Add wireless configuration for fourmi

Signed-off-by: Mel <mel@rnrd.eu>

3 files changed, 46 insertions, 6 deletions

diff --git a/machines/fourmi/devices.nix b/machines/fourmi/devices.nix
index 3738553..61f6d1d 100644
--- a/machines/fourmi/devices.nix
+++ b/machines/fourmi/devices.nix
@@ -1,4 +1,9 @@
-{ lib, nixos-hardware, ... }:
+{
+  config,
+  lib,
+  nixos-hardware,
+  ...
+}:
 
 {
   # correctly configure hardware in this pi server.
@@ -8,7 +13,7 @@
 
   # boot settings
   boot = {
-    loader = { 
+    loader = {
       grub.enable = false;
       generic-extlinux-compatible.enable = true;
     };
@@ -25,14 +30,24 @@
     };
   };
 
+  age.secrets.wireless-secrets = {
+    file = ../../secrets/wireless-secrets.age;
+  };
+
   networking = {
     # todo: configure properly
     firewall.enable = lib.mkForce false;
 
     useDHCP = true;
-    networkmanager = {
-      enable = false;
-      wifi.powersave = false;
+    wireless = {
+      enable = true;
+      interfaces = [ "wlan0" ];
+      secretsFile = config.age.secrets.wireless-secrets.path;
+      networks = {
+        # yea this is my home network :3
+        # (my boyfriends brother picked the name)
+        "Das asoziale Netzwerk".pskRaw = "ext:psk_home";
+      };
     };
   };
 }
diff --git a/secrets/secrets.nix b/secrets/secrets.nix
index 704213e..052e7ea 100644
--- a/secrets/secrets.nix
+++ b/secrets/secrets.nix
@@ -2,7 +2,12 @@ let
   keys = import ./keys.nix;
 
   inherit (keys) allAdmins allSystems;
-  inherit (keys.system) renard lapin corsac;
+  inherit (keys.system)
+    renard
+    lapin
+    corsac
+    fourmi
+    ;
 in
 {
   "binary-cache-key.age".publicKeys = [
@@ -28,4 +33,9 @@ in
   ] ++ allAdmins;
 
   "password.age".publicKeys = allSystems ++ allAdmins;
+
+  "wireless-secrets.age".publicKeys = [
+    corsac
+    fourmi
+  ] ++ allAdmins;
 }
diff --git a/secrets/wireless-secrets.age b/secrets/wireless-secrets.age
new file mode 100644
index 0000000..ae36a69
--- /dev/null
+++ b/secrets/wireless-secrets.age
@@ -0,0 +1,15 @@
+age-encryption.org/v1
+-> ssh-ed25519 QWV68w Vxu888bJ31C+3J9wl4VU/x6+4VsK8qmYOfwe2cB7LHw
+4RqhAUAtQ5Io6Hvhb4In2aMjZAkrFSYSAPsGwDYyobI
+-> ssh-ed25519 LKkJPg 93yyFOHlFUS2iHLkIgAVG5RXrQ/WQh0VC4CavR+ghjU
+1nVDH9uozvCCsVS/CV77Gd+3izAkuIeHcDDm4rWmxjk
+-> ssh-ed25519 ztr2Fw suRg7TfCHUc45gUoWUgVgO4DlpyAKVaCO51j2FTnACY
+IEdaJ+ZAAyLI6bBOnXkriH5/DIRLmvjXTV0O92hQzRA
+-> ssh-ed25519 lYrVNQ //My8+ZdeA8qpqq30GR5cYBr6cZso0UxbFGxXRcFrTA
+rmCT6XKzx6X7lbNcDuon9VlbdHMkf4DY/f5jWFZK1ig
+-> ssh-ed25519 COVM9Q mDi3jcK43SFLjtlmMrv4v3zYFdgbqtMN4qtCRrcJ6Do
+QJYHtp0GRZf8LVhpRYG8iGomso/KipVED9zqXqYizbM
+-> ssh-ed25519 aV3pTQ hhEFKh8NpldTEaUo8dMZ5QYbXRllU2eMCvUTwZtX0Fc
+II3w/tRexvAwkiDHI/2h+dhXjSDIDW7Vu13knJ0yK8Y
+--- NTPO5SjFgrEl8uQGKpgUnKQWvx8so7H3aENwY1gLbFU
+t~y*»¿saã
gµ.Ê,H­:€¹ÊôP„ Š …H}0t‘ÑUlþr›kÈðòfôQAR
\ No newline at end of file