From 24b4917d8186551bcf987b72d1c3588e4705096a Mon Sep 17 00:00:00 2001
From: Christian Pointner <equinox@spreadspace.org>
Date: Sun, 28 Jan 2024 02:11:05 +0100
Subject: finalize whawty/auth roles for now

---
 inventory/host_vars/ch-apps/whawty.yml | 21 +++------------------
 1 file changed, 3 insertions(+), 18 deletions(-)

(limited to 'inventory/host_vars/ch-apps')

diff --git a/inventory/host_vars/ch-apps/whawty.yml b/inventory/host_vars/ch-apps/whawty.yml
index f2ff0a4f..a0ea111f 100644
--- a/inventory/host_vars/ch-apps/whawty.yml
+++ b/inventory/host_vars/ch-apps/whawty.yml
@@ -7,26 +7,11 @@ whawty_auth_instances:
   passwd.chaos-at-home.org:
     version: 0.2-rc9
     port: 3080
-    store:
-      default: 2
-      params:
-      - id: 1
-        scryptauth:
-          hmackey: "{{ vault_whawty_auth_scryptauth_hmackeys['passwd.chaos-at-home.org']['1'] }}"
-          cost: 12
-      - id: 2
-        scryptauth:
-          hmackey: "{{ vault_whawty_auth_scryptauth_hmackeys['passwd.chaos-at-home.org']['2'] }}"
-          cost: 12
-      - id: 3
-        argon2id:
-          time: 1
-          memory: 65536
-          threads: 4
-          length: 32
+    store: "{{ whawty_auth_store__chaos_at_home }}"
     sync:
       port: 3022
-      authorized_keys: "{{ users.equinox.ssh }}"
+      authorized_keys:
+      - ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIBsY3QIaN/S05EHZ9IF6GWgXG0wAh5qAxgQAq7ZLtNP8 whawty-auth-sync-chaos-at-home@ch-http-proxy
     storage:
       type: zfs
       parent: "{{ _whawty_auth_zfs_base_ }}"
-- 
cgit v1.2.3