From 169c4632436d96ef33bd322f21d4f1fee12895f2 Mon Sep 17 00:00:00 2001 From: Danilo Reyes Date: Fri, 7 Mar 2025 15:39:08 -0600 Subject: [PATCH] ca-certificate --- hosts/workstation/configuration.nix | 8 +++----- secrets/ssh/iqQCY4iAWO-ca.pem | 21 +++++++++++++++++++++ 2 files changed, 24 insertions(+), 5 deletions(-) create mode 100644 secrets/ssh/iqQCY4iAWO-ca.pem diff --git a/hosts/workstation/configuration.nix b/hosts/workstation/configuration.nix index d7577d0..5cd26b1 100644 --- a/hosts/workstation/configuration.nix +++ b/hosts/workstation/configuration.nix @@ -7,11 +7,6 @@ ../../stylix.nix ]; my = import ./toggles.nix; - sops.secrets = { - "resilio/user" = { }; - "resilio/host" = { }; - "resilio/password" = { }; - }; home-manager.users.jawz = { programs.ghostty = { enable = true; @@ -134,6 +129,9 @@ }; }; }; + security.pki.certificateFiles = [ + ../../secrets/ssh/iqQCY4iAWO-ca.pem + ]; services = { flatpak.enable = true; scx = { diff --git a/secrets/ssh/iqQCY4iAWO-ca.pem b/secrets/ssh/iqQCY4iAWO-ca.pem new file mode 100644 index 0000000..3c806d4 --- /dev/null +++ b/secrets/ssh/iqQCY4iAWO-ca.pem @@ -0,0 +1,21 @@ +-----BEGIN CERTIFICATE----- +MIIDazCCAlOgAwIBAgIUX2YqyhlzNcinNSWEhMVDSKSupTYwDQYJKoZIhvcNAQEL +BQAwRTELMAkGA1UEBhMCQVUxEzARBgNVBAgMClNvbWUtU3RhdGUxITAfBgNVBAoM +GEludGVybmV0IFdpZGdpdHMgUHR5IEx0ZDAeFw0yNTAzMDcwNDQ3NDJaFw0yNTA5 +MDMwNDQ3NDJaMEUxCzAJBgNVBAYTAkFVMRMwEQYDVQQIDApTb21lLVN0YXRlMSEw +HwYDVQQKDBhJbnRlcm5ldCBXaWRnaXRzIFB0eSBMdGQwggEiMA0GCSqGSIb3DQEB +AQUAA4IBDwAwggEKAoIBAQC4pUxEdL+mC2mmyDFXjsmrj1GVoJyRatyUxwB5dsCZ +6BN2Gr5aN/OtA9cp4ACpIB7ws/X9Yo9rG8FivOZjKEMoOeCQhullDTR9SBZv0D1n +picGUR4BvY+zLj85/Ae73R66LbcW/4o3xjI0WQUckEKfO+rKvB4BsPKqaAbS/o4E +lO6cSp1Gr85OaKzbbGxu9qNPFckcSl8v3+0h2Cspy6Ar/ce1aCA4hwUE/eGl/a8c +F0aWwrHGcJ8vEfuWNnO7iw69SatlKeHf02DBLfUlLsA49CqH2sWNrcRl9cztdPpR +4swgLad9IOpkUTuElHWwGgyAHFX+AGjt9mYL1U9HYV6dAgMBAAGjUzBRMB0GA1Ud +DgQWBBRWylAAyAkrCqEPl0Hmm+36UGAJxjAfBgNVHSMEGDAWgBRWylAAyAkrCqEP +l0Hmm+36UGAJxjAPBgNVHRMBAf8EBTADAQH/MA0GCSqGSIb3DQEBCwUAA4IBAQAe +2Nt+9meMDKhnYz5tW3Fr0V+05p8kp3k60gfsl20G7oZplY2ExwnbrmtzJeTbqZBY +vcHWC/80cjdJpnO55oReBBNEyIySBwovltQFoxV4bGzAyCJfi3RJX2uSIT9OaiIz +N2RfYDEMAMAazHjt0M5qBaabxk3baryusaDOnQjeCqTWQ6Xk/G3uMwsHX7Nk1iqX +FtXlvo/2e1iGhbq8m/m47U6xFUolivC+3R0oiKLJ5TQmZjCtNxMnOgYgSSitWHpm +Z74sSfIOutk7tpji8UdRxRMW4JrKN0bKEt0OeTOUsne3ItONEX+eioMhhV8KCK62 +YlSncAEzWKi6Jmg2dZ38 +-----END CERTIFICATE-----