Commit 6ea73fc25c4a
Changed files (3)
systems/aion/extra.nix
@@ -86,18 +86,19 @@ in
owner = "root";
group = "root";
};
- "xmpp-research-bot-password" = {
- file = ../../secrets/aion/xmpp-research-bot-password.age;
- mode = "400";
- owner = "vincent";
- group = "users";
- };
- "anthropic-api-key" = {
- file = ../../secrets/aion/anthropic-api-key.age;
- mode = "400";
- owner = "vincent";
- group = "users";
- };
+ # TODO: Uncomment after creating secrets with agenix
+ # "xmpp-research-bot-password" = {
+ # file = ../../secrets/aion/xmpp-research-bot-password.age;
+ # mode = "400";
+ # owner = "vincent";
+ # group = "users";
+ # };
+ # "anthropic-api-key" = {
+ # file = ../../secrets/aion/anthropic-api-key.age;
+ # mode = "400";
+ # owner = "vincent";
+ # group = "users";
+ # };
};
services = {
@@ -278,16 +279,16 @@ in
};
};
- # XMPP Research Bot
+ # XMPP Research Bot (disabled until secrets are created)
xmpp-research-bot = {
- enable = true;
- jid = "researchbot@xmpp.sbr.pm";
- ownerJid = "vincent@xmpp.sbr.pm";
- passwordFile = config.age.secrets."xmpp-research-bot-password".path;
- apiKeyFile = config.age.secrets."anthropic-api-key".path;
- inboxPath = "/home/vincent/desktop/org/inbox.org";
- user = "vincent";
- group = "users";
+ enable = false; # TODO: Enable after creating secrets with agenix
+ # jid = "researchbot@xmpp.sbr.pm";
+ # ownerJid = "vincent@xmpp.sbr.pm";
+ # passwordFile = config.age.secrets."xmpp-research-bot-password".path;
+ # apiKeyFile = config.age.secrets."anthropic-api-key".path;
+ # inboxPath = "/home/vincent/desktop/org/inbox.org";
+ # user = "vincent";
+ # group = "users";
};
navidrome = {
systems/aomi/extra.nix
@@ -36,6 +36,9 @@
# Binary cache
../../modules/harmonia
+
+ # XMPP Research Bot
+ ../../modules/xmpp-research-bot
];
# Firewall is enabled in openshift-port-forward.nix
@@ -62,6 +65,18 @@
owner = "root";
group = "root";
};
+ age.secrets."xmpp-research-bot-password" = {
+ file = ../../secrets/aomi/xmpp-research-bot-password.age;
+ mode = "400";
+ owner = "vincent";
+ group = "users";
+ };
+ age.secrets."anthropic-api-key" = {
+ file = ../../secrets/aomi/anthropic-api-key.age;
+ mode = "400";
+ owner = "vincent";
+ group = "users";
+ };
# TODO make it an option ? (otherwise I'll add it for all)
users.users.vincent.linger = true;
@@ -107,6 +122,18 @@
configFile = "/home/vincent/.config/nixpkgs-automation/branches.conf";
};
+ # XMPP Research Bot
+ services.xmpp-research-bot = {
+ enable = true;
+ jid = "researchbot@xmpp.sbr.pm";
+ ownerJid = "vincent@xmpp.sbr.pm";
+ passwordFile = config.age.secrets."xmpp-research-bot-password".path;
+ apiKeyFile = config.age.secrets."anthropic-api-key".path;
+ inboxPath = "/home/vincent/desktop/org/inbox.org";
+ user = "vincent";
+ group = "users";
+ };
+
services = {
logind.settings.Login = {
HandleLidSwitch = "ignore";
secrets.nix
@@ -143,8 +143,8 @@ in
"secrets/sakhalin/homeassistant-prometheus-token.age".publicKeys = users ++ [ sakhalin ];
"secrets/demeter/mosquitto-homeassistant-password.age".publicKeys = users ++ [ demeter ];
"secrets/aion/restic-aix-password.age".publicKeys = users ++ [ aion ];
- "secrets/aion/xmpp-research-bot-password.age".publicKeys = users ++ [ aion ];
- "secrets/aion/anthropic-api-key.age".publicKeys = users ++ [ aion ];
+ "secrets/aomi/xmpp-research-bot-password.age".publicKeys = users ++ [ aomi ];
+ "secrets/aomi/anthropic-api-key.age".publicKeys = users ++ [ aomi ];
"secrets/rhea/restic-aix-password.age".publicKeys = users ++ [ rhea ];
# Harmonia binary cache signing keys