From fc45fdf0a52ba29a7ee798cab54357d76c16b28d Mon Sep 17 00:00:00 2001
From: Asmir A <asmir.abdulahovic@gmail.com>
Date: Sat, 14 Oct 2023 23:19:24 +0200
Subject: [PATCH] magpie/gitea: change mail pass

---
 magpie/configuration.nix       | 22 ++++++++++++++--------
 magpie/secrets/gitea_mail.yaml | 21 +++++++++++++++++++++
 2 files changed, 35 insertions(+), 8 deletions(-)
 create mode 100644 magpie/secrets/gitea_mail.yaml

diff --git a/magpie/configuration.nix b/magpie/configuration.nix
index c1a4436..4b2eb36 100644
--- a/magpie/configuration.nix
+++ b/magpie/configuration.nix
@@ -64,7 +64,7 @@
     # nix-shell -p mkpasswd --run 'mkpasswd -sm bcrypt'
     loginAccounts = {
       "gitea@project-cloud.net" = {
-        hashedPasswordFile = "/var/mail_pass";
+        hashedPasswordFile = config.sops.secrets."gitea_mail".password_hash.path;
         aliases = ["git@project-cloud.net"];
       };
     };
@@ -78,16 +78,18 @@
   services.opendkim.enable = true;
 
   services.miniflux = {
-	  enable = true;
-	  adminCredentialsFile = config.sops.secrets."miniflux_env".path;
-	  config = {
-		LISTEN_ADDR = "localhost:5001";
-		BASE_URL = "https://miniflux.project-cloud.net";
-	  };
+    enable = true;
+    adminCredentialsFile = config.sops.secrets."miniflux_env".path;
+    config = {
+      LISTEN_ADDR = "localhost:5001";
+      BASE_URL = "https://miniflux.project-cloud.net";
+    };
   };
   services.restya-board = {
     enable = true;
-    /*virtualHost.serverName = "board.project-cloud.net";*/
+    /*
+    virtualHost.serverName = "board.project-cloud.net";
+    */
     virtualHost.listenHost = "localhost";
     virtualHost.listenPort = 4001;
   };
@@ -208,6 +210,10 @@
     sopsFile = ./secrets/miniflux.yaml;
   };
 
+  sops.secrets."gitea_mail" = {
+    sopsFile = ./secrets/gitea_mail.yaml;
+  };
+
   networking.hostName = "magpie";
   networking.wireless.enable = false;
   networking.firewall.enable = false;
diff --git a/magpie/secrets/gitea_mail.yaml b/magpie/secrets/gitea_mail.yaml
new file mode 100644
index 0000000..38182e7
--- /dev/null
+++ b/magpie/secrets/gitea_mail.yaml
@@ -0,0 +1,21 @@
+password_hash: ENC[AES256_GCM,data:jA4aL3mulpy4A1nYJjJ882ZfOe08hB9M0bEL6pBOJsfs4xD4yHNMHdxbwy1ea0dMLPAfzvwonEqjZqLg,iv:GXpsyNb6ny81S06s3lWt88HOMwmUNDDujrFc/spM0t0=,tag:y+iOQY6JFHNZq1Xw6MCxRQ==,type:str]
+sops:
+    kms: []
+    gcp_kms: []
+    azure_kv: []
+    hc_vault: []
+    age:
+        - recipient: age153y8mz6gqy5t54q4fnrdvjj4v5ls9cgp3hhpd2hzf5tvkcnncf6q4xns0j
+          enc: |
+            -----BEGIN AGE ENCRYPTED FILE-----
+            YWdlLWVuY3J5cHRpb24ub3JnL3YxCi0+IFgyNTUxOSBCT2VyNWxUeUZ5aDdHcXJR
+            WGJVOGgyeC83MEV4REpGZkRUcVJKZDBqYmtjCllQdFhyRWNiTURYQmpucndFWDlr
+            WUFybGtmckNBdXYzMVZxT3lQM1k3aTgKLS0tIEpNZjU1RkpSOVo3Y1ovR0lmbHJu
+            bENVWmpCcTVqMDh2Wjhob2I2VzRRblkKPGCV1gRyihDCStM4tmvp89d996v1UzdJ
+            /NyK49//+uJJqwCEWuvHWWCB+EbkkOE6gPPKXZyXZSTbb/TDDcVF/Q==
+            -----END AGE ENCRYPTED FILE-----
+    lastmodified: "2023-10-14T21:17:25Z"
+    mac: ENC[AES256_GCM,data:AmCeOR3ZV+pwukA2oLfpIrCDmsAnVrjRy2hO5MgJXJ0oWKmZfY8X1FQoNBAjOZrMuNaL8o57HL7BxYljcIJpfQ67MZYdLu3a8+iuwrw8DQnfm3AJNxZOAaY4sRZsGcQVaA6KhyoODBRWKJ0Vo8ChKOc30aAFXoyMUZllluR2/ss=,iv:8BoJ4KJJdvBu2rXMCyt9HBwkptzZpQy7J/7E/PmxMbY=,tag:H3IUBCiJu1CPNb+0c0V9JQ==,type:str]
+    pgp: []
+    unencrypted_suffix: _unencrypted
+    version: 3.7.3