etorres/nixos
1
0
Fork 0
Code Issues 4 Pull Requests Actions Packages Projects Releases Wiki Activity

hosts/fs-01: make use of credential file for ping url and repo path

Browse Source
This commit is contained in:
Eric Torres
2025-08-24 17:07:36 -07:00
parent f3723b7af1
commit bd68bd1020
1 changed files with 4 additions and 2 deletions
Download Patch File Download Diff File Expand all files Collapse all files

6
hosts/fs-01/default.nix
View File

@@ -22,6 +22,8 @@ in
syncthingserver.enable = true;
sops.secrets."borgmatic_repo_urls/local" = { };
sops.secrets."borgmatic_repo_urls/remote" = { };
sops.secrets."borgmatic_ping_urls/local" = { };
sops.secrets."borgmatic_ping_urls/remote" = { };
sops.secrets."borgmatic_pass/local" = { };
@@ -37,7 +39,7 @@ in
repositories = [
{
label = backupLabel;
path = "ssh://borg@borg-01.tail755c5.ts.net/./";
path = ''{credential file ${config.sops.secrets."borgmatic_repo_urls/local".path}}'';
}
];
encryption_passcommand = ''cat ${config.sops.secrets."borgmatic_pass/local".path}'';
@@ -52,7 +54,7 @@ in
ssh_command = "ssh -i /etc/ssh/ssh_host_ed25519_key";
healthchecks = {
ping_url = "https://hc.its-et.me/ping/PlGPBqq-0rLI4N4ya3jYmg/backup-syncthing";
ping_url = ''{credential file ${config.sops.secrets."borgmatic_ping_urls/local".path}}'';
};
};