infra - nix configuration for my machines

	Commit message (Collapse)	Author	Age	Files	Lines
*	ref(nix): rename lib/ to nix/	Franck Cuny	2022-06-09	1	-41/+0
\| \| \| \| \| \|	Change-Id: If1e608b89b39bd5a53a37b873833a7ea881cb418 Reviewed-on: https://cl.fcuny.net/c/world/+/298 Reviewed-by: Franck Cuny <franck@fcuny.net>
*	secrets: move the actual secrets with hosts config	Franck Cuny	2022-04-13	1	-2/+1
\| \| \| \| \| \|	Having the secrets closer to the host is easier to manage. At the moment I don't have secrets that are shared across multiple hosts, so that's an OK approach.
*	secrets: move all the secrets under module/	Franck Cuny	2022-04-10	1	-12/+6
\| \| \| \| \|	Refactor a bit the configuration, which should simplify the management and usage of secrets from now on.
*	wireguard: revert to previous port	Franck Cuny	2022-03-02	1	-1/+1
\|
*	wireguard: use agenix from the module	Franck Cuny	2022-03-02	1	-2/+8
\| \| \| \| \|	This is the correct way to set up the private key, let's see if this works consistently across hosts and reboots.
*	agenix: store wireguard key in persistent storage	Franck Cuny	2022-02-24	1	-4/+2
\| \| \| \| \| \|	The key was created under /run/agenix, which is wiped out after a reboot. The key being absent prevents the wireguard interface to come up. Store the key somewhere persistent to prevent this to happen.
*	wireguard: module and peers configurations	Franck Cuny	2022-02-21	1	-0/+44
	Add a new module to automatically configure the peers for wireguard. The module needs a configuration file (in `configs/wireguard.toml`) which lists all the peers, their IP and and their public keys. The secret keys is encrypted as a secret with agenix. There's some initial documentation on how to use this setup.