From 17469113699b511193520f8b87d16bac3d07eefe Mon Sep 17 00:00:00 2001
From: cy <hi@cything.io>
Date: Sat, 14 Dec 2024 18:44:25 -0500
Subject: [PATCH] wireguard config for phone

---
 nix/hosts/chunk/default.nix  | 6 ++++++
 nix/hosts/chunk/secrets.yaml | 5 +++--
 2 files changed, 9 insertions(+), 2 deletions(-)

diff --git a/nix/hosts/chunk/default.nix b/nix/hosts/chunk/default.nix
index 664b838..c755f65 100644
--- a/nix/hosts/chunk/default.nix
+++ b/nix/hosts/chunk/default.nix
@@ -25,6 +25,7 @@ in {
     "hedgedoc" = { };
     "wireguard/private" = { };
     "wireguard/psk" = { };
+    "wireguard/pskphone" = { };
   };
 
   boot.loader.grub.enable = true;
@@ -298,6 +299,11 @@ in {
         allowedIPs = [ "10.0.0.2/32" "fdc9:281f:04d7:9ee9::2/128" ];
         presharedKeyFile = "/run/secrets/wireguard/psk";
       }
+      {
+        publicKey = "JIGi60wzLw717Cim1dSFoLCdJz5rePa5AIFfuisJI0k=";
+        allowedIPs = [ "10.0.0.3/32" "fdc9:281f:04d7:9ee9::3/128" ];
+        presharedKeyFile = "/run/secrets/wireguard/pskphone";
+      }
     ];
   };
 
diff --git a/nix/hosts/chunk/secrets.yaml b/nix/hosts/chunk/secrets.yaml
index 08373d6..4df5c87 100644
--- a/nix/hosts/chunk/secrets.yaml
+++ b/nix/hosts/chunk/secrets.yaml
@@ -10,6 +10,7 @@ hedgedoc: ENC[AES256_GCM,data:3DWGGXE3E4nay5NhbBkNcyDlv40G8KvhLbvu1Qba3zJLDeVtuB
 wireguard:
     private: ENC[AES256_GCM,data:jAarkXsz8ldGW+HHNeMNWOg/EIqKXQfPKwg+fbSEHSGTLoGHgihylYYK09U=,iv:6oAzkS5IZ/GWYv4JwBIprlN1EmquYffR+dtXyYiCm1g=,tag:DnC/uDNhj39CY6tsihdxDQ==,type:str]
     psk: ENC[AES256_GCM,data:VyxJORdC1ulZP1jSeh8TTqI/RJYcjeJtsPrBtUGZlWHjNodrzXSkoilPD1g=,iv:q6PyTFVnb4QAM/OpnBY0DPIaido0KPW8UQ6nJlpVd0o=,tag:BMfhQKZmaN+kCjXS2tT6Sw==,type:str]
+    pskphone: ENC[AES256_GCM,data:AFpadV3fb+Lm1vHOJO5/u9e0uWO3DVJDElGVWWhdga/5OrZnX3bN4rUoXDc=,iv:TJSGU5dlST0YzramkpKxK8I0sLvDokkQpqVZUGJdZTE=,tag:wxIe6UNpleiPlP6J3vooTw==,type:str]
 sops:
     kms: []
     gcp_kms: []
@@ -25,8 +26,8 @@ sops:
             R1lNZjFGelFvcXQ0enZTZ2pWRFZ2VVUKtGKbLyijIV1h0HFX7DMAkvXwdG70+pg/
             sJ0PRcU6QGKz1NtVFdcXC1KQIqrv0XOGU26cRt8mji88JMzzgL7CHg==
             -----END AGE ENCRYPTED FILE-----
-    lastmodified: "2024-12-14T23:09:54Z"
-    mac: ENC[AES256_GCM,data:517GJQuyb43wayiQ2nP/Tcyx7OBRshJ/XaWJql0fXqQG1oIN3qPperkv3ps58Z0p3XicEMllIfGiB8rXZnfJhCDGdlBr4+dhVXkgFoQzbElcWLq11Soy5nXm3txDGTMwrFYxx6DNJqaD0eKWtpyJzBpl8qGtdYG8QjXgYCpRJBc=,iv:L0A1+UdKifpv7GXWl3ixsk+WVEE3rL9eSIEQ0gpVr1A=,tag:SqJVFV4iHVTdpsxZUPXKHQ==,type:str]
+    lastmodified: "2024-12-14T23:35:39Z"
+    mac: ENC[AES256_GCM,data:fzywpuZsz8H8EVvbhjfYD8cf3NWpmBWMlOgoyR+UDhdNfVEiz1WiEvurXylOxYqsjp4kDdKqTrru4+eTobYBSWVdX7FJw3nDzIq3KZS552HKpl4bQ5qUIsSd/AMHKsoaWbNGKIW1ZZvrZqFgHTdzPUxW7wnBPBjVqn/jL7HHW20=,iv:caQ17uRnDlTsn+8Zp9brNJXlbtsGK9mqIi1LKs5gDuY=,tag:0gi6Zzz5wmgPrVDE8tVLxg==,type:str]
     pgp: []
     unencrypted_suffix: _unencrypted
     version: 3.9.2