From 370cf2b03a9750f65eb7266a6f79cd4eb2e82773 Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?Torjus=20H=C3=A5kestad?= Date: Sat, 7 Feb 2026 13:50:49 +0100 Subject: [PATCH] hosts: enable vault and deploy listener on test VMs - Add vault.enable = true to testvm01, testvm02, testvm03 - Add homelab.deploy.enable = true for remote deployment via NATS - Update create-host template to include these by default Co-Authored-By: Claude Opus 4.5 --- hosts/testvm01/configuration.nix | 6 ++++++ hosts/testvm02/configuration.nix | 6 ++++++ hosts/testvm03/configuration.nix | 6 ++++++ scripts/create-host/templates/configuration.nix.j2 | 6 ++++++ terraform/vms.tf | 6 +++--- 5 files changed, 27 insertions(+), 3 deletions(-) diff --git a/hosts/testvm01/configuration.nix b/hosts/testvm01/configuration.nix index 77b71fe..c493c76 100644 --- a/hosts/testvm01/configuration.nix +++ b/hosts/testvm01/configuration.nix @@ -18,6 +18,12 @@ tier = "test"; # Start in test tier, move to prod after validation }; + # Enable Vault integration + vault.enable = true; + + # Enable remote deployment via NATS + homelab.deploy.enable = true; + nixpkgs.config.allowUnfree = true; boot.loader.grub.enable = true; boot.loader.grub.device = "/dev/vda"; diff --git a/hosts/testvm02/configuration.nix b/hosts/testvm02/configuration.nix index dd3d718..323b818 100644 --- a/hosts/testvm02/configuration.nix +++ b/hosts/testvm02/configuration.nix @@ -18,6 +18,12 @@ tier = "test"; # Start in test tier, move to prod after validation }; + # Enable Vault integration + vault.enable = true; + + # Enable remote deployment via NATS + homelab.deploy.enable = true; + nixpkgs.config.allowUnfree = true; boot.loader.grub.enable = true; boot.loader.grub.device = "/dev/vda"; diff --git a/hosts/testvm03/configuration.nix b/hosts/testvm03/configuration.nix index 9ac7f5d..a3dd2f3 100644 --- a/hosts/testvm03/configuration.nix +++ b/hosts/testvm03/configuration.nix @@ -18,6 +18,12 @@ tier = "test"; # Start in test tier, move to prod after validation }; + # Enable Vault integration + vault.enable = true; + + # Enable remote deployment via NATS + homelab.deploy.enable = true; + nixpkgs.config.allowUnfree = true; boot.loader.grub.enable = true; boot.loader.grub.device = "/dev/vda"; diff --git a/scripts/create-host/templates/configuration.nix.j2 b/scripts/create-host/templates/configuration.nix.j2 index 909d319..9edb2c8 100644 --- a/scripts/create-host/templates/configuration.nix.j2 +++ b/scripts/create-host/templates/configuration.nix.j2 @@ -18,6 +18,12 @@ tier = "test"; # Start in test tier, move to prod after validation }; + # Enable Vault integration + vault.enable = true; + + # Enable remote deployment via NATS + homelab.deploy.enable = true; + nixpkgs.config.allowUnfree = true; boot.loader.grub.enable = true; boot.loader.grub.device = "/dev/vda"; diff --git a/terraform/vms.tf b/terraform/vms.tf index 35d66b2..265024a 100644 --- a/terraform/vms.tf +++ b/terraform/vms.tf @@ -44,7 +44,7 @@ locals { memory = 2048 disk_size = "20G" flake_branch = "deploy-test-hosts" - vault_wrapped_token = "s.3XeDNvlhS5wqjjeOw1w7q4Cp" + vault_wrapped_token = "s.YRGRpAZVVtSYEa3wOYOqFmjt" } "testvm02" = { ip = "10.69.13.21/24" @@ -52,7 +52,7 @@ locals { memory = 2048 disk_size = "20G" flake_branch = "deploy-test-hosts" - vault_wrapped_token = "s.JDFHGWsWUBU9vKAFZK3XPu3X" + vault_wrapped_token = "s.tvs8yhJOkLjBs548STs6DBw7" } "testvm03" = { ip = "10.69.13.22/24" @@ -60,7 +60,7 @@ locals { memory = 2048 disk_size = "20G" flake_branch = "deploy-test-hosts" - vault_wrapped_token = "s.Msj0c4viIrvxprxRZZqw3jj4" + vault_wrapped_token = "s.sQ80FZGeG3z6jgrsuh74IopC" } }