lilith/nixos
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

small sops file fix

Browse source
This commit is contained in:
Lilith 2026-01-15 13:07:11 +01:00
parent e153dabbc9
commit 47952c9dc5
No known key found for this signature in database
GPG key ID: 272C807BD91F8446
3 changed files with 16 additions and 6 deletions
Download patch file Download diff file Expand all files Collapse all files

10
server/wireguard.nix
View file

@ -1,17 +1,19 @@
{ config, lib, ... }:
{
options.server.wireguard-bridge.enable = lib.mkEnableOption "Enables Wireguard host functionality";
options.server.wireguard-bridge.ip = lib.mkOption;
options.server.wireguard-bridge.ip = lib.mkOption { };
config = lib.mkIf config.server.wireguard-bridge {
sops.secrets."wireguard/bridge/private" = { };
config = lib.mkIf config.server.wireguard-bridge.enable {
sops.secrets."wireguard/bridge/private" = {
sopsFile = ../hosts/${config.networking.hostName}/secrets/default.yaml;
};
networking.firewall.allowedUDPPorts = [ 51821 ];
networking.wireguard.interfaces = {
bridge = {
ips = [ config.server.wireguard-bridge.ip ];
listenPort = 51821;
privateKeyFile = config.sops.secrets."wireguard-bridge/private".path;
privateKeyFile = config.sops.secrets."wireguard/bridge/private".path;
peers = [
{