPs = [ "0.0.0.0/0" # "::/0" diff --git a/secrets/home/wireguard/cheetah.pub.age b/secrets/home/wireguard/cheetah.pub.age deleted file mode 100644 index d1decf3..0000000 --- a/secrets/home/wireguard/cheetah.pub.age +++ /dev/null @@ -1,15 +0,0 @@ ------BEGIN AGE ENCRYPTED FILE----- -YWdlLWVuY3J5cHRpb24ub3JnL3YxCi0+IHNzaC1lZDI1NTE5IElkcVZ1USBvVUor -bGVuY2FwK0VwdkVxV1VIRmhXU0NrSDRQcUREeEJYRGJYREpUUm5vCkJWVUZFZGNx -VGFUbmJWdy9vMjQzeU5TbVY4MDlaaGwzWEU4ZHAvK2hLNkUKLT4gc3NoLWVkMjU1 -MTkgV2Y4dmp3IHdxbkRodDNEMkcra1FrUHoxckIxaUU0aSt1T09LV25kVm02K1BM -R0NvUTQKZ1BFSG1KNnphNVdDNXhyUmxPcjAwbDN5RWRNOWxpbUZJTGwyVnBwcWNi -SQotPiBYMjU1MTkgUnZONFVKUGFZTDhzNDE2YS93Y0xrbEVVMXpwK2pWcCt1V2Jn -YXp5RmdWbwplb3pkbU9UaVVFaDAxSDM1VEdVV1VzY3E0TWx3UWhxOGcxa29tQUIy -U3c4Ci0+IHNzaC1lZDI1NTE5IHZNbmJsZyBneis4MExsSWxwcnN0ZmVUVEl0dzlE -eWdqWHBPdDd5Q2VFQWNXMkltWm5NCnMzWm94SUFiU3dJYmdhMWpUM05aNlV6OG8z -T3oxdUg0ZnUyOVc0T2M4cGcKLT4gJX4tZ3JlYXNlIDAjeFkKdHRkL2p4OThPM2ln -bzlOSitseDQ3YVNKNlEKLS0tIEtlZzhyRHVlbmhSWmFHTVZGM29ycXNUSnJjK3FJ -bmRvdk1xYkRKUVQ3c2sKY6ZetgsnlZtGTcDepuS1/vOnI9ksYgkk6gvMfgX+XyzE -EQOjj/XkiDwSG8GWtd2dEJxUdUgJitob3wMtRVeozege+G9yYqFo0qAAcPE= ------END AGE ENCRYPTED FILE----- diff --git a/secrets/secrets.nix b/secrets/secrets.nix index 19ef4bf..50bc700 100644 --- a/secrets/secrets.nix +++ b/secrets/secrets.nix @@ -25,5 +25,4 @@ in "home/jeeves_password.age".publicKeys = users ++ [ jeeves_system ]; "home/wireguard/server.private.age".publicKeys = users ++ [ jeeves_system ]; "home/wireguard/server.public.age".publicKeys = users ++ [ jeeves_system ]; - "home/wireguard/cheetah.pub.age".publicKeys = users ++ [ jeeves_system ]; }