Commit `6d5e49d63d82`

Vincent Demeester <vincent@sbr.pm>

2021-10-29 15:43:05

systems: start to use toml for aomi too

Signed-off-by: Vincent Demeester <vincent@sbr.pm>

main

1 parent 30b1af7

Changed files (2)

systems

hosts

aomi.nix

naruhodo.nix

@@ -15,6 +15,7 @@ let
   endpointIP = strings.optionalString secretCondition (import secretPath).wg.endpointIP;
   endpointPort = if secretCondition then (import secretPath).wg.listenPort else 0;
   endpointPublicKey = strings.optionalString secretCondition (import secretPath).wireguard.kerkouane.publicKey;
+  metadata = importTOML ../../ops/hosts.toml;
 in
 {
   imports = [
@@ -51,9 +52,6 @@ in
   };
 
   sops.defaultSopsFile = ../../secrets/secrets.yaml;
-  sops.secrets.example_key = {
-    sopsFile = ../../secrets/syncthing.yaml;
-  };
 
   boot = {
     kernelPackages = pkgs.linuxPackages_latest;
@@ -126,17 +124,18 @@ in
     virtmanager
     # force xbacklight to work
     acpilight
+    steam-run
   ];
 
   services = {
-    syncthing.guiAddress = "${ip}:8384";
+    syncthing.guiAddress = "${metadata.hosts.aomi.wireguard.addrs.v4}:8384";
     smartd = {
       enable = true;
       devices = [{ device = "/dev/nvme0n1"; }];
     };
     wireguard = {
       enable = true;
-      ips = ips;
+      ips = [ "${metadata.hosts.aomi.wireguard.addrs.v4}/24" ];
       endpoint = endpointIP;
       endpointPort = endpointPort;
       endpointPublicKey = endpointPublicKey;

@@ -164,7 +164,6 @@ in
     acpilight
   ];
 
-  # warnings = "metadata… ${metadata.hosts.naruhodo.wireguard.addrs.v4}";
   services = {
     wireguard = {
       enable = true;

Commit 6d5e49d63d82

Commit `6d5e49d63d82`