initial commit
This commit is contained in:
commit
47c42dc7a6
14 changed files with 490 additions and 0 deletions
25
secrets.nix.example
Normal file
25
secrets.nix.example
Normal file
|
|
@ -0,0 +1,25 @@
|
|||
{ pkgs, config, lib, ... }:
|
||||
|
||||
{
|
||||
# Forgejo
|
||||
services.forgejo.settings.database.PASSWORD = "changeme_forgejo_db";
|
||||
|
||||
# Stalwart Mail
|
||||
services.stalwart.settings.authentication.fallback-admin.secret = "changeme_stalwart_admin";
|
||||
|
||||
# Searx
|
||||
services.searx.settings.server.secret_key = "changeme_searx_secret";
|
||||
|
||||
# Minecraft RCON
|
||||
services.minecraft-servers.servers.fabric.serverProperties."rcon.password" = "changeme_rcon";
|
||||
|
||||
# Tailscale Auth Key (needs to be a file for the service usually, or use pre-auth)
|
||||
# For Tailscale, standard module uses 'authKeyFile'.
|
||||
# We can create a file in the store for it since this is an impure secrets file anyway.
|
||||
|
||||
# For Tailscale, let's just write valid one-liner to a file via environment.etc if needed,
|
||||
# or use the 'authKey' option if available (it is not, usually).
|
||||
# We will stick to environment.etc JUST for Tailscale or file-based secrets.
|
||||
environment.etc."secrets/tailscale-auth".text = "tskey-auth-PLACEHOLDER";
|
||||
services.tailscale.authKeyFile = "/etc/secrets/tailscale-auth";
|
||||
}
|
||||
Loading…
Add table
Add a link
Reference in a new issue