about summary refs log tree commit diff
diff options
context:
space:
mode:
authorGriffin Smith <root@gws.fyi>2020-05-04T17·19-0400
committerGriffin Smith <root@gws.fyi>2020-05-04T17·19-0400
commit21783174014640c9a8ed0784bdd91aac9d84aa8e (patch)
treeff4d622ae73de134cc87787786650942ad02181e
parent5222b8d15a51d6118b090040a1bfd4d48ffff8c2 (diff)
urbint system module
-rw-r--r--system/modules/common.nix3
-rw-r--r--system/modules/urbint.nix18
2 files changed, 19 insertions, 2 deletions
diff --git a/system/modules/common.nix b/system/modules/common.nix
index 9a09920a8a39..3f5023793d0e 100644
--- a/system/modules/common.nix
+++ b/system/modules/common.nix
@@ -100,9 +100,8 @@
   };
 
   nix = {
+    trustedUsers = [ "griffin" ];
     autoOptimiseStore = true;
-  };
-}
 
     buildMachines = [{
       hostName = "172.16.0.3";
diff --git a/system/modules/urbint.nix b/system/modules/urbint.nix
new file mode 100644
index 000000000000..4b05175756bc
--- /dev/null
+++ b/system/modules/urbint.nix
@@ -0,0 +1,18 @@
+{ config, pkgs, ... }:
+{
+  virtualisation.docker.enable = true;
+
+  nix = rec {
+    binaryCaches = [ "https://nix.urbinternal.com" ];
+    trustedBinaryCaches = binaryCaches;
+    trustedUsers = [ "griffin" ];
+    requireSignedBinaryCaches = false;
+  };
+
+  services.openvpn.servers.urbint = {
+    config = ''
+      config /root/openvpn/urbint.conf
+    '';
+    autoStart = false;
+  };
+}