29 lines
628 B
Nix
29 lines
628 B
Nix
{ config, pkgs, lib, system, user, allowed, secrets, ... }:
|
|
|
|
{
|
|
environment.systemPackages = [
|
|
pkgs.strongswan
|
|
];
|
|
|
|
environment.etc = {
|
|
|
|
# easyroam HSMW
|
|
"ssl/certs/easyroam_client_cert.pem".source = ../secrets/easyroam-hsmw/easyroam_client_cert.pem;
|
|
"ssl/certs/easyroam_root_ca.pem".source = ../secrets/easyroam-hsmw/easyroam_root_ca.pem;
|
|
"ssl/certs/easyroam_client_key.pem".source = ../secrets/easyroam-hsmw/easyroam_client_key.pem;
|
|
|
|
|
|
# VPN
|
|
"NetworkManager/system-connections/eduroam.nmconnection" = {
|
|
text = secrets.easyroamHSMW.nmconfig;
|
|
mode = "0600";
|
|
};
|
|
|
|
|
|
};
|
|
|
|
|
|
}
|
|
|
|
|