]> git.immae.eu Git - perso/Immae/Config/Nix.git/blobdiff - modules/private/system/quatresaisons.nix
projects / perso / Immae / Config / Nix.git / blobdiff
? search:
summary | shortlog | log | commit | commitdiff | tree
raw | inline | side by side
Add flake skeletons
[perso/Immae/Config/Nix.git] / modules / private / system / quatresaisons.nix
diff --git a/modules/private/system/quatresaisons.nix b/modules/private/system/quatresaisons.nix
index 2938a342c4187ff41c65d9f806c4d244f6fba9b7..8d5dd9af4d1dfc60d35d5e549b9c7994d7246b43 100644 (file)
--- a/modules/private/system/quatresaisons.nix
+++ b/modules/private/system/quatresaisons.nix
@@ -1,4 +1,4 @@
-{ config, pkgs, lib, ... }:
+{ config, pkgs, lib, flakes, ... }:
 let
   serverSpecificConfig = config.myEnv.serverSpecific.quatresaisons;
   yarnModules = pkgs.yarn2nix-moretea.mkYarnModules rec {
@@ -208,8 +208,32 @@ in
     PATH_PASSWD_PROG = "/run/wrappers/bin/passwd";
     buildFlags = [ "SSH_KEYSIGN=/run/wrappers/bin/ssh-keysign" ];
   });
+  programs.ssh.extraConfig = ''
+    Host xdej-backup
+            User immae
+            IdentityFile /root/.ssh/id_ed25519_xdej
+            Hostname localhost
+            HostKeyAlias xdej-backup
+            Port 2218
+            ProxyJump quatra-for-xdej-backup
+    Host quatra-for-xdej-backup
+            User bouya
+            Hostname 4a.salle-s.org
+            IdentityFile /root/.ssh/id_ed25519_xdej
+  '';
+  programs.ssh.knownHosts."4a.salle-s.org" = {
+    publicKey = "ssh-rsa AAAAB3NzaC1yc2EAAAABIwAAAIEAmF4DB20bfD3DdobUtjo9UoGGw6OICJY0Nb+tQo+3bwXskwBhx+KLAK6K9YKBTh0IrWAbfgQN1K48YNz0Lr7SF8yig3/WynuS323USsU9a7QjdIZ5VIsXWxFICmbfaN3OnCNJ1r2FvBrOKj6hZ5uCRBFm1zFz/smefWIjq0XJIiE=";
+  };
+  programs.ssh.knownHosts."xdej-backup-rsa" = {
+    extraHostNames = [ "xdej-backup" ];
+    publicKey = "ssh-rsa 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";
+  };
+  programs.ssh.knownHosts."xdej-backup-ed25519" = {
+    extraHostNames = [ "xdej-backup" ];
+    publicKey = "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIN4vTu1P32+Kx+TpWG1G9WiOknjSyFEBCaE5nQInxG5j";
+  };
 
-  imports = builtins.attrValues (import ../..) ++
+  imports = builtins.attrValues (import ../.. flakes) ++
     [ ./quatresaisons/nextcloud.nix ./quatresaisons/databases.nix ];
 
   myEnv = import ../../../nixops/secrets/environment.nix;
@@ -457,6 +481,9 @@ in
     install -d -m 0750 -o wwwrun -g wwwrun /var/lib/php/sessions
   '';
 
+  services.cron.systemCronJobs = [
+    "0 22 * * * root ${./quatresaisons/xdej-backup.sh}"
+  ];
   services.phpfpm = {
     phpOptions = ''
       session.save_path = "/var/lib/php/sessions"
My infrastructure configuration