diff --git a/flake.nix b/flake.nix index 2c1a79f..0505b85 100644 --- a/flake.nix +++ b/flake.nix @@ -115,6 +115,10 @@ agenix.nixosModule { # age.secrets.oauth_proxy_client_credentials.file = ./secrets/oauth_proxy_client_credentials.age; + age.secrets.spotify_password = { + file = ./secrets/spotify_password.age; + owner = "bertof"; + }; } ./nixos_modules/bertof_user.nix diff --git a/odin/hm.nix b/odin/hm.nix index 9228219..cc94090 100644 --- a/odin/hm.nix +++ b/odin/hm.nix @@ -1,4 +1,4 @@ -{ pkgs, ... }: { +{ pkgs, nixosConfig, ... }: { home = { language.base = "it_IT.UTF-8"; keyboard = { @@ -71,7 +71,19 @@ ]; }; - services = { gnome-keyring.enable = true; }; + services = { + gnome-keyring.enable = true; + spotifyd = { + enable = true; + settings = { + global = { + username = "filippoberto95"; + password_cmd = "cat ${nixosConfig.age.secrets.spotify_password.path}"; + use_keyring = true; + }; + }; + }; + }; xsession = { enable = true; diff --git a/secrets/secrets.nix b/secrets/secrets.nix index 42442db..45bd648 100644 --- a/secrets/secrets.nix +++ b/secrets/secrets.nix @@ -1,13 +1,17 @@ -# let -# bertof_odin = "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIAhxOjo9Ac9hVd3eOR56F6sClUMUh1m7VpcmzA18dslj"; -# bertof_thor = "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIO7mcf8fbMo1eXqSJeVFWaweB+JOU+67dFuf8laZKZZG"; -# bertof_baldur = "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIKbG791lSOl8Rqoy+KkdKiOJnOMRg02+HZ/VrlrWMYAX"; -# users = [ bertof_odin bertof_thor bertof_baldur ]; +let + # bertof_baldur = "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIKbG791lSOl8Rqoy+KkdKiOJnOMRg02+HZ/VrlrWMYAX"; + bertof_odin = "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIAhxOjo9Ac9hVd3eOR56F6sClUMUh1m7VpcmzA18dslj"; + bertof_thor = "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIO7mcf8fbMo1eXqSJeVFWaweB+JOU+67dFuf8laZKZZG"; + # users = [ bertof_baldur bertof_odin bertof_thor ]; -# baldur = "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIF9G8I75gOfB1QJhZU9z+UaYovWq05OfK2FVKtCb8Xxh"; -# thor = "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIJbMiGx/QZ/RKgad3UNyEzgLfqRU0zBo8n0AU3s244Zw"; -# systems = [ thor baldur ]; -# in + dev_users = [ bertof_odin bertof_thor ]; + # baldur = "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIF9G8I75gOfB1QJhZU9z+UaYovWq05OfK2FVKtCb8Xxh"; + odin = "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIP8bfOYmFN+KRjnAOdt9IazGeaRKm5tvGyblHD7MUhtr"; + thor = "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIJbMiGx/QZ/RKgad3UNyEzgLfqRU0zBo8n0AU3s244Zw"; + dev_systems = [ odin thor ]; + # systems = [ baldur odin thor ]; +in { - # # "oauth_proxy_client_credentials.age".publicKeys = users ++ systems; + # "oauth_proxy_client_credentials.age".publicKeys = users ++ systems; + "spotify_password.age".publicKeys = dev_users ++ dev_systems; } diff --git a/secrets/spotify_password.age b/secrets/spotify_password.age new file mode 100644 index 0000000..8cfe308 --- /dev/null +++ b/secrets/spotify_password.age @@ -0,0 +1,14 @@ +age-encryption.org/v1 +-> ssh-ed25519 13iwjQ ihFwxfFgF+mEzpG0+4/V9sMSyghxxJvKCCvaoR78cX0 +PIsBREW20MK11QAVjVlKiUFSIHgPY5Rh+RLIwa4972I +-> ssh-ed25519 7MB20A cuuRqdeYnRDTUqpSKy5GSX9z7fwuxmSyqPEGv7/4gy4 +fzVYk6+1LMe3BCZHrvrjXSEccvh9yloneKRtKKaY4HI +-> ssh-ed25519 IvyYug KH0Ar+DRAK01cn000DQ1jrVRnvi/IY38wH0+hio24Gk +0jZLR6ArJk55Fa1pWs3jzzEidinOlFRQa+t/QpvbGoQ +-> ssh-ed25519 v7O/FA Wzn2CDmBuSTQRsvijqxzggc8i6MQ9Sev/oYOsGE3SRY +SICT5z35r4VxlnWQimUqka0ZTsq6VaVEnw3cMW2XfI8 +-> h#yDi>P-grease :C(yo\96 +Z1rgHDuj00pfkwxbYNtCwj+KJHSz8oOi/Q +--- b0AXJG43DTS1dcH32SDOj71OoxQqtjA77VlbI+CQ+z8 +¹/E +CÓ÷úu¼