From 2e4d9858a771a6756091dbd98e6004c7f60f446f Mon Sep 17 00:00:00 2001 From: itsscb Date: Tue, 8 Apr 2025 21:54:29 +0200 Subject: [PATCH] feat: add gitea secrets and config --- configuration.nix | 9 ++++++++- home.nix | 10 +++++++++- secrets/secrets.yaml | 7 ++++--- 3 files changed, 21 insertions(+), 5 deletions(-) diff --git a/configuration.nix b/configuration.nix index 8c836fe..0863f48 100644 --- a/configuration.nix +++ b/configuration.nix @@ -446,11 +446,18 @@ in { sops.secrets."nas" = { owner = config.users.users.itsscb.name; }; + sops.secrets."git" = { owner = config.users.users.itsscb.name; - path = "${config.users.users.itsscb.home}/.config/git/credentials"; + path = "${config.users.users.itsscb.home}/.config/git/credentials-git"; }; + sops.secrets."gitea" = { + owner = config.users.users.itsscb.name; + path = "${config.users.users.itsscb.home}/.config/git/credentials-gitea"; + }; + + fileSystems = { "/mnt/home" = { device = "//192.168.128.2/Cloud_Privat"; diff --git a/home.nix b/home.nix index 636f4c1..0637f82 100644 --- a/home.nix +++ b/home.nix @@ -174,7 +174,15 @@ userName = "itsscb"; userEmail = "dev@itsscb.de"; extraConfig = { - credential.helper = "store"; + # credential.helper = "store"; + credential = { + "https://github.com" = { + helper = "store --file /home/itsscb/.config/git/credentials-git"; + }; + "https://git.itsscb.de" = { + helper = "store --file /home/itsscb/.config/git/credentials-gitea"; + }; + }; http.postBuffer = 157286400; }; }; diff --git a/secrets/secrets.yaml b/secrets/secrets.yaml index 5c74b98..85c4046 100644 --- a/secrets/secrets.yaml +++ b/secrets/secrets.yaml @@ -1,5 +1,6 @@ nas: ENC[AES256_GCM,data:JSPGk+xuumfIRa/Zc3Fttjk1/Rk1ccHv3kCOt1GKoyVRMzQYqkiJUgU=,iv:WEpd8LMIQW6x1t2Hp4fan9GzmQpaFgZ7yJjX8sU27Ug=,tag:b/s0oin8XaWK9abmu+QsfA==,type:str] git: ENC[AES256_GCM,data:i1fVx3x5JGVXknAgU4qjClKR5KTyvHcs/ZTyJBHH5brOm8VB9eW/s3c1VjyrfxFXqirk6JpVl4vaJXHfLiS61KgjSVOYLLpOkyTsEKXFucLUqN7xuj9VIZtX2eQ/BPwQXC0oB9qGtF7aEitq3p9eUmOnPw+qrOA=,iv:lH1RxHXY3nnD12lewbN7wYMjPhA+sWUDSJcmfRxfH4c=,tag:ifihRv6gioVOV6NWq+r/aQ==,type:str] +gitea: ENC[AES256_GCM,data:CxqtTgZ0aAbvhPsJiO07CbMbRpADbPmvOef6Zq5pBCWChdKH5+399Ox6J8gQ5ehm4ALw55DqNMvHUWEgesgPfFR/0JvD,iv:tkD2ogsOHZwoZ2oEmLmboeRvjyoI2pr8+zo9pKFJJmg=,tag:ypLBrAcCzSCNSxaYFmF83w==,type:str] sops: kms: [] gcp_kms: [] @@ -15,8 +16,8 @@ sops: VFFuWVNONlB5eko2clhLU21HcHdNUGsK/Rztiy6DZqYzx2IG9dxxxPsDLspD+/gm CM6WmoJYLWIUvGQINTNkCLFUfWxtfFKelwIT1wxbLh+lFueISzAh+w== -----END AGE ENCRYPTED FILE----- - lastmodified: "2024-12-01T00:38:13Z" - mac: ENC[AES256_GCM,data:2gVtAXT9fMlmJujKjDIaqIQq2Y6w1iJ5cvNSsRMbU5WsFGAUE09ZE/1p5RtpmKAtmqUku2uk2f+aXYn47oSDapN/z3ZD3Mmpj3N4PT8+I9XnIardlIcqWsmi1oSnqykE6xiA79BouR9Jt9ghF6gehlIfB0PXANjQGeQjQRQf80E=,iv:3jH8LeVcIv3xpv8A/o31ndwJ+0zXEXrkP2QNTnr6chY=,tag:zx5p5f96BYq8a+ILIdv7Rg==,type:str] + lastmodified: "2025-04-08T19:05:35Z" + mac: ENC[AES256_GCM,data:A+PisYIsubLIVHfVlzikqf6XBcCGbO5xebfBPN7gt7/iEWUecdC9zy74IVL8G3S9uCUgw8Q77BrnDMSSaBN6cTgOB/5K+xCtwGu5IP0hUlrI0ClkUYH912YCVIdapswB4d7EnGtumrV8F1F29hebgkeLpeNVoVvgSS1aVCgbDgU=,iv:CKth8QnRQuo+/EQkU+69ebPsTStlubQrwRz4zFbty64=,tag:atvsYo60dzE2tYfr6clvRQ==,type:str] pgp: [] unencrypted_suffix: _unencrypted - version: 3.9.1 + version: 3.9.4