add what-auth instance to ch-apn

2 files changed, 22 insertions, 0 deletions

diff --git a/inventory/host_vars/ch-apps/whawty.yml b/inventory/host_vars/ch-apps/whawty.yml
index a0ea111f..f47a9714 100644
--- a/inventory/host_vars/ch-apps/whawty.yml
+++ b/inventory/host_vars/ch-apps/whawty.yml
@@ -12,6 +12,7 @@ whawty_auth_instances:
       port: 3022
       authorized_keys:
       - ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIBsY3QIaN/S05EHZ9IF6GWgXG0wAh5qAxgQAq7ZLtNP8 whawty-auth-sync-chaos-at-home@ch-http-proxy
+      - ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAILHoyvg0McwpPFAT642lm9MIGG2/6Hi+hFe8IvmroDar whawty-auth-sync-chaos-at-home@ch-pan
     storage:
       type: zfs
       parent: "{{ _whawty_auth_zfs_base_ }}"
diff --git a/inventory/host_vars/ch-pan.yml b/inventory/host_vars/ch-pan.yml
index fc87f374..16a43695 100644
--- a/inventory/host_vars/ch-pan.yml
+++ b/inventory/host_vars/ch-pan.yml
@@ -175,3 +175,24 @@ prometheus_job_multitarget_blackbox__probe:
   - instance: "https-pan.chaos-at-home.org"
     target: "https://pan.chaos-at-home.org"
     module: http_tls_2xx
+
+
+whawty_auth_store_instances:
+  chaos-at-home:
+    config: "{{ whawty_auth_store__chaos_at_home | combine({'basedir': '/var/lib/whawty/auth/chaos-at-home'}) }}"
+    permissions:
+      file-mode: "0600"
+      dir-mode: "0700"
+    sync:
+      type: client
+      hostname: 192.168.32.1
+      port: 3022
+      user: sync
+
+whawty_auth_app_instances:
+  chaos-at-home:
+    store: chaos-at-home
+    listeners:
+      saslauthd:
+        sockets:
+        - /run/whawty/auth/chaos-at-home.sock