diff options
| author | Vincent Ambo <tazjin@tvl.su> | 2024-09-14T21·00+0300 |
|---|---|---|
| committer | tazjin <tazjin@tvl.su> | 2024-09-14T23·47+0000 |
| commit | 0022285600c5443b9709f5a60a33e38956e1eb14 (patch) | |
| tree | 235ee99ce293860c980d2463526135e9cee93559 | |
| parent | c9eeb7da70bc711cae4f4bdbe2b0aa4fc5aee643 (diff) | |
feat(tazjin/nixos): set up yggdrasil on all physical machines r/8693
Change-Id: I1d722c6d2e6192c445e77cb9b186a5320c2a60ec Reviewed-on: https://cl.tvl.fyi/c/depot/+/12485 Reviewed-by: tazjin <tazjin@tvl.su> Tested-by: BuildkiteCI
| -rw-r--r-- | users/tazjin/nixos/koptevo/default.nix | 4 | ||||
| -rw-r--r-- | users/tazjin/nixos/modules/home-config.nix | 2 | ||||
| -rw-r--r-- | users/tazjin/nixos/modules/physical.nix | 7 |
3 files changed, 12 insertions, 1 deletions
diff --git a/users/tazjin/nixos/koptevo/default.nix b/users/tazjin/nixos/koptevo/default.nix index ec490e453c70..a8c98427d16b 100644 --- a/users/tazjin/nixos/koptevo/default.nix +++ b/users/tazjin/nixos/koptevo/default.nix @@ -218,6 +218,10 @@ in Listen = true; Port = 9443; # yggd }]; + + AllowedPublicKeys = [ + "573fd89392e2741ead4edd85034c91c88f1e560d991bbdbf1fccb6233db4d325" # koptevo + ]; }; }; diff --git a/users/tazjin/nixos/modules/home-config.nix b/users/tazjin/nixos/modules/home-config.nix index 77fe3f69bcd2..9aa1cab46d66 100644 --- a/users/tazjin/nixos/modules/home-config.nix +++ b/users/tazjin/nixos/modules/home-config.nix @@ -6,7 +6,7 @@ users.users.tazjin = { isNormalUser = true; createHome = true; - extraGroups = [ "wheel" "networkmanager" "video" "adbusers" ]; + extraGroups = [ "wheel" "networkmanager" "video" "adbusers" "yggdrasil" ]; uid = 1000; shell = pkgs.fish; initialHashedPassword = "$2b$05$1eBPdoIgan/C/L8JFqIHBuVscQyTKw1L/4VBlzlLvLBEf6CXS3EW6"; diff --git a/users/tazjin/nixos/modules/physical.nix b/users/tazjin/nixos/modules/physical.nix index 569230633455..92b22112d4f4 100644 --- a/users/tazjin/nixos/modules/physical.nix +++ b/users/tazjin/nixos/modules/physical.nix @@ -102,6 +102,13 @@ in # run manually patchelfed binaries environment.stub-ld.enable = false; + # Enable yggdrasil network. + services.yggdrasil = { + enable = true; + persistentKeys = true; + settings.IfName = "ygg0"; + }; + programs = { fish.enable = true; mosh.enable = true; |