From a0657f3d363d168ed8c27ae7b578d1fc4193d31a Mon Sep 17 00:00:00 2001 From: s-prechtl Date: Tue, 29 Jul 2025 11:25:41 +0200 Subject: [PATCH] feat: nextcloud users --- hosts/hitsugibune/nextcloud.nix | 29 +++++++++++++++++++++++++++++ secrets/nextcloud-jhuber.age | 15 +++++++++++++++ secrets/nextcloud-jweissen.age | 15 +++++++++++++++ secrets/nextcloud-tprechtl.age | 16 ++++++++++++++++ secrets/secrets.nix | 3 +++ 5 files changed, 78 insertions(+) create mode 100644 secrets/nextcloud-jhuber.age create mode 100644 secrets/nextcloud-jweissen.age create mode 100644 secrets/nextcloud-tprechtl.age diff --git a/hosts/hitsugibune/nextcloud.nix b/hosts/hitsugibune/nextcloud.nix index c3ad0e1..fa333d5 100644 --- a/hosts/hitsugibune/nextcloud.nix +++ b/hosts/hitsugibune/nextcloud.nix @@ -8,6 +8,21 @@ owner = "nextcloud"; group = "nextcloud"; }; + age.secrets.nextcloud-jhuber = { + file = ../../secrets/nextcloud-jhuber.age; + owner = "nextcloud"; + group = "nextcloud"; + }; + age.secrets.nextcloud-jweissen = { + file = ../../secrets/nextcloud-jweissen.age; + owner = "nextcloud"; + group = "nextcloud"; + }; + age.secrets.nextcloud-tprechtl = { + file = ../../secrets/nextcloud-tprechtl.age; + owner = "nextcloud"; + group = "nextcloud"; + }; age.secrets.onlyoffice = { file = ../../secrets/onlyoffice.age; owner = "onlyoffice"; @@ -35,6 +50,20 @@ settings = { maintenance_window_start = 3; }; + ensureUsers = { + jhuber = { + email = "jhuber@jhuber.jhuber"; + passwordFile = config.age.secrets.nextcloud-jhuber.path; + }; + jweissen = { + email = "jweissen@jweissen.jweissen"; + passwordFile = config.age.secrets.nextcloud-jweissen.path; + }; + tprechtl = { + email = "tprechtl@tprechtl.tprechtl"; + passwordFile = config.age.secrets.nextcloud-tprechtl.path; + }; + }; database.createLocally = true; }; diff --git a/secrets/nextcloud-jhuber.age b/secrets/nextcloud-jhuber.age new file mode 100644 index 0000000..1d9ea7a --- /dev/null +++ b/secrets/nextcloud-jhuber.age @@ -0,0 +1,15 @@ +age-encryption.org/v1 +-> ssh-ed25519 7PLkJg nuJ9vUEqBnUVcn2zXgHT1z3I0LsksBg2yFIZvvNXBnU +RZCgM0341+7XGb3aTrHqOyl8biYgLLWarcWJts6AROA +-> ssh-rsa LgF3EQ +SQEJ8W0KOjsONLvhYuYSTQA2IEuqHj+iu5B91jvLDjbFR6cON7p73PnyMcV0sPqd +rDmwPdoZyEcTj8pEPb3weXu6/wD2M0fxZ2YYHtF61yYOV/y1ZuI8nMY0SLR1dBIh +tfNVN3ULlez8ykt/swxsLy8pIqxBFZN90wU8kp2eYoZujZbUHF85jpME1gDRa5s1 +tR2UsDWYQ8o/BOI4L9j+5XccJDaa7KVnWFJ9nbDwi/7+TUIdyFVx0rWM/k/H5TX1 +aeFKWDDHm7G1MPOIyumrk5PJvkHjVlcW6mA5CtY0mlOD/qwgm0eO/td90aT7/sHy +RY0DiDck9viAaJnqhPvX//xB//SPieyGHEdk8xNeMC1vK+zEq0kn9gjTxGOspMXF +asB0Vyslgg36yLVQBpbpv54SCkLdlbiJUHmPgu3pxhRf2yPSlQoAGbp//O9oBefF +jfOTF0gd/4vEFLbNb3TfE4uKOqx2rdyzRkcs0BESLTQ1qNdtv+yzKno1bMmfKQaq + +--- wgXaenqWBdTBfQMggY7+I46W6zA3TErucNtpPwXO7dw +R}9ˑzF65#a0xY׀>>f/,I*ĝ \ No newline at end of file diff --git a/secrets/nextcloud-jweissen.age b/secrets/nextcloud-jweissen.age new file mode 100644 index 0000000..f0caf41 --- /dev/null +++ b/secrets/nextcloud-jweissen.age @@ -0,0 +1,15 @@ +age-encryption.org/v1 +-> ssh-ed25519 7PLkJg FgE+z+rQKp8tNxu2khYjqRAfgwHLq+XyASOpkRyra1Y +3J8CLf3/Dsvzvr8qtnJlVtmNdGs7j2VZD37WR4zEm1k +-> ssh-rsa LgF3EQ +sVRKTMYNtQiDoVxbNBgkVdtqqGcV9KTgJAp8DN5VsXMnFKOVuni3fT4NM6W6ti+r +Q4cHnC4RKkng6ybW7YU3LWXa5KXRlSQ2IurUP0BECqErfZwvJuHr25Tq72VBw5Hi +e5E90GsURVQHgvG8em5BIoW8OAMbvGbrUQJ2/nQCPbLtN5hCJvfa8ffxysPQcFSX +vReY+qy7FrQuA99JuE2RF7fU/Z37z9WDd0XMLE+TAlWGH1Qg5CKSLR15B/H9EFIH +y27OSsA13qmKgAO/dLsacbwDBNOjmC4G2qX7AjItbd6b2bBf6+0Hb9p8RZWSjml+ +wplZ6IUOVTiLEH/J+E+hgA9SFV67euxYPQs4BlczJnFQpHEajCws5khdzqa3xTcc +r/qibXdMMs8uqDzfdHg/41cXR2n+UryBk7F5mF+0VIseM4F4y5TcncNAR6HkcFX/ +jfu00a/C3DzpS7fAq/3XCTimpxmL4otPpQDwoFjUmKDnCMYeK9C5GSPg/SJJ4dHX + +--- qOhjcr2i4d28SSIbD93b0n2qeHxN7i90ADCaKCz9vUA +9^SЎ\{LI7 Ҭ|,-yT%<́nVb‡ae: \ No newline at end of file diff --git a/secrets/nextcloud-tprechtl.age b/secrets/nextcloud-tprechtl.age new file mode 100644 index 0000000..5326ed0 --- /dev/null +++ b/secrets/nextcloud-tprechtl.age @@ -0,0 +1,16 @@ +age-encryption.org/v1 +-> ssh-ed25519 7PLkJg ozZ/lzgt4SF3l/obIAb5/d5bIw/1/ydtqPaTGJ9bels +P1rTCHvorwOwJmbLLaXyhv9fWCo67TPzJa/UlgUuji4 +-> ssh-rsa LgF3EQ +OP6CLT6d2E5AMDmlZr1g3tZhu/BuFSZs1VabrzTuo6qwte4YZkv/kTra6zTu35Pq +kWSmipfI1N1VEtGH8KY/eA1QQu/pnvGQYzy3FVZMxm5mSePviJCfG5m2KzgcD8no +09A4hYH7SiOkGU5Uv46PvFjUs/6BjebZSBZ3sxBGmtXnnW68793MgfGjmr0MncNu +iNjRTaX7rgZU9ZSP4Vaki2X/5vw+ajVeL6KO6E4n+bJlXWBxFZf2yejew0yHO2fK ++uJ/vswJpsHTI8jRFwUjH797bIW98g4YVRGBaEuD1xyGt9Jj6Uizu0J50Yx4kmHd +TUoWPXKTV61nqnCu04soVm4hnIgaIdvOjXGwUCNfkTS3vVhekGLvybpML3d8SP9H +ksAib8c6p7B59v4zuPo8+uaQzy9Zcrj0zqj4I949pPD6pjevsUiqGEo+aFLy9kSj +yy4ogVImI8GbcKKglaz9tUbrOZIeFLIK0g9+Opx/+lRoJ5dSncBm296s7uIhsOh1 + +--- UXgz18iiNvIOVJ+PrC8k+OHL0Jkl1aoWg9uQGV/SYHY +N]ipSb}oJWz 0 +K syDtF \ No newline at end of file diff --git a/secrets/secrets.nix b/secrets/secrets.nix index 1971ec9..c720d6d 100644 --- a/secrets/secrets.nix +++ b/secrets/secrets.nix @@ -4,6 +4,9 @@ let key = "ssh-rsa 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"; in { "nextcloud.age".publicKeys = [hitsugibune key]; + "nextcloud-jhuber.age".publicKeys = [hitsugibune key]; + "nextcloud-jweissen.age".publicKeys = [hitsugibune key]; + "nextcloud-tprechtl.age".publicKeys = [hitsugibune key]; "onlyoffice.age".publicKeys = [hitsugibune key]; "speedtest-tracker.age".publicKeys = [saberofxebec key]; "matrix.age".publicKeys = [hitsugibune key];