From 8e3a2a703f492a8cdf8d94275f5c7dc5f6e2e934 Mon Sep 17 00:00:00 2001 From: sid Date: Sat, 2 May 2026 19:05:53 +0200 Subject: [PATCH] new tailscale api --- flake.lock | 38 ++++++++++++++--------------- modules/nixos/tailscale/default.nix | 23 ++++++++++++++--- 2 files changed, 38 insertions(+), 23 deletions(-) diff --git a/flake.lock b/flake.lock index b5e2871..e00e855 100644 --- a/flake.lock +++ b/flake.lock @@ -1375,11 +1375,11 @@ ] }, "locked": { - "lastModified": 1775933806, - "narHash": "sha256-rdXTziFNOeL8BWWngh8cmucmDkdfgWPixgZXn3EtYbs=", + "lastModified": 1776736017, + "narHash": "sha256-D3hsaUZLyiJ96d5tknAyS4Uenv6FDZDUTZyr/Jscxg4=", "owner": "tale", "repo": "headplane", - "rev": "418c3bc2556c3197414f462727a2f0545b39907a", + "rev": "4d252833effb13d1cdd48247d513a2afa2f0ad5e", "type": "github" }, "original": { @@ -1906,11 +1906,11 @@ }, "nixpkgs-unstable_2": { "locked": { - "lastModified": 1776169885, - "narHash": "sha256-l/iNYDZ4bGOAFQY2q8y5OAfBBtrDAaPuRQqWaFHVRXM=", + "lastModified": 1776548001, + "narHash": "sha256-ZSK0NL4a1BwVbbTBoSnWgbJy9HeZFXLYQizjb2DPF24=", "owner": "nixos", "repo": "nixpkgs", - "rev": "4bd9165a9165d7b5e33ae57f3eecbcb28fb231c9", + "rev": "b12141ef619e0a9c1c84dc8c684040326f27cdcc", "type": "github" }, "original": { @@ -1938,11 +1938,11 @@ }, "nixpkgs_3": { "locked": { - "lastModified": 1776067740, - "narHash": "sha256-B35lpsqnSZwn1Lmz06BpwF7atPgFmUgw1l8KAV3zpVQ=", + "lastModified": 1776734388, + "narHash": "sha256-vl3dkhlE5gzsItuHoEMVe+DlonsK+0836LIRDnm6MXQ=", "owner": "nixos", "repo": "nixpkgs", - "rev": "7e495b747b51f95ae15e74377c5ce1fe69c1765f", + "rev": "10e7ad5bbcb421fe07e3a4ad53a634b0cd57ffac", "type": "github" }, "original": { @@ -2299,11 +2299,11 @@ ] }, "locked": { - "lastModified": 1775585728, - "narHash": "sha256-8Psjt+TWvE4thRKktJsXfR6PA/fWWsZ04DVaY6PUhr4=", + "lastModified": 1776796298, + "narHash": "sha256-PcRvlWayisPSjd0UcRQbhG8Oqw78AcPE6x872cPRHN8=", "owner": "cachix", "repo": "git-hooks.nix", - "rev": "580633fa3fe5fc0379905986543fd7495481913d", + "rev": "3cfd774b0a530725a077e17354fbdb87ea1c4aad", "type": "github" }, "original": { @@ -2354,11 +2354,11 @@ ] }, "locked": { - "lastModified": 1776119890, - "narHash": "sha256-Zm6bxLNnEOYuS/SzrAGsYuXSwk3cbkRQZY0fJnk8a5M=", + "lastModified": 1776771786, + "narHash": "sha256-DRFGPfFV6hbrfO9a1PH1FkCi7qR5FgjSqsQGGvk1rdI=", "owner": "Mic92", "repo": "sops-nix", - "rev": "d4971dd58c6627bfee52a1ad4237637c0a2fb0cd", + "rev": "bef289e2248991f7afeb95965c82fbcd8ff72598", "type": "github" }, "original": { @@ -2519,11 +2519,11 @@ "stylix": "stylix_3" }, "locked": { - "lastModified": 1776284936, - "narHash": "sha256-43Bao4US6hrMevnx2fyKFIlkH8KvKDGghz74cl6s1p8=", + "lastModified": 1777741303, + "narHash": "sha256-zSzzDpJdKhzQbShaAJ+J97kllAQ4nttFr4VMoln2LJo=", "ref": "release-25.11", - "rev": "0c13e9dabd0b573132238b97b634d0ba5e8be830", - "revCount": 28, + "rev": "e801c318a76d147e167ec97342d4d86b302681b8", + "revCount": 35, "type": "git", "url": "https://git.sid.ovh/sid/synix.git" }, diff --git a/modules/nixos/tailscale/default.nix b/modules/nixos/tailscale/default.nix index 10f9bc4..9d2b4f1 100644 --- a/modules/nixos/tailscale/default.nix +++ b/modules/nixos/tailscale/default.nix @@ -1,12 +1,27 @@ -{ inputs, ... }: +{ inputs, config, ... }: { imports = [ inputs.synix.nixosModules.tailscale ]; services.tailscale = { enable = true; - enableSSH = true; - acceptDNS = false; # use coredns - loginServer = "https://hs.sid.ovh"; + tailnets = { + personal = { + default = true; + loginServer = "https://hs.sid.ovh"; + authKeyFile = config.sops.secrets."tailscale/personal-key".path; + enableSSH = true; + acceptDNS = false; # use coredns + }; + work = { + loginServer = "https://headscale.cryodev.xyz"; + enableSSH = true; + acceptDNS = true; + authKeyFile = config.sops.secrets."tailscale/work-key".path; + }; + }; }; + + sops.secrets."tailscale/personal-key" = { }; + sops.secrets."tailscale/work-key" = { }; }