ugit

 1
 2
 3
 4
 5
 6
 7
 8
 9
10
11
12
13
14
15
16
17
18


diff --git a/flake.nix b/flake.nix
index b3dc1cbd66ba4ef57d02e1e921bf9894f95be3f6..77adb9608f4a51a0dcf5f61a789a02076da535df 100644
--- a/flake.nix
+++ b/flake.nix
@@ -83,7 +83,12 @@           inputs.agenix.nixosModules.default
           ./jasmine
           beszelAgent
         ];
-        gunpowder.imports = [ ./gunpowder ];
+        gunpowder.imports = [
+          inputs.agenix.nixosModules.default
+          inputs.tailproxy.nixosModules.default
+          ./gunpowder
+          beszelAgent
+        ];
         shincha =
           { pkgs, ... }:
           {

 1
 2
 3
 4
 5
 6
 7
 8
 9
10
11
12
13
14
15


diff --git a/gunpowder/beszel.nix b/gunpowder/beszel.nix
new file mode 100644
index 0000000000000000000000000000000000000000..e7bc06397b0e5d4122a6a19e9280770a4c1ac2dc
--- /dev/null
+++ b/gunpowder/beszel.nix
@@ -0,0 +1,9 @@
+{ config, ... }:
+{
+  age.secrets.beszel-gunpowder.file = ../secrets/beszel-gunpowder.age;
+  services.beszel.agent = {
+    enable = true;
+    environment.LOG_LEVEL = "info";
+    environmentFile = config.age.secrets.beszel-gunpowder.path;
+  };
+}

 1
 2
 3
 4
 5
 6
 7
 8
 9
10
11
12
13
14
15
16
17
18
19
20
21


diff --git a/gunpowder/default.nix b/gunpowder/default.nix
index ae5a619b4d9d4a9786b351d064a826b9f14dcf35..ae0bfcc6fdfda769b06a23ae1092b24ff122d39d 100644
--- a/gunpowder/default.nix
+++ b/gunpowder/default.nix
@@ -4,7 +4,10 @@   username = "jolheiser";
   key = "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIJh5aUDN/KN28+4tbayXRQliLyKFZaCZtUMEBNaJfHYj";
 in
 {
-  imports = [ ./hardware.nix ];
+  imports = [
+    ./beszel.nix
+    ./hardware.nix
+  ];
 
   boot = {
     kernelPackages = pkgs.linuxPackages_latest;
@@ -131,4 +134,3 @@   environment.systemPackages = with pkgs; [ qbittorrent ];
 
   system.stateVersion = "22.11";
 }
-

 1
 2
 3
 4
 5
 6
 7
 8
 9
10
11
12
13
14
15


diff --git a/secrets/beszel-gunpowder.age b/secrets/beszel-gunpowder.age
new file mode 100644
index 0000000000000000000000000000000000000000..342f510a49907881a399ae1ebea9c9c712595aff
--- /dev/null
+++ b/secrets/beszel-gunpowder.age
@@ -0,0 +1,7 @@
+age-encryption.org/v1
+-> ssh-ed25519 E8j6/g zstjpCd+Y2xfpYa4VO8r7D1Spin92xUhJkn67o+5RiM
+aI9dh8Wv3a0wZDiOHAzlE0iqesPkF+qTLYcGJCBb6qs
+-> ssh-ed25519 xUMv2w qLBRbrSYvfsqYVvzsIbMxiJr38iC/A3MC5IO+Z0ONV4
+evuLqI56sHR18XUn5txE1Zy0gAJYD0IBu3wfmbXjpz8
+--- HjrNNXSuOKCzwaOxrO66zC/3VZUYy+4I4jleyyx9KRY
+p�����2ۡ#���:T1V!:L�"5\��`�莓&��H�(%����?��W�6W�_g)7@a:�������:|��MP��Z�*L��t��)��Y�=@��ʵq)E
�*H�J�{k�
\ No newline at end of file

 1
 2
 3
 4
 5
 6
 7
 8
 9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29


diff --git a/secrets/secrets.nix b/secrets/secrets.nix
index b3e6d818bd78c001e8142d9891f3bddf229627ba..474e2a985c790f069c6ef8c870ac5518dc578662 100644
--- a/secrets/secrets.nix
+++ b/secrets/secrets.nix
@@ -3,6 +3,7 @@   jolheiser = "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIKrPUqk9v7FE7OgMDaOMdlnItiXSDkmS+eU94RzQFiMS";
   dragonwell = "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIN32Cwxer2AOGvEqSqXSPp49gj1VtR7G2XmPnmXj6o53";
   shincha = "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIBikiSP5UIoHgjZejxSt/ce2FxnYk9VGDW+h12QvefJ3";
   jasmine = "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIE4koC93ixwkFzMK+kYLk2A6+xn6xprzkk49k+avRZkn";
+  gunpowder = "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAILZxjkZLj/9xvmg1enK+B7k8qf6Px0j4kTZ2caQfYmB1";
 
   dragonwellKeys = [
     jolheiser
@@ -16,6 +17,10 @@   jasmineKeys = [
     jolheiser
     jasmine
   ];
+  gunpowderKeys = [
+    jolheiser
+    gunpowder
+  ];
 
 in
 {
@@ -30,4 +35,5 @@   "pocket-id.age".publicKeys = dragonwellKeys;
   "beszel-shincha.age".publicKeys = shinchaKeys;
   "beszel-dragonwell.age".publicKeys = dragonwellKeys;
   "beszel-jasmine.age".publicKeys = jasmineKeys;
+  "beszel-gunpowder.age".publicKeys = gunpowderKeys;
 }

Home