Commit 2cb6894f9638

Vincent Demeester <vincent@sbr.pm>
2020-06-06 18:07:51
wireguard: move keys to secrets/wireguard
Signed-off-by: Vincent Demeester <vincent@sbr.pm>
main
1 parent 26fd2b5
Changed files (4)
modules
profiles
wireguard.server.nix
services
wireguard.client.nix
secrets
wireguard
.placeholder
.gitignore
modules/profiles/wireguard.server.nix
@@ -33,7 +33,7 @@ in
       "wg0" = {
         ips = allowedIPs;
         listenPort = listenPort;
-        privateKeyFile = "/etc/nixos/wireguard.private.key";
+        privateKeyFile = "/etc/nixos/secrets/wireguard/private.key";
         peers = peers;
       };
     };
modules/services/wireguard.client.nix
@@ -56,7 +56,7 @@ in
     networking.wireguard.interfaces = {
       wg0 = {
         ips = cfg.ips;
-        privateKeyFile = "/etc/nixos/wireguard.private.key";
+        privateKeyFile = "/etc/nixos/secrets/wireguard/private.key";
         peers = [
           {
             publicKey = cfg.endpointPublicKey;
secrets/wireguard/.placeholder
.gitignore
@@ -12,7 +12,6 @@ assets/*
 private/*
 secrets/*
 networking.nix
-wireguard*.key
 .secrets
 hardware-configuration.nix
 /key.bin