zimbatm
1120774e38
nixos-rebuild: fix SSH key security race
...
Make sure the ssh_key file is always 0700
2023-03-29 16:17:28 +02:00
Samuel Rounce
5adb698f51
fix(terraform/nixos-rebuild): typo in variables.sh
2023-03-29 09:09:21 +01:00
Jean-François Roche
16143cd8c0
terraform: allow nixos-rebuild to use specified private key for deployment
...
`nixos-rebuild/deploy.sh` script enable ssh authentication with a given private key
through the `SSH_KEY` environment variable.
Add additional variable for the private key used for the deployment.
To encourage the use of ssh-agent and discourage the storage of deployment keys in the terraform state
we do not set the install ssh key as the default for the deployment key.
Co-authored-by: Jörg Thalheim <Mic92@users.noreply.github.com>
2023-03-28 00:28:48 +02:00
Jörg Thalheim
48fe2fa8cc
nixos-rebuild: allow to change deploy user
2023-03-04 13:53:20 +01:00
Jörg Thalheim
c2f70ed844
nixos-rebuild: allow to change deploy user
2023-03-03 14:47:03 +01:00
Jörg Thalheim
c0c5fcce92
make nix find the right flake
2023-03-01 11:36:25 +01:00
Jörg Thalheim
ed67349b96
terraform: improve module description
2023-02-23 17:10:09 +01:00
Jörg Thalheim
29b0f1b5f2
terraform: add instance_id to trigger reinstall
2023-02-23 16:15:52 +01:00
Jörg Thalheim
ed0ab16c58
terraform: drop dependency on the retry program
2023-02-23 16:15:52 +01:00
Jörg Thalheim
ac7f3b86a5
terraform: actually passthru kexec-url to nixos-anywhere
2023-02-22 16:42:55 +01:00
Jörg Thalheim
2abdb32c67
terraform/nix-build: fix building from non-flake
2023-02-22 16:42:55 +01:00
Jörg Thalheim
23bbd22fb2
add debug logging option
2023-02-22 16:42:55 +01:00
Jörg Thalheim
57a6ec5ffc
terraform/install: fix nixos-anywhere flake attribute name
2023-02-22 16:42:49 +01:00
lassulus
411fb9bd76
terraform: init modules
2023-02-14 07:34:24 +01:00