From ba010b3fbb85492d87866beb4494df17715f6a23 Mon Sep 17 00:00:00 2001 From: blake Date: Tue, 7 Oct 2025 23:05:38 -0500 Subject: [PATCH] 68 current 2025-10-07 22:42:25 25.05.20251001.5b5be50 6.12.49 * --- flake.nix | 2 +- hosts/snowbelle/configuration.nix | 2 +- modules/homelab/services/default.nix | 2 ++ modules/homelab/services/default.nix.template | 7 +++++++ secrets/secrets.yaml | 6 ++++-- 5 files changed, 15 insertions(+), 4 deletions(-) diff --git a/flake.nix b/flake.nix index 74b024c..b14e8ba 100644 --- a/flake.nix +++ b/flake.nix @@ -1,6 +1,6 @@ # flake for blakes nixos config # define new devices in outputs -# generation: 67 current 2025-10-07 22:36:28 25.05.20251001.5b5be50 6.12.49 * +# generation: 68 current 2025-10-07 22:42:25 25.05.20251001.5b5be50 6.12.49 * { description = "blakes nix config"; inputs = { diff --git a/hosts/snowbelle/configuration.nix b/hosts/snowbelle/configuration.nix index 1ad6823..aacbc3d 100644 --- a/hosts/snowbelle/configuration.nix +++ b/hosts/snowbelle/configuration.nix @@ -31,7 +31,7 @@ services = { jellyfin.enable = true; vaultwarden.enable = true; - vaultwarden.port = 7701; + gitea.enable = true; sonarr.enable = true; sonarr.port = 7105; prowlarr.enable = true; diff --git a/modules/homelab/services/default.nix b/modules/homelab/services/default.nix index 30ac3e3..57ef116 100644 --- a/modules/homelab/services/default.nix +++ b/modules/homelab/services/default.nix @@ -6,6 +6,7 @@ imports = [ ./jellyfin/default.nix ./vaultwarden/default.nix + ./gitea/default.nix ./arr/prowlarr/default.nix ./arr/sonarr/default.nix ]; @@ -13,6 +14,7 @@ modules.services.jellyfin.enable = lib.mkDefault false; modules.services.vaultwarden.enable = lib.mkDefault false; + modules.services.gitea.enable = lib.mkDefault false; modules.services.prowlarr.enable = lib.mkDefault false; modules.services.sonarr.enable = lib.mkDefault false; } diff --git a/modules/homelab/services/default.nix.template b/modules/homelab/services/default.nix.template index 24e139d..fa88e89 100644 --- a/modules/homelab/services/default.nix.template +++ b/modules/homelab/services/default.nix.template @@ -79,6 +79,13 @@ in }; }; + sops.secrets = { + "_" = { + owner = ""; + group = ""; + }; + }; + # add to backups modules.system.backups.paths = lib.mkIf cfg.backup [ data_dir ]; }; diff --git a/secrets/secrets.yaml b/secrets/secrets.yaml index 6c276c9..f2819ac 100644 --- a/secrets/secrets.yaml +++ b/secrets/secrets.yaml @@ -17,6 +17,8 @@ openvpn_pia_mexico_crt: "" openvpn_pia_mexico_crl: ENC[AES256_GCM,data:zmamIuZLOknT0GaEOxiwLSTAVRICxELuSgyJRigw4F3K368pttp07Frrt78ifVNMwtlCZMcMf0vMnXzsoWRvZv4VykgURVzlp/l66uYKmXuLtk349sNe79M/msLkZZEIlMtG47YxYZ92TKZdo0/u42nN3TtRNk2qt9V26AfOdcUxbz48AjFGnrxCHnsNGFES2EE5+6XRLRogsM3mBiozGjGA6S3xtOYpfXlQyyeNcI0I8a6qUWKkdRCOjTt4RsZ+aRiAB8bAXh/5MrYlZAUGUmRfmhlCXOGNNPSBHsqyOanWsi6jZkGJ61Y2qZMLj8VginFDWGbruK/lE3i6h8vBb40NxeoDNUPkcMGWRbUcdnFMUDCPrMMu80eRT2qe41806Dtx9C9nnyyl7MSeQ59Pk/fxXUeDUEzAew6xlcGPX1CtQQgUCCvUTarkWUNzZZqoveurT5k1GuVInASwWEjb+rTIYzjNBuFs55lIQhA+RuyzrdzY3Xfss4O7agREQCY4OqECT2IdtRhQvWch02gmFhjlsy8qk20pfkRo/uZBHOPZa+I9MB9ciNEFNN3FSg3/eJ0lfwZ6ZzcfPgs8FEsQVQzayaNpg8foLV9Ea0MQ87asSG+8nw6nc5KcVbsvkOBbWm5dojZ0laGvcQuSOxT12DFeNEjwCy3zi7M7b3keJvbx74YljUWXBnAN6HzTtLiJ3yLwE4ry/sDown9sHqoTaLSEXysIh2gUdDCU0CU1NY8baSlmeiToUw1GKFZg6EwdknT17Qj3tqNIa75V/cc+lmH9Lj1eAVONZUoFVBk4I0dDyZzVdfyyl2KyvM3iA90LGX6D3/2KX+vx23J+Ev7pcU537bXBesuZxVDQgLsRwnZDAre2AVkSdD4N9GM+qX6TpMR7XuwJ3YD1z39Jlg6dg4XAnh/EIlX3uYe75hxCEzRJsu/6xeYRsav59VJ9Kx7sxtOSpWhXl2TVYnmFWRwxy9Q5wwZs83mrDATtuSh+9BlT/9Pf1oRL1CnnTrrZLHotkKyD7bs80y5UFV03kgGwUbSCuk7S0YJI/PxKW7Mr1OZeUxh9OhcAqNxHV0wipLWqcJwQJ0pDiHOcySWASf6YadhHWxnBwUH8cy1XJ8mIkVAmWcJivzo4Z8CVyojPmTJicF4fp3/9gLj4yyzC+l5zQhJ8eAeh61mJyp/2tgSSEwPiPwr+vTsF8laYw+5hGhywFeuAxxhZ+5pQS9240um6EQ/Vf1UI1TOyyzHAPAdTMZmxS7tBAqajZLsMHR103Z1Fp8S/JRmExR+45jhKq9zLq14ngVAeffhCJzaHstQmtqR6sh/t3lUapk3K6yvIL3TfERNNi4D6yNuFq3ZJBSVgjjF/aqz7qFDevOWhmNgPoex9nivktnMnyPny9yJiZ1Miau8Ig58d0ERT3dcr+CqwxeZ1VKDIX9BAFt/vXYYJjrD9BwGRs5/CWJflkekuRtFPrWHybvs/nzudJ8ttdkJkkf1LwDN/pIwgv/AOCb6Ssjz2yg+gQRgPZ4kcmraHfF9U8damDoGGSGk6OnkOIoVhm5ytiZdgPSbT2KxvdllskF0rfZQPwKfgBygNLKcGMxJJthlQSWNKYLIUsn4/hVu3kAJb,iv:3aP68RCGWePhZC60IL1J5/d8kSPGzktfaDCek0NliQo=,tag:THNqQ501I4ERq/C4vXjg4A==,type:str] #ENC[AES256_GCM,data:CO5nrcDbgymnEmCvuTexOBEMncuNM5lQ,iv:6HrxqSN6e7ODuz09MIFgPbIqDCKQySRDaKk5Wdu4HoQ=,tag:JBRjZeEdOg+trohfanO6Mg==,type:comment] vaultwarden_admin_token: ENC[AES256_GCM,data:G1v3N064ci0Fw5EtTzaryailWpsv6f4w6eoHp2vjXIBtIlScdQk1Q0W+eDNRk8Wr2C3ysTXQNbyYismNsls+jeS3W+YqkKL4fnh3a5UTzQrMqvaH11n3ak0X9R9vmt+ZJXBrUrAOKJ6RPHJJSWenhjDB77kwEdQ=,iv:f8X+x/AdmZ3b3dtcSFrxGgA2tCgDRpgddjlVu3mdCmM=,tag:c0MXljVvhwOdvrb/8hWlsQ==,type:str] +#ENC[AES256_GCM,data:2ESzSsQZqKdjD7OXN8ZPThj6g9acJREe,iv:aDFPB0vs8NNo8ExLcJw7qtQvWbCb1XK6TJrHSK86qss=,tag:z+dypHAGUjEXP7Y9MHYWwg==,type:comment] +gitea_database_password: ENC[AES256_GCM,data:nhFn0/G7gW5rk996OZzlcTt7T9KMbP8MNM+ReFC8w1H9ZqBSJUbs3K+n68uQVrkOVSXE0cKpOR1VbQ+i+46z3g==,iv:bT4GRZZ83v47/EmeV2KaUFo+4qTT4T2AktFUpPiZdF4=,tag:OC9TInkAr1egM+xnBDizxw==,type:str] sops: age: - recipient: age14gfh682a7m7jfp3qrulql03x5rs7yedwmxwksxrrmgjsunstyuksqx93pz @@ -28,7 +30,7 @@ sops: U0tmdFBuZnJES3piOTZNV0VKQmQ0eVUKCWRQ/flLzmpC64WyLoipklZBmrkpYiUg PRu+itNolpPTHm96pe+P93g2iP0wgekG0cX21wkiU2xaLF3dY2FEIA== -----END AGE ENCRYPTED FILE----- - lastmodified: "2025-10-08T03:34:49Z" - mac: ENC[AES256_GCM,data:/saMEuctXHechhYcY148DrakEpI3hbwgBPnxDtbdIqQGgQa4bp+9h1vygmF2wLy+J8zkPYXQcmeYvBRV8AiVxv5YeSvXzxXxjB+eOzIrvz/KFQfJoFujRWxd3aVsYcMs2zL5n2inPt+gbmk0r/tUcF3+idhkKCoZoyju/WRSdrE=,iv:9gOxdX2sDZ1TE+1DI41K7WWmPkocczNSMdiXqI+SnKs=,tag:l1rUDbJOu5DFh+AbMQhiPA==,type:str] + lastmodified: "2025-10-08T03:59:21Z" + mac: ENC[AES256_GCM,data:X2XgLYfRL2uaHwRtG1dBeRK9/1n6eVt/1OYLpR62FgBpp4E83Qjd3kKXAF3GhFfp8EHk8mFfk27oNYA5QQU+zMIG+LIysp028X9ts8dyCEk33Nt98kk5OIF25JMvbD2qUziLh5x3zBU0mNkHd8kzjn8mF6eh0t3U2ZgS+3BVuVw=,iv:ZdWw5o9weYYBoqAQfYxwtVBmN8sfxxALGw9fhQJqBXk=,tag:rW6Un80hcTAlJQsc14vwCA==,type:str] unencrypted_suffix: _unencrypted version: 3.10.2