115 lines
2.6 KiB
Nix
115 lines
2.6 KiB
Nix
{
|
|
config.age.secrets = {
|
|
# Caddy Secrets
|
|
# step-root-ca-crt-caddy = {
|
|
# file = ../secrets/step-root-ca-crt.age;
|
|
# owner = "caddy";
|
|
# group = "caddy";
|
|
# };
|
|
|
|
# Vaultwarden Secrets
|
|
vaultwarden-vars = {
|
|
file = ../secrets/vaultwarden-vars.age;
|
|
owner = "vaultwarden";
|
|
group = "vaultwarden";
|
|
};
|
|
|
|
# Miniflux admin password
|
|
miniflux-admin = {
|
|
file = ../secrets/miniflux-admin.age;
|
|
owner = "miniflux";
|
|
group = "miniflux";
|
|
};
|
|
|
|
miniflux-oidc-secret = {
|
|
file = ../secrets/miniflux-oidc-secret.age;
|
|
owner = "miniflux";
|
|
group = "miniflux";
|
|
};
|
|
|
|
# Wireguard private key
|
|
external-wg-priv-key = {
|
|
file = ../secrets/external-wg-priv-key.age;
|
|
};
|
|
|
|
# Step CA secrets
|
|
# step-password = {
|
|
# file = ../secrets/step-password.age;
|
|
# owner = "step-ca";
|
|
# group = "step-ca";
|
|
# };
|
|
# step-root-ca-key = {
|
|
# file = ../secrets/step-root-ca-key.age;
|
|
# owner = "step-ca";
|
|
# group = "step-ca";
|
|
# };
|
|
# step-inter-ca-key = {
|
|
# file = ../secrets/step-inter-ca-key.age;
|
|
# owner = "step-ca";
|
|
# group = "step-ca";
|
|
# };
|
|
# step-root-ca-crt = {
|
|
# file = ../secrets/step-root-ca-crt.age;
|
|
# owner = "step-ca";
|
|
# group = "step-ca";
|
|
# };
|
|
# step-inter-ca-crt = {
|
|
# file = ../secrets/step-inter-ca-crt.age;
|
|
# owner = "step-ca";
|
|
# group = "step-ca";
|
|
# };
|
|
|
|
# Gitea Secrets
|
|
gitea-db-pw = {
|
|
file = ../secrets/gitea-db-pw.age;
|
|
owner = "gitea";
|
|
group = "gitea";
|
|
};
|
|
gitea-mail-pw = {
|
|
file = ../secrets/gitea-mail-pw.age;
|
|
owner = "gitea";
|
|
group = "gitea";
|
|
};
|
|
|
|
# Nix-serve Private key
|
|
nix-serve-priv = {
|
|
file = ../secrets/nix-serve-priv.age;
|
|
owner = "nix-serve";
|
|
group = "nix-serve";
|
|
};
|
|
|
|
# Authentik Variables
|
|
authentik-env = {
|
|
file = ../secrets/authentik-env.age;
|
|
owner = "thehedgehog";
|
|
group = "misc";
|
|
};
|
|
|
|
# Vikunja Secrets
|
|
vikunja-env = {
|
|
file = ../secrets/vikunja-env.age;
|
|
owner = "vikunja";
|
|
group = "vikunja";
|
|
};
|
|
|
|
# Grafana SMTP and Admin Passwords
|
|
grafana-admin = {
|
|
file = ../secrets/grafana-admin-password.age;
|
|
owner = "grafana";
|
|
group = "grafana";
|
|
};
|
|
grafana-smtp-password = {
|
|
file = ../secrets/grafana-smtp-password.age;
|
|
owner = "grafana";
|
|
group = "grafana";
|
|
};
|
|
|
|
# # Dendrite secrets
|
|
# dendrite-key = {
|
|
# file = ../secrets/dendrite-key.age;
|
|
# path = "/run/agenix/dendrite-key";
|
|
# owner = "dendrite";
|
|
# group = "dendrite";
|
|
# };
|
|
};
|
|
}
|