tvl-depot/users/tazjin/secrets/secrets.nix
Vincent Ambo adf8a7da87 feat(tazjin/nixos): issue wildcard cert for yggdrasil services
Issue a wildcard certificate using the Yandex Cloud DNS plugin (which is where
DNS for tazj.in is hosted).

Change-Id: I44fa48add660f4f4324ec4b056a81d78c45ff4f4
Reviewed-on: https://cl.tvl.fyi/c/depot/+/12481
Reviewed-by: tazjin <tazjin@tvl.su>
Tested-by: BuildkiteCI
2024-09-14 23:47:29 +00:00

17 lines
450 B
Nix

let
myKeys = import ../keys { };
allKeys = [
# local keys
myKeys.tverskoy_ed25519
myKeys.zamalek_ed25519
myKeys.khamovnik_agenix
# koptevo
"ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIMw2ZfdNZCXCOtbQNT6hztXCIkTcO9MBrOuDqMlmGOYK root@koptevo"
];
in
{
"geesefs-tazjins-files.age".publicKeys = allKeys;
"miniflux.age".publicKeys = allKeys;
"tgsa-yandex.age".publicKeys = allKeys;
"lego-yandex.age".publicKeys = allKeys;
}