]> git.immae.eu Git - perso/Immae/Config/Nix.git/blobdiff - modules/private/vpn/default.nix
projects / perso / Immae / Config / Nix.git / blobdiff
? search:
summary | shortlog | log | commit | commitdiff | tree
raw | inline | side by side
Use attrs for secrets instead of lists
[perso/Immae/Config/Nix.git] / modules / private / vpn / default.nix
diff --git a/modules/private/vpn/default.nix b/modules/private/vpn/default.nix
index a9051afeed3cee193f13f04907846fe50fe22405..d4b197d2e9fc3bb33ebd4697788941bb3660c0c6 100644 (file)
--- a/modules/private/vpn/default.nix
+++ b/modules/private/vpn/default.nix
@@ -8,22 +8,20 @@ in
   };
 
   config = lib.mkIf cfg.enable {
-    secrets.keys = [
-      {
-        dest = "tinc/key.priv";
+    secrets.keys = {
+      "tinc/key.priv" = {
         user = "root";
         group = "root";
         permissions = "0400";
         text = config.myEnv.vpn.eldiron.privateKey;
-      }
-      {
-        dest = "tinc/key.pub";
+      };
+      "tinc/key.pub" = {
         user = "root";
         group = "root";
         permissions = "0400";
         text = config.myEnv.vpn.eldiron.publicKey;
-      }
-    ];
+      };
+    };
     networking.firewall.allowedTCPPorts = [ 655 1194 ];
     system.activationScripts.tinc = let
       configFiles = pkgs.runCommand "tinc-files" {
My infrastructure configuration