From 54636d230c5e6b9eb521ab90c9404630607451b1 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Motiejus=20Jak=C5=A1tys?= <motiejus@jakstys.lt>
Date: Tue, 23 Jul 2024 22:01:40 +0300
Subject: [PATCH] fwminex: +secrets

---
 flake.nix                       | 20 ++++++++++----------
 hosts/fwminex/configuration.nix | 14 +++++++-------
 2 files changed, 17 insertions(+), 17 deletions(-)

diff --git a/flake.nix b/flake.nix
index 08993c1..5fee039 100644
--- a/flake.nix
+++ b/flake.nix
@@ -195,16 +195,16 @@
             home-manager.nixosModules.home-manager
             nixos-hardware.nixosModules.framework-12th-gen-intel
 
-            #agenix.nixosModules.default
-            #{
-            #  age.secrets = {
-            #    motiejus-passwd-hash.file = ./secrets/motiejus_passwd_hash.age;
-            #    root-passwd-hash.file = ./secrets/root_passwd_hash.age;
-            #    sasl-passwd.file = ./secrets/postfix_sasl_passwd.age;
-            #    syncthing-key.file = ./secrets/fwminex/syncthing/key.pem.age;
-            #    syncthing-cert.file = ./secrets/fwminex/syncthing/cert.pem.age;
-            #  };
-            #}
+            agenix.nixosModules.default
+            {
+              age.secrets = {
+                motiejus-passwd-hash.file = ./secrets/motiejus_passwd_hash.age;
+                root-passwd-hash.file = ./secrets/root_passwd_hash.age;
+                sasl-passwd.file = ./secrets/postfix_sasl_passwd.age;
+                #syncthing-key.file = ./secrets/fwminex/syncthing/key.pem.age;
+                #syncthing-cert.file = ./secrets/fwminex/syncthing/cert.pem.age;
+              };
+            }
           ];
 
           specialArgs = {inherit myData;} // inputs;
diff --git a/hosts/fwminex/configuration.nix b/hosts/fwminex/configuration.nix
index 66442bf..5947b2c 100644
--- a/hosts/fwminex/configuration.nix
+++ b/hosts/fwminex/configuration.nix
@@ -1,6 +1,7 @@
 {
   myData,
   pkgs,
+  config,
   ...
 }: let
   nvme = "/dev/disk/by-id/nvme-Samsung_SSD_970_EVO_Plus_2TB_S6P1NS0TA01331A_1";
@@ -68,9 +69,8 @@ in {
 
     base.users = {
       enable = true;
-      user.initialPassword = "live";
-      #root.hashedPasswordFile = config.age.secrets.root-work-passwd-hash.path;
-      #user.hashedPasswordFile = config.age.secrets.motiejus-work-passwd-hash.path;
+      root.hashedPasswordFile = config.age.secrets.root-passwd-hash.path;
+      user.hashedPasswordFile = config.age.secrets.motiejus-passwd-hash.path;
     };
 
     services = {
@@ -104,10 +104,10 @@ in {
         };
       };
 
-      #postfix = {
-      #  enable = true;
-      #  saslPasswdPath = config.age.secrets.sasl-passwd.path;
-      #};
+      postfix = {
+        enable = true;
+        saslPasswdPath = config.age.secrets.sasl-passwd.path;
+      };
     };
   };