summary refs log tree commit diff stats
path: root/system
diff options
context:
space:
mode:
Diffstat (limited to 'system')
-rw-r--r--system/linde.nix12
1 files changed, 12 insertions, 0 deletions
diff --git a/system/linde.nix b/system/linde.nix
index a55abb06..00c71b49 100644
--- a/system/linde.nix
+++ b/system/linde.nix
@@ -38,6 +38,14 @@ in
     binarycache.file = ../secrets/binarycache.age;
     dex.file = ../secrets/dex.age;
     powerdns.file = ../secrets/powerdns.age;
+    golink = let golink = config.services.golink; in {
+      # hope this doesn't collide...
+      path = "${golink.dataDir}/.config/tsnet-golink/auth.key";
+      owner = golink.user;
+      mode = "400";
+      symlink = false;
+      file = ../secrets/golink.age;
+    };
   };
 
   # Use the systemd-boot EFI boot loader.
@@ -269,6 +277,10 @@ in
     extraUpFlags = [ "--accept-routes" ];
     useRoutingFeatures = "client";
   };
+  services.golink = {
+    enable = true;
+    tailscaleAuthKeyFile = config.age.secrets.golink.path;
+  };
 
   services.journald.extraConfig = ''
     MaxRetentionSec=1 month