frieder.hannenheim/fruitbasket
1
0
Fork 0
forked from wurzel/fruitbasket
Code Pull requests Activity

more test vm config

Browse source
This commit is contained in:
revol-xut 2022-11-11 16:39:48 +01:00
parent ab8e827aca
commit 7279ea13e9
No known key found for this signature in database
GPG key ID: 4F56FF7759627D07
8 changed files with 116 additions and 72 deletions
Download patch file Download diff file Expand all files Collapse all files

2
modules/base.nix
View file

@ -38,7 +38,7 @@
../keys/ssh/jannusch-arch
../keys/ssh/tassilo
../keys/ssh/jonasga
../keys/shh/helene
../keys/ssh/helene
];
};

6
modules/vm.nix
View file

@ -6,6 +6,7 @@
];
users.users.root.hashedPassword = "";
users.users.root.initialPassword = "";
users.mutableUsers = false;
networking.useDHCP = lib.mkForce false;
@ -14,12 +15,13 @@
};
networking.defaultGateway = lib.mkForce null;
sops.defaultSopsFile = lib.mkForce ../secrets/quitte-vm.yaml;
sops.defaultSopsFile = lib.mkForce ../secrets/test.yaml;
sops.age.sshKeyPaths = lib.mkForce [ ];
sops.gnupg.sshKeyPaths = lib.mkForce [ ];
sops.age.keyFile = lib.mkForce "${../keys/gpg/test.age}";
sops.age.keyFile = lib.mkForce "${../keys/test.age}";
sops.age.generateKey = lib.mkForce false;
# don't use production endpoint for test vm, to avoid rate limiting
security.acme.defaults.server = "https://acme-staging-v02.api.letsencrypt.org/directory";