password-less login for rsync.net

2024-10-05 20:06:16 -07:00 · 2024-09-14 09:40:25 -07:00 · 2024-09-14 09:40:25 -07:00 · d84e57d9a2
commit d84e57d9a2
parent eda2998b0b
5 changed files with 20 additions and 0 deletions
--- a/home/private_dot_ssh/config.tmpl
+++ b/home/private_dot_ssh/config.tmpl
@ -1,6 +1,10 @@
 Host github.com
  AddKeysToAgent yes
  IdentityFile /run/agenix/git/github_personal 
+
+Host fm2120.rsync.net
+  AddKeysToAgent yes
+  IdentityFile /run/agenix/borg/rsync/id_rsa
 {{ if eq .chezmoi.hostname "kestrel" }}
 Host torus
  AddKeysToAgent yes
--- a/provision/hosts/torus/backup.nix
+++ b/provision/hosts/torus/backup.nix
@ -20,6 +20,16 @@
    owner = "${user}";
    group = "users";
  };
+  age.secrets."borg/rsync/id_rsa" = {
+    file = ../../secrets/borg/rsync/id_rsa.age;
+    owner = "${user}";
+    group = "users";
+  };
+  age.secrets."borg/rsync/id_rsa.pub" = {
+    file = ../../secrets/borg/rsync/id_rsa.pub.age;
+    owner = "${user}";
+    group = "users";
+  };

  # Password-less login for user
  users.users."${user}".openssh.authorizedKeys.keyFiles = [
@ -31,6 +41,10 @@
    Host kestrel
      AddKeysToAgent yes
      IdentityFile /run/agenix/ssh/torus/id_ed25519 
+
+    Host fm2120.rsync.net
+      AddKeysToAgent yes
+      IdentityFile /run/agenix/borg/rsync/id_rsa
  '';
 }
          
--- a/provision/secrets/borg/rsync/id_rsa.age
+++ b/provision/secrets/borg/rsync/id_rsa.age
--- a/provision/secrets/borg/rsync/id_rsa.pub.age
+++ b/provision/secrets/borg/rsync/id_rsa.pub.age
--- a/provision/secrets/secrets.nix
+++ b/provision/secrets/secrets.nix
@ -22,5 +22,7 @@ in
  "ssh/torus/id_ed25519.age".publicKeys = [ tstarr_torus ] ++ systems;
  "ssh/torus/id_ed25519.pub.age".publicKeys = users ++ systems;
  "borg/torus/password.age".publicKeys = [ tstarr_torus ] ++ systems;
+  "borg/rsync/id_rsa.age".publicKeys = users ++ systems;
+  "borg/rsync/id_rsa.pub.age".publicKeys = users ++ systems;
 }