Add: passwd with agenix

2025-11-09 10:48:19 +01:00 · 2025-11-09 10:48:19 +01:00 · 0c76b0443d
commit 0c76b0443d
parent a42007c7c5
3 changed files with 7 additions and 5 deletions
--- a/hosts/penduick/configuration.nix
+++ b/hosts/penduick/configuration.nix
@ -29,14 +29,14 @@ in {
    PasswordAuthentication = true;
  };

-  age.identityPaths = [ "/etc/agenix/penduick.key" ];
-  age.secrets."dunoz-password-penduick".file = ../../secrets/dunoz-password-penduick.age;
+  age.identityPaths = [ "/etc/agenix/penduick.key" "/etc/agenix/dunoz-admin.key" ];
+  #  age.secrets."dunoz-password-penduick".file = ../../secrets/dunoz-password-penduick.age;
  users= {
-    mutableUsers = false ;
+  #    mutableUsers = false ;
    users.dunoz = {
      isNormalUser = true;
      extraGroups = [ "wheel" "networkmanager" ];
-      hashedPasswordFile = config.age.secrets."dunoz-password-penduick".path;
+  # passwordFile = config.age.secrets."dunoz-password-penduick".path;
      shell = pkgs.zsh;
    };
  };
@ -50,6 +50,7 @@ in {
    git htop wget curl
    neovim
    age ssh-to-age
+    weechat
  ];


--- a/secrets/dunoz-password-penduick.age
+++ b/secrets/dunoz-password-penduick.age
--- a/secrets/secrets.nix
+++ b/secrets/secrets.nix
@ -2,9 +2,10 @@ let
  serveur = "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIPRVxB7usThGHf8cuSPE4sjdqSaPNlwWAZPEo1wUgHz6 root@terre-neuvas";
  admin = "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIAxranFaz3jRfvYE2M6FvRUWjzviIWjWd1mucgKeuSK2 lomig@nixos";
  penduick = "age1rnyey8shjxyaq43dzlnhtfkcm3ra4hy3ygh6c46w4xmr7fe9fe3s00nh2r";
+  dunoz = "age1ppu60aw0v5wxhrc0gyqmgrukh2a5uaxwqxxmuy0w3fv4tnt02ycqrrgmue";
 in
 {
  "goaccess-password.age".publicKeys = [ serveur admin ];
-  "dunoz-password-penduick.age".publicKeys = [ penduick ];
+  "dunoz-password-penduick.age".publicKeys = [ penduick dunoz ];
 }