From 900dc5364eb6741778b73c5c8ca452f99928272a Mon Sep 17 00:00:00 2001
From: Noa Aarts <noa@voorwaarts.nl>
Date: Tue, 29 Oct 2024 16:23:51 +0100
Subject: [PATCH] feat: enable nifi

---
 hosts/nuos/configuration.nix | 13 +++++++++++++
 secrets/nifi/password.age    |  7 +++++++
 secrets/secrets.nix          | 25 ++++++++++++++++++++-----
 3 files changed, 40 insertions(+), 5 deletions(-)
 create mode 100644 secrets/nifi/password.age

diff --git a/hosts/nuos/configuration.nix b/hosts/nuos/configuration.nix
index 17d8fce..96b0053 100644
--- a/hosts/nuos/configuration.nix
+++ b/hosts/nuos/configuration.nix
@@ -152,6 +152,11 @@
       "secrets/token-flurry".file = ../../secrets/github/flurry.age;
       "secrets/token-nixconf".file = ../../secrets/github/nixconf.age;
       "secrets/nix-store-key".file = ../../secrets/nix-serve/private.age;
+      "secrets/nifi-password" = {
+        file = ../../secrets/nifi/password.age;
+        owner = "nifi";
+        group = "nifi";
+      };
       "rsecrets/radicale" = {
         file = ../../secrets/radicale/htpasswd.age;
         owner = "radicale";
@@ -161,6 +166,12 @@
   };
 
   services = {
+    nifi = {
+      enable = true;
+      enableHTTPS = true;
+      initUser = "itepastra";
+      initPasswordFile = config.age.secrets."secrets/nifi-password".path;
+    };
     github-runners = {
       flurry-runner = {
         enable = true;
@@ -285,6 +296,8 @@
     80 # http
     443 # https
 
+    8443 # nifi
+
     25565 # minecraft
     24454 # minecraft (voice)
 
diff --git a/secrets/nifi/password.age b/secrets/nifi/password.age
new file mode 100644
index 0000000..bda6369
--- /dev/null
+++ b/secrets/nifi/password.age
@@ -0,0 +1,7 @@
+age-encryption.org/v1
+-> ssh-ed25519 tcnWbQ Fx1eAQsq7ITOjvUTuo/qT/aFL/d/51o1P3ZpXVW1JwU
+q0yCm3pE0AOSu/IceEo/DiYRnsrE9XJfIk0f9U4FrvM
+-> ssh-ed25519 ropO2g 6Q0hQtHJZTTm4euojkXCXFb4oqrKwSygIKAtterShnY
+ZI0Mu7M2sEURXpekQkWeuAdqlryVIOBgFUWveRLupo8
+--- Ofn3ZTIEzI9xcOis/1JPcyiJCXhzlyiXb4NOutFdrWE
+œë™2{ó÷q¿þH{¦1Ä5ýYÛð9¸õ”±—“¤±¾FaSB¦+[Î}¡•Â«Ø#óÝ  qésrœ".\¢ð™áE
\ No newline at end of file
diff --git a/secrets/secrets.nix b/secrets/secrets.nix
index 8e797db..ce1e066 100644
--- a/secrets/secrets.nix
+++ b/secrets/secrets.nix
@@ -6,9 +6,24 @@ in
   "restic/env.age".publicKeys = [ noa ];
   "restic/repo.age".publicKeys = [ noa ];
   "restic/password.age".publicKeys = [ noa ];
-  "github/flurry.age".publicKeys = [ noa nuOS ];
-  "github/nixconf.age".publicKeys = [ noa nuOS ];
-  "nix-serve/private.age".publicKeys = [ noa nuOS ];
-  "radicale/htpasswd.age".publicKeys = [ noa nuOS ];
+  "github/flurry.age".publicKeys = [
+    noa
+    nuOS
+  ];
+  "github/nixconf.age".publicKeys = [
+    noa
+    nuOS
+  ];
+  "nix-serve/private.age".publicKeys = [
+    noa
+    nuOS
+  ];
+  "radicale/htpasswd.age".publicKeys = [
+    noa
+    nuOS
+  ];
+  "nifi/password.age".publicKeys = [
+    noa
+    nuOS
+  ];
 }
-