Skip to content

Commit

Permalink
hosts (srv-test-1): Init host
Browse files Browse the repository at this point in the history
  • Loading branch information
@britter
britter committed Aug 29, 2024
1 parent ce937e0 commit fd92f21
Show file tree
Hide file tree
Showing 5 changed files with 75 additions and 0 deletions.
6 changes: 6 additions & 0 deletions .sops.yaml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -2,6 +2,7 @@ keys:
- &pulse-14 age18mrc4ttzg8xldevwfvtxqd0942hlv2az75l060flc4c0tqnmkaus0ueqpl
- &srv-prod-1 age1wsytzmsk73z4253uc8e9050cjdgg9dvchy9m2dmj9tgml4rrsshqy9uku2
- &srv-prod-2 age1azlfwa6wlup8vc9vjqhn2nv8hnpphrg5f0chyhn8xq63tv54zyjsr8yng2
- &srv-test-1 age1gnt60tjm9k8v25a3cs8yhtrq5xnrgylvmxwyhkglq2c5lq0q2fcs4slgkx
- &directions age1tqwmx8ge4fxkj2l8sfam94eg52km2w3dqjgazjez46m4ywln7qls0unsdw
creation_rules:
- path_regex: systems/x86_64-linux/srv-prod-1/secrets\.yaml$
Expand All @@ -14,6 +15,11 @@ creation_rules:
- age:
- *pulse-14
- *srv-prod-2
- path_regex: systems/x86_64-linux/srv-test-1/secrets\.yaml$
key_groups:
- age:
- *pulse-14
- *srv-test-1
- path_regex: systems/aarch64-linux/directions/secrets\.yaml$
key_groups:
- age:
Expand Down
4 changes: 4 additions & 0 deletions modules/nixos/adguard/default.nix
View file
Original file line number Diff line number Diff line change
Expand Up @@ -141,6 +141,10 @@ in {
domain = "nextcloud.srv-prod-2.ritter.family";
answer = config.my.homelab.srv-prod-2.ip;
}
{
domain = "grafana.srv-test-1.ritter.family";
answer = config.my.homelab.srv-test-1.ip;
}
];
};
};
Expand Down
6 changes: 6 additions & 0 deletions modules/nixos/homelab/default.nix
View file
Original file line number Diff line number Diff line change
Expand Up @@ -24,5 +24,11 @@
default = "192.168.178.212";
};
};
srv-test-1 = {
ip = lib.mkOption {
type = lib.types.str;
default = "192.168.178.221";
};
};
};
}
28 changes: 28 additions & 0 deletions systems/x86_64-linux/srv-test-1/configuration.nix
View file
Original file line number Diff line number Diff line change
@@ -0,0 +1,28 @@
{...}: {
imports = [
../../../modules/nixos
];

my = {
host = {
role = "server";
};
modules = {
proxmox-vm.enable = true;
disko = {
enable = true;
bootDisk = "/dev/sda";
};
grafana.enable = true;
monitoring.openFirewall = false;
};
};

# This value determines the NixOS release from which the default
# settings for stateful data, like file locations and database versions
# on your system were taken. It‘s perfectly fine and recommended to leave
# this value at the release version of the first install of this system.
# Before changing this value read the documentation for this option
# (e.g. man configuration.nix or on https://nixos.org/nixos/options.html).
system.stateVersion = "23.11"; # Did you read the comment?
}
31 changes: 31 additions & 0 deletions systems/x86_64-linux/srv-test-1/secrets.yaml
View file
Original file line number Diff line number Diff line change
@@ -0,0 +1,31 @@
acme:
cloudflare-dns-api-token: ENC[AES256_GCM,data:P5cfh7qHjkl/iV7RwsniFirufIcodaLVh2JEHTFPz8fIL8L1PtIGcA==,iv:olqi7iGlZMf9wSk2yKt9VntKxdq0AH+ttdrpwcQMroM=,tag:M3QCKTYmX5ANUlKdusTZCQ==,type:str]
sops:
kms: []
gcp_kms: []
azure_kv: []
hc_vault: []
age:
- recipient: age18mrc4ttzg8xldevwfvtxqd0942hlv2az75l060flc4c0tqnmkaus0ueqpl
enc: |
-----BEGIN AGE ENCRYPTED FILE-----
YWdlLWVuY3J5cHRpb24ub3JnL3YxCi0+IFgyNTUxOSA1bFBKSXVITEpsMmdXMlpq
cEFzdGxadW5NMVUzWXh2TG9jNEtkQ3RjZWlvClByNytGeHZqZVFVWHVoak1MdzRp
bE9qNUd6MkhjdWxYZloxM0FEQis5QncKLS0tIEdVVzZtSFlMQzFxWEY5cnovZGVJ
cVFXSVRpTVVJWDFDR1kvT2YzWmVySzgKvPTAXsyCdVyTLjP89raAx4TzeRXEPlT1
GvxT2zhJhol7yh+ks0x7zaWtIB0GDM+ff/FJZu84hY4qi5sFVHwIjQ==
-----END AGE ENCRYPTED FILE-----
- recipient: age1wsytzmsk73z4253uc8e9050cjdgg9dvchy9m2dmj9tgml4rrsshqy9uku2
enc: |
-----BEGIN AGE ENCRYPTED FILE-----
YWdlLWVuY3J5cHRpb24ub3JnL3YxCi0+IFgyNTUxOSBwaTEyeDBvNExQb3dyQkUy
YUlCZUxhcGJqSEFvQ1UyWlpVNytuMDVqeUhRCjF0WFo4Sms4Umx3ci9LelpLNmhm
TDN5cHIxYjZFbi9HTWU5eTl4dWZXK2cKLS0tIHVnaWVOTGlJSG8waFVYdmNsK3BJ
bkMzT1BvVzZpdjNlVjFOYmVvbjdrK1kKGw1d0r8mQtGO1zX2f3sz0EVG0meMWUVM
j/oe3HPNrQqyzxCDLU3uWBjwK26xhWI4dK7JmaQDe2t3zcXhs6joBg==
-----END AGE ENCRYPTED FILE-----
lastmodified: "2024-08-29T09:42:20Z"
mac: ENC[AES256_GCM,data:Uaizx+9+9HeW8OL1QCsQoiY6aBCi6mQgyNTFAN16NkmulsXVuhsxbddxmrTxtMhu8IfpV7zWRtWVMC89BgH3SDmMBcFZx+g3JD1M56sKI7/92HB3dzURvM3eJZh2x/0S9j9NS7b/5QtYWmxpy/ulwCysxfXMMpIa+KxYnTdvi0U=,iv:5rJADa24b/zz01iZU8xVKwYCtIx3jSNG5rOu17h/GFc=,tag:8mWkjQupJBdeH7SYJ0383A==,type:str]
pgp: []
unencrypted_suffix: _unencrypted
version: 3.8.1

0 comments on commit fd92f21

Please sign in to comment.