From 75008ffe53e6099fb63b728b22103296a5c902c7 Mon Sep 17 00:00:00 2001
From: Infinidoge <infinidoge@inx.moe>
Date: Sat, 7 Dec 2024 18:28:24 -0500
Subject: [PATCH] setup automatic tailscale connection

---
 kiosk.nix                   |  16 ++++++++++++++++
 tailscale-client-secret.key | Bin 0 -> 87 bytes
 2 files changed, 16 insertions(+)
 create mode 100644 tailscale-client-secret.key

diff --git a/kiosk.nix b/kiosk.nix
index f9808c5..ea9ad55 100644
--- a/kiosk.nix
+++ b/kiosk.nix
@@ -35,4 +35,20 @@ in
     enable = true;
     pulse.enable = true;
   };
+
+  services.tailscale = {
+    enable = true;
+    extraUpFlags = [ "--advertise-tags" "tag:kiosk" ];
+    authKeyFile = ./tailscale-client-secret.key;
+    authKeyParameters.ephemeral = false;
+    openFirewall = true;
+  };
+  networking.firewall.trustedInterfaces = [ "tailscale0" ];
+
+  services.openssh = {
+    enable = true;
+    settings = {
+      PermitRootLogin = "yes";
+    };
+  };
 }
diff --git a/tailscale-client-secret.key b/tailscale-client-secret.key
new file mode 100644
index 0000000000000000000000000000000000000000..a991e7f2b1592991cbfa4f610ab8716c979c916a
GIT binary patch
literal 87
zcmV-d0I2@}M@dveQdv+`00SP7;eo%CF#L`FvE!tULN{50@U*pP0ZiQLeg+MHNlXe7
tkNB*q7zy=e;4OZM5cxmgyxhS)g!mI9zb!JVBJcMtKo2QTg?Gt7PQbD5C-wjU

literal 0
HcmV?d00001