summaryrefslogtreecommitdiff
path: root/modules/nixos/traits/tailscale.nix
diff options
context:
space:
mode:
Diffstat (limited to 'modules/nixos/traits/tailscale.nix')
-rw-r--r--modules/nixos/traits/tailscale.nix20
1 files changed, 10 insertions, 10 deletions
diff --git a/modules/nixos/traits/tailscale.nix b/modules/nixos/traits/tailscale.nix
index a7d8c06..73c74e3 100644
--- a/modules/nixos/traits/tailscale.nix
+++ b/modules/nixos/traits/tailscale.nix
@@ -3,24 +3,24 @@
lib,
secretsDir,
...
-}: let
+}:
+let
cfg = config.traits.tailscale;
-in {
+in
+{
options.traits.tailscale = {
enable = lib.mkEnableOption "Tailscale";
ssh.enable = lib.mkEnableOption "Tailscale SSH";
- manageSecrets =
- lib.mkEnableOption "automatic secrets management"
- // {
- default = config.traits.secrets.enable && cfg.ssh.enable;
- };
+ manageSecrets = lib.mkEnableOption "automatic secrets management" // {
+ default = config.traits.secrets.enable && cfg.ssh.enable;
+ };
};
config = lib.mkIf cfg.enable (
lib.mkMerge [
{
networking.firewall = {
- trustedInterfaces = [config.services.tailscale.interfaceName];
+ trustedInterfaces = [ config.services.tailscale.interfaceName ];
};
services.tailscale = {
@@ -31,11 +31,11 @@ in {
(lib.mkIf cfg.ssh.enable {
networking.firewall = {
- allowedTCPPorts = [22];
+ allowedTCPPorts = [ 22 ];
};
services.tailscale = {
- extraUpFlags = ["--ssh"];
+ extraUpFlags = [ "--ssh" ];
};
})
generated by cgit v1.2.3 (git 2.25.1) at 2025-12-06 13:42:21 +0000