From 4f4168768dad475180ec61c7e15e4fa60b12fcd1 Mon Sep 17 00:00:00 2001
From: Ivan Malison <IvanMalison@gmail.com>
Date: Wed, 1 Jan 2025 12:03:48 -0700
Subject: [PATCH] [NixOS] Enable vaultwarden admin page

---
 nixos/machines/biskcomp.nix                    |   6 ++++++
 nixos/secrets/secrets.nix                      |   1 +
 nixos/secrets/vaultwarden-environment-file.age | Bin 0 -> 731 bytes
 3 files changed, 7 insertions(+)
 create mode 100644 nixos/secrets/vaultwarden-environment-file.age

diff --git a/nixos/machines/biskcomp.nix b/nixos/machines/biskcomp.nix
index c0aaed80..9f4e92e1 100644
--- a/nixos/machines/biskcomp.nix
+++ b/nixos/machines/biskcomp.nix
@@ -39,9 +39,15 @@ in
   };
   services.k3s.disableAgent = true;
 
+  age.secrets.vaultwarden-environment-file = {
+    file = ../secrets/vaultwarden-environment-file.age;
+    owner = "vaultwarden";
+  };
+
   services.vaultwarden = {
     enable = true;
     backupDir = "/var/backup/vaultwarden";
+    environmentFile = config.age.secrets.vaultwarden-environment-file.path;
     config = {
       ROCKET_ADDRESS = "::1";
       ROCKET_PORT = 8222;
diff --git a/nixos/secrets/secrets.nix b/nixos/secrets/secrets.nix
index 1d907690..f425bd48 100644
--- a/nixos/secrets/secrets.nix
+++ b/nixos/secrets/secrets.nix
@@ -19,4 +19,5 @@ in
   "k3s-registry.yaml.age".publicKeys = keys.agenixKeys ++ keys.railbird-sf;
   "discourse-admin-password.age".publicKeys = keys.hostKeys;
   "discourse-secret-key-base.age".publicKeys = keys.hostKeys;
+  "vaultwarden-environment-file.age".publicKeys = keys.hostKeys;
 }
diff --git a/nixos/secrets/vaultwarden-environment-file.age b/nixos/secrets/vaultwarden-environment-file.age
new file mode 100644
index 0000000000000000000000000000000000000000..efcfa344d889ca636c6d73e8bcd986266a7cc9a9
GIT binary patch
literal 731
zcmZY5yNlCs003ZxLnJsH2u=z`MTd~f<C;Dep-J;@(j-kE7ez?Y_SZ+6<d@`{rs^sP
z3WBI82;!oMgW#YDZgMxBf{24~gXrqyB8rF3=U?!_=YRn=2)sCt(s3B9g)zYAB!ZnQ
zB*_RH^eLJqs|6dx7OWNgwg5?K8nIP*pwMF@NcE!E_m*h0-{88o1By7C<5R&jRYYwo
zQ%dS2lq+`)T@4qCz$W9+9GHwQ;G+)HgD`XJqC1)Xr#Vc&1q$LkBrUrZQLv1M6xm{O
zi*5%JzoZ4K1Kkax*>{%Zu~sHHL`y9JSL$Y&^E3usC()W<OQRCm^Th!X6C6&0m>x`n
zjtBN@s%YnaR#1mM-mAGf1$A0&@*b<Q6OEmcoUGLrth;U(6=39}$Xa+v1aK4u8xX*H
zY9<X}pn5MMc!TIqy4i42A^yck5gsQaZ@-pEZBPP*05a{g=X+!<HXHSJPjjubTFi-R
zZ2JjIOA4t-K4FD&%|MtTuGO6S`Xq13RcGBqlW1ONA<?ON6rN3}MCRv<UOR#y+^<=I
z6J$m~A{o3)volw+;Zki?=Z4foS!nZdkUJcg849_~a;jJ{L&Oznxt^BdE@jT7vI2%0
z<?1fq;R#E^g%Vs0p+0K_8&TgtFbpf?DDGD#6EB4U<7xAmsCP0}nhSDc(~l?;m?5_r
zWI4@_4dgzyQhK#>3Y_^lW%whXq8oQEAG*@qeY5*;AR!N^v-b`>B_DnL_T%=S%C*z;
z?UR>wnc!Hy_4eRLU95cGtG>H<!jHbMzW;Uj`LoiK@|VZX_H3>AVyk%<3x2;|z4`Li
S-jX_c;rz<g56AmE*Z%@`<@r$n

literal 0
HcmV?d00001