commit 2cb6894f963826bbd29ae60bc83f3d77310ee265 parent 26fd2b56727cc8527e5fbdb3d728e16600c0b892 Author: Vincent Demeester <vincent@sbr.pm> Date: Sat, 6 Jun 2020 18:07:51 +0200 wireguard: move keys to secrets/wireguard Signed-off-by: Vincent Demeester <vincent@sbr.pm> Diffstat:
M | .gitignore | | | 1 | - |
M | modules/profiles/wireguard.server.nix | | | 2 | +- |
M | modules/services/wireguard.client.nix | | | 2 | +- |
A | secrets/wireguard/.placeholder | | | 0 |
4 files changed, 2 insertions(+), 3 deletions(-)
diff --git a/.gitignore b/.gitignore @@ -12,7 +12,6 @@ assets/* private/* secrets/* networking.nix -wireguard*.key .secrets hardware-configuration.nix /key.bin diff --git a/modules/profiles/wireguard.server.nix b/modules/profiles/wireguard.server.nix @@ -33,7 +33,7 @@ in "wg0" = { ips = allowedIPs; listenPort = listenPort; - privateKeyFile = "/etc/nixos/wireguard.private.key"; + privateKeyFile = "/etc/nixos/secrets/wireguard/private.key"; peers = peers; }; }; diff --git a/modules/services/wireguard.client.nix b/modules/services/wireguard.client.nix @@ -56,7 +56,7 @@ in networking.wireguard.interfaces = { wg0 = { ips = cfg.ips; - privateKeyFile = "/etc/nixos/wireguard.private.key"; + privateKeyFile = "/etc/nixos/secrets/wireguard/private.key"; peers = [ { publicKey = cfg.endpointPublicKey; diff --git a/secrets/wireguard/.placeholder b/secrets/wireguard/.placeholder