From a815d65d26ba059d33ff81c72fe3e7841b0bee79 Mon Sep 17 00:00:00 2001
From: Tyler Starr <starrtyler88@gmail.com>
Date: Sat, 14 Sep 2024 09:45:06 -0700
Subject: [PATCH] add keys for kestrel rsync login

---
 provision/hosts/kestrel/backup.nix | 14 ++++++++++++++
 1 file changed, 14 insertions(+)

diff --git a/provision/hosts/kestrel/backup.nix b/provision/hosts/kestrel/backup.nix
index 1220e930..1ae3fc40 100644
--- a/provision/hosts/kestrel/backup.nix
+++ b/provision/hosts/kestrel/backup.nix
@@ -15,6 +15,16 @@
     owner = "${user}";
     group = "users";
   };
+  age.secrets."borg/rsync/id_rsa" = {
+    file = ../../secrets/borg/rsync/id_rsa.age;
+    owner = "${user}";
+    group = "users";
+  };
+  age.secrets."borg/rsync/id_rsa.pub" = {
+    file = ../../secrets/borg/rsync/id_rsa.pub.age;
+    owner = "${user}";
+    group = "users";
+  };
 
   # Password-less logins for backup
   users.users."${user}".openssh.authorizedKeys.keyFiles = [
@@ -26,6 +36,10 @@
     Host torus 
       AddKeysToAgent yes
       IdentityFile /run/agenix/ssh/kestrel/id_ed25519 
+
+    Host fm2120.rsync.net
+      AddKeysToAgent yes
+      IdentityFile /run/agenix/borg/rsync/id_rsa
   '';
 
   systemd.tmpfiles.rules = [