From 4b6673ce8fddfe962f939b1ad09f84e68f154a7b Mon Sep 17 00:00:00 2001 From: Tyler Starr Date: Fri, 1 Nov 2024 22:07:00 -0700 Subject: [PATCH] add torus syncthing --- provision/hosts/bulwark/configuration.nix | 1 + provision/hosts/kestrel/configuration.nix | 1 + provision/hosts/torus/configuration.nix | 9 +++++++++ provision/secrets/secrets.nix | 2 ++ provision/secrets/syncthing/torus/cert.pem.age | Bin 0 -> 1336 bytes provision/secrets/syncthing/torus/key.pem.age | Bin 0 -> 830 bytes 6 files changed, 13 insertions(+) create mode 100644 provision/secrets/syncthing/torus/cert.pem.age create mode 100644 provision/secrets/syncthing/torus/key.pem.age diff --git a/provision/hosts/bulwark/configuration.nix b/provision/hosts/bulwark/configuration.nix index fc86d154..c0df46a6 100644 --- a/provision/hosts/bulwark/configuration.nix +++ b/provision/hosts/bulwark/configuration.nix @@ -41,6 +41,7 @@ certPath = ../../secrets/syncthing/bulwark/cert.pem.age; devices = { "kestrel" = { id = "5WWL4FE-ARZ4FHP-J33HQCH-CZKEXLN-2RAY4KW-PDI754F-3HVPZYI-VC3ESAF"; }; + "torus" = { id = "ZVABUCA-3SA5QKR-OZSCIS5-RDAHR2V-D4R4NFK-ZBYOKDP-6HQUG2M-BNL3DAO"; }; }; }; }; diff --git a/provision/hosts/kestrel/configuration.nix b/provision/hosts/kestrel/configuration.nix index 9c78745f..1100d99f 100644 --- a/provision/hosts/kestrel/configuration.nix +++ b/provision/hosts/kestrel/configuration.nix @@ -63,6 +63,7 @@ certPath = ../../secrets/syncthing/kestrel/cert.pem.age; devices = { "bulwark" = { id = "YKPOWTQ-XMXG3SD-XKLPVEC-H4SO345-2ZZQK65-EBISRED-ISKCFMQ-T74P6Q5"; }; + "torus" = { id = "ZVABUCA-3SA5QKR-OZSCIS5-RDAHR2V-D4R4NFK-ZBYOKDP-6HQUG2M-BNL3DAO"; }; }; }; }; diff --git a/provision/hosts/torus/configuration.nix b/provision/hosts/torus/configuration.nix index f3422f2d..bdfe16cb 100644 --- a/provision/hosts/torus/configuration.nix +++ b/provision/hosts/torus/configuration.nix @@ -102,6 +102,15 @@ }; services = { ssh.enable = true; + syncthing = { + enable = true; + keyPath = ../../secrets/syncthing/torus/key.pem.age; + certPath = ../../secrets/syncthing/torus/cert.pem.age; + devices = { + "bulwark" = { id = "YKPOWTQ-XMXG3SD-XKLPVEC-H4SO345-2ZZQK65-EBISRED-ISKCFMQ-T74P6Q5"; }; + "kestrel" = { id = "5WWL4FE-ARZ4FHP-J33HQCH-CZKEXLN-2RAY4KW-PDI754F-3HVPZYI-VC3ESAF"; }; + }; + }; }; }; } diff --git a/provision/secrets/secrets.nix b/provision/secrets/secrets.nix index 02f7999e..c493811d 100644 --- a/provision/secrets/secrets.nix +++ b/provision/secrets/secrets.nix @@ -24,5 +24,7 @@ in "syncthing/kestrel/cert.pem.age".publicKeys = systems; "syncthing/bulwark/key.pem.age".publicKeys = systems; "syncthing/bulwark/cert.pem.age".publicKeys = systems; + "syncthing/torus/key.pem.age".publicKeys = systems; + "syncthing/torus/cert.pem.age".publicKeys = systems; } diff --git a/provision/secrets/syncthing/torus/cert.pem.age b/provision/secrets/syncthing/torus/cert.pem.age new file mode 100644 index 0000000000000000000000000000000000000000..8e86bd05fa141202b39db61b64216d9310bd0bad GIT binary patch literal 1336 zcmZ9_{X5eM003~L#+0r*;XJ7&p17rL-!sa!9loQfxvRO;$lT;A@fNj=Z~-sd0qNL7kRgSGK@un?)86>Jgj_1#(ePm_t%90WFtph2vPs zh$)GinV3k5XF^nAri9L>N_BZGB32CLGDKFTmaP}F83>ZhNkR+?qn65(Wp2$g36%N- zF&?1`pm-_$%MH=Ulb9+T#DjB9DG;BXp~Um}D2pN|2vJ1I6><2Kj0{_j$|TIBTQX5H zQH#~G1WE!&O)#S>p$atSphRUXsF4A3VKl17YlvcTRJ2jdOxA%0Y-D644iUtuY=B(E zQPD|U7MG#7#lj3KVwP+HKn*Nah$ZF(J)floU@?|_cvqieigsB)Rkg&nPKY5&HmUm^ zd(X@k%ldx39tA@fStc*-Mp3l&sb|%&%gvB$+=V{O#a)_49huqoNOInrl3DoM-rzj@wuN?Cr1pI?Qh(;1I=sJ`RT@ zEJCkfG|xg><7PH~ip`C%0}rftGmLhbLfgqq-80d41( za#ooTH!gxRh@sxiy#W!arDwn0Hk<#X z9eG)PPdCjNIC!noIU6Bq;FZ_UFRI{!8hd*XR9leu?O~`Xvaok-aK&KVD3j}lFjw*2x&m;y$Zbohu*PRk zjK^22(4oMLxyvNqr7t4PtG+XHCMO*G6318V@t1O{-W?NpKlz!ulX=4jYCQ42y<-J& zcRcw~Xx2^nUe6Ui4cpRnZx!T5{L@!&E=89-8viutx6J7-{TywzbO-(W{;`|?v|-_X z$Nt0ih6kJ4m)v*v;@l0HAGjVu4DNSaYDuHv$DG=oovD)r9mfgb>FGcGqc~7E6;nTF z$e$Rb`EL$#?4%iv3?DB@Z=PWmMvZ>6yCUXvi|}Lpe63$Y-O84mmA)rmivtpyd|uA9 zMXVfS=R_u$q?VH)tBCIVp}Z$x@m*Qdbc=gO`MxWz@+hIn?+9s6Z|~~OG~d5c)54Am z3EuO82GhFY-9Me%*D&}u;3Z#sPu4g`CX}vkq6uP1)6>$iC*g(lJ?1g5k^FOZ*)svb z-np~5iS-t9D5U->Jpi$oA9ltr=omQV1Ah;qmwJk=&R{&;KH7f2F3d4xxAx@sFT=a9 dAzwRR5;SvDI5JNi$!kt;bIm=haT^jF{s$ngF`WPa literal 0 HcmV?d00001 diff --git a/provision/secrets/syncthing/torus/key.pem.age b/provision/secrets/syncthing/torus/key.pem.age new file mode 100644 index 0000000000000000000000000000000000000000..4e644575a3b994b879addf4244821ca066c6f368 GIT binary patch literal 830 zcmZ9_>ucNu008h7S!++}n9Ql0#hdj3X4yURxLh5z$u*a|%UyD5+DmdU+T?P{J#xu4 zm*vq7*$1Zx(@96Ct>VOU?88KG8%%Mnh|?;5=mtZ4z`!ZE`j~<`CT{BY{{DfVtXILR zS+Rq*Q@70BmaRwJSO^>qcRDq&s>Tr{mJFxoA|1{PHz(n2V;pF?G0vG1NmQJTV=5wK z9ia{+h1rT6X?T@#S%ySBWRPi0C+aND0PGZ#)H$@40MIM|mD&Ulh;_*}CN+TP3R-mI z1}CUF4iA%5j0+4*5&Z;{V*R{J(6;WG9-3+ra#L3Ars@{*S;B)lAyISlB%MlD=)j)< zECFy7+aW4RrQ|qGiO^CyYR(ZEYoaV|+`LLQVRGS2q$<%-A~yw*jgqQCs-bzJWo0rz z0nHHtf}_d0le0>G2@cf&Jc>3jSSj%76jq~j6>b#~n^i4s7J?Oq&LO<)k}wD08#k_@ z@+m!>!)0Yk5ysnMi2xXGGM-S)Sr3qNrbJf}yny4WxMp(=DT;-RG|NOYc^=M5UMpLy z@(9v)86#R~wOrhvBuI>^n{aIo_u&u-f?>AESTsb5?KWC5btP_N4DE~;#w(~$O1R~+ zla4{r2Gl8XaOn09eSp3A;fv>~h52hejg{xl%p6kw*k#P0SReZANAFA6f72g0Pj(R;VAUG9x6-F*PO9XY<*(|2BfO&I;C>^!iT zy`UeiO_;wV+09$+u6GmcW5qpB2VL*Ct51A!g}gQJ`K8Ks{^3Qx8)WXfC_Q*R%YCw? z{~oxX|Bej4-ZAnxIJQt7E6XQ7*hXzRb?%2}XL>Jh{r0Ej7asX_Z|CHVX5Z^e(&>+R zdT95)ov;3VU0J*N?$3kk1Hwbp#L=NkHy)Ff|L#~`{fEkL-t?&!f6C~;GmH*yTRih8 zb@-*XX6|qI&QE`JZMtgg8XQ9-=#%$#i-rBtmF1%cH?4m^{mk&5wF}1<(BF^CJ(;to eSM+m{zux}ldF+kVN8`f>lCQiI9JzIt4gLpxjWRC) literal 0 HcmV?d00001