diff options
| author | seth <[email protected]> | 2024-02-04 16:40:38 -0500 |
|---|---|---|
| committer | seth <[email protected]> | 2024-02-04 16:41:47 -0500 |
| commit | 5f848623dff7cbcd21911032e5fd4c77bcf7d413 (patch) | |
| tree | 7462ae7abec5beee71443702b330e3eeca1a407f /terranix/tailscale | |
| parent | 371235663a4e8d783dfc4294bb0b10cd3206c9c6 (diff) | |
tree-wide: better separate/name some things
Diffstat (limited to 'terranix/tailscale')
| -rw-r--r-- | terranix/tailscale/acl.nix | 25 | ||||
| -rw-r--r-- | terranix/tailscale/default.nix | 12 | ||||
| -rw-r--r-- | terranix/tailscale/devices.nix | 17 | ||||
| -rw-r--r-- | terranix/tailscale/dns.nix | 5 | ||||
| -rw-r--r-- | terranix/tailscale/tags.nix | 16 |
5 files changed, 0 insertions, 75 deletions
diff --git a/terranix/tailscale/acl.nix b/terranix/tailscale/acl.nix deleted file mode 100644 index d27d3e1..0000000 --- a/terranix/tailscale/acl.nix +++ /dev/null @@ -1,25 +0,0 @@ -{lib, ...}: { - resource.tailscale_acl.default = { - acl = toString (builtins.toJSON { - tagOwners = let - me = ["getchoo@github"]; - tags = map (name: "tag:${name}") ["server" "personal" "gha"]; - in - lib.genAttrs tags (_: me); - - acls = let - mkAcl = action: src: dst: {inherit action src dst;}; - in [ - (mkAcl "accept" ["tag:personal"] ["*:*"]) - (mkAcl "accept" ["tag:server" "tag:gha"] ["tag:server:*"]) - ]; - - ssh = let - mkSshAcl = action: src: dst: users: {inherit action src dst users;}; - in [ - (mkSshAcl "accept" ["tag:personal"] ["tag:server" "tag:personal"] ["autogroup:nonroot" "root"]) - (mkSshAcl "accept" ["tag:gha"] ["tag:server"] ["root"]) - ]; - }); - }; -} diff --git a/terranix/tailscale/default.nix b/terranix/tailscale/default.nix deleted file mode 100644 index 2225fd5..0000000 --- a/terranix/tailscale/default.nix +++ /dev/null @@ -1,12 +0,0 @@ -{lib, ...}: { - imports = [ - ./acl.nix - ./devices.nix - ./dns.nix - ./tags.nix - ]; - - provider.tailscale = { - tailnet = lib.tfRef "var.tailnet"; - }; -} diff --git a/terranix/tailscale/devices.nix b/terranix/tailscale/devices.nix deleted file mode 100644 index 44ee3f1..0000000 --- a/terranix/tailscale/devices.nix +++ /dev/null @@ -1,17 +0,0 @@ -{lib, ...}: { - data.tailscale_device = let - toDevices = devices: - lib.genAttrs devices (name: { - name = "${name}.tailc59d6.ts.net"; - wait_for = "60s"; - }); - in - toDevices [ - "atlas" - "caroline" - "glados" - "glados-wsl" - "glados-windows" - "iphone-14" - ]; -} diff --git a/terranix/tailscale/dns.nix b/terranix/tailscale/dns.nix deleted file mode 100644 index 320a24b..0000000 --- a/terranix/tailscale/dns.nix +++ /dev/null @@ -1,5 +0,0 @@ -{ - resource.tailscale_dns_preferences.default = { - magic_dns = true; - }; -} diff --git a/terranix/tailscale/tags.nix b/terranix/tailscale/tags.nix deleted file mode 100644 index a776756..0000000 --- a/terranix/tailscale/tags.nix +++ /dev/null @@ -1,16 +0,0 @@ -{lib, ...}: { - resource.tailscale_device_tags = let - getDeviceID = device: lib.tfRef "data.tailscale_device.${device}.id"; - toTags = n: v: {device_id = getDeviceID n;} // v; - - tags = lib.genAttrs ["server" "personal" "gha"] (n: ["tag:${n}"]); - in - builtins.mapAttrs toTags { - atlas.tags = tags.server; - caroline.tags = tags.personal; - glados.tags = tags.personal; - glados-wsl.tags = tags.personal; - glados-windows.tags = tags.personal; - iphone-14.tags = tags.personal; - }; -} |