From c234646204134363fffe85106139e00ffdf42d0e Mon Sep 17 00:00:00 2001 From: Grigory Shipunov Date: Sat, 10 Jun 2023 23:35:13 +0200 Subject: [PATCH] add users --- hosts/uranus/stateful-jupyter.nix | 16 +++++++++++++++- secrets/uranus/secrets.yaml | 6 ++++-- 2 files changed, 19 insertions(+), 3 deletions(-) diff --git a/hosts/uranus/stateful-jupyter.nix b/hosts/uranus/stateful-jupyter.nix index c066a18..41440c3 100644 --- a/hosts/uranus/stateful-jupyter.nix +++ b/hosts/uranus/stateful-jupyter.nix @@ -6,13 +6,27 @@ let userPasswordFile = config.sops.secrets.hashed-password-0xa.path; isAdmin = true; } + { + username = "tassilo"; + userPasswordFile = config.sops.secrets.hashed-password-tassilo.path; + isAdmin = true; + } + { + username = "marenz"; + userPasswordFile = config.sops.secrets.hashed-password-marenz.path; + isAdmin = true; + } ]; # move the secrets to the volume secret-setup = (lib.strings.concatStringsSep "\n" (builtins.map (u: "cp --force --dereference ${u.userPasswordFile} /var/lib/pw/") jupyterUsers)); in { - sops.secrets.hashed-password-0xa = { }; + sops.secrets = { + hashed-password-0xa = { }; + hashed-password-tassilo = { }; + hashed-password-marenz = { }; + }; virtualisation.docker = { enable = true; diff --git a/secrets/uranus/secrets.yaml b/secrets/uranus/secrets.yaml index d4f7953..48bdab4 100644 --- a/secrets/uranus/secrets.yaml +++ b/secrets/uranus/secrets.yaml @@ -1,5 +1,7 @@ wg-seckey: ENC[AES256_GCM,data:mUFBjQpHC0Flpyw82lXUInLVm0TJW1wB51evA7hXiit7JcK4z/HCyD5UGQU=,iv:O2/UP+WjCmasU6kP/58B1zXL0XAmzUOcM/1ONE31+/o=,tag:ObN6viKQm7ghuXKVeUydjg==,type:str] hashed-password-0xa: ENC[AES256_GCM,data:Tofb7PL5/fZHSLx/nN0o+6w7f0lfITQXoAV4Pu7JGzADi+vY9rfuOLzDapHh82bz1d3vbzPGECzpvYN6Bp/UMHivou0JD5ozIQ==,iv:7bPTP84NcwPCsIZaxBNinIcmewf+pWW5U21OTO1WGeY=,tag:ohaDbKZuXDhq9YBg/8wu/A==,type:str] +hashed-password-tassilo: ENC[AES256_GCM,data:z3DD3ZMGjPdNPLRRY3mfdrJzEIizdSV0RnFAI2m+KjHPybtT3araf2bc/zt6iPMcFC1OvJhvm31jCTorZLKT6bknxnIAu2EKHw==,iv:9twbZWdVpQFKqop9dpnoNpZ7jOQp9LluSffZAQXMTd8=,tag:oVMBdTNZfgqbDdrNIFexmA==,type:str] +hashed-password-marenz: ENC[AES256_GCM,data:+7Exam93GwUmUkzYOta39d83+8FaQzIbfq4Z+PIoCEwomn6W5Qa7LHKATovKwq5sZVnPJ6jSQ0ruxjmbG9/FykaKxXKGeCv9xQ==,iv:aqibnzdlRkA7sruGIlENspEUQYlo+QVOdANRmAeMYWM=,tag:G1K14+1QmlkP0njB56seUw==,type:str] sops: kms: [] gcp_kms: [] @@ -15,8 +17,8 @@ sops: YVFMQ3pZYS9oM3RERDg4NHA1OHRoUEkKYIKvmU6cMiWqrDASPeDZAs3jHOn41onU YtnMpjNQncMbvzDjuijjsCusgxL1DOEWvkg5xn8u4yGhguV6hEW4mQ== -----END AGE ENCRYPTED FILE----- - lastmodified: "2023-06-09T19:55:59Z" - mac: ENC[AES256_GCM,data:bfKlWBfls2ILfH3HH6LY1GhB6AqTkhiI+RJKk1ReKnDJrcneVzDLYiLfUX0HvMmIWPlxVj4RyGjD63sLD0cG6x5pU+EwPJjuNIsEfp/QVE4yCwpiqeprjwie/jH69Hb4L5rWLFmebZ4x9Lu1mB3YZqa0icdhmhc9U/+i3WFoKjA=,iv:xVSaTkBNbsL8Gn8RPZ1Zg6M6E4Hw6t0DZ+4XJHEOKf8=,tag:QqHPBKRQnZWjy6pst9YC7A==,type:str] + lastmodified: "2023-06-10T21:35:03Z" + mac: ENC[AES256_GCM,data:ESL2J916TklAXe7Lpdh1sn3mhHuNiBZ7xq4KAwn2nV1nErRRPcaA/U3Qf+nY5x95DdIkrDBpGx+rC4LAgs5FBx/lZNYgiuFCJuF6U1ZfaOhIQEatZ/isZ8xa88ENL3rrAQuU17HGfAu3FxseGRGiJ44cR4RHLzjWz87//Sx9Xkk=,iv:erdyt4i5ndRC/QGi2RMl34WKojFEjAPGmKzd7o3dYrY=,tag:J/5A8lvrFvdqNtnYFB62EQ==,type:str] pgp: - created_at: "2023-05-30T14:29:01Z" enc: |-