thomas/nixos-config
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

move smb automount secrets to agenix
helium update / update-helium (push) Successful in 10s
Details
zen browser update / update-zen-browser (push) Successful in 5s
Details
handy update / update-handy (push) Successful in 5s
Details

Browse Source
This commit is contained in:
Thomas G. Lopes
2026-03-13 19:07:13 +00:00
parent b1b3f324d9
commit 1d1afe1a43
6 changed files with 211 additions and 5 deletions
Download Patch File Download Diff File Expand all files Collapse all files
README.md
+33
View File
@@ -20,3 +20,36 @@ NixOS configuration using a dendritic structure — `flake.nix` at the root, wit
```bash
sudo nixos-rebuild switch --flake .#nixos
```
## SMB share secrets (agenix)
SMB automount is configured in `modules/hosts/nixos.nix` and activates once
`secrets/smb-credentials.age` exists.
1. Edit recipients in `secrets/secrets.nix` if needed.
2. Create the encrypted secret (using the host SSH private key via sudo):
```bash
sudo env RULES=secrets/secrets.nix nix run github:ryantm/agenix -- -e secrets/smb-credentials.age -i /etc/ssh/ssh_host_ed25519_key
```
Use this content:
```text
username=YOUR_SMB_USER
password=YOUR_SMB_PASSWORD
# optional
# domain=WORKGROUP
```
Configured shares mirror your Endeavour setup:
- `//192.168.1.102/data``/mnt/unraid-data`
- `//192.168.1.102/appdata``/mnt/unraid-appdata`
Then apply:
```bash
sudo nixos-rebuild switch --flake .#nixos
```