aboutsummaryrefslogtreecommitdiff
path: root/nix/deuxfleurs.nix
diff options
context:
space:
mode:
Diffstat (limited to 'nix/deuxfleurs.nix')
-rw-r--r--nix/deuxfleurs.nix9
1 files changed, 9 insertions, 0 deletions
diff --git a/nix/deuxfleurs.nix b/nix/deuxfleurs.nix
index 7c7c6d3..14085c1 100644
--- a/nix/deuxfleurs.nix
+++ b/nix/deuxfleurs.nix
@@ -248,6 +248,15 @@ in
}) cfg.cluster_nodes;
};
+ system.activationScripts.generate_df_wg_key = ''
+ if [ ! -f /var/lib/deuxfleurs/wireguard-keys/private ]; then
+ mkdir -p /var/lib/deuxfleurs/wireguard-keys
+ (umask 077; ${pkgs.wireguard-tools}/bin/wg genkey > /var/lib/deuxfleurs/wireguard-keys/private)
+ echo "New Wireguard key was generated."
+ echo "This node's Wireguard public key is: $(${pkgs.wireguard-tools}/bin/wg pubkey < /var/lib/deuxfleurs/wireguard-keys/private)"
+ fi
+ '';
+
# Configure /etc/hosts to link all hostnames to their Wireguard IP
networking.extraHosts = builtins.concatStringsSep "\n" (map
({ hostname, IP, ...}: "${IP} ${hostname}")
generated by cgit v1.2.3 (git 2.25.1) at 2024-11-09 16:14:22 +0000