<?xml version="1.0" encoding="utf-8" standalone="yes"?><rss version="2.0" xmlns:atom="http://www.w3.org/2005/Atom"><channel><title>Tailscale on Simon Shine</title><link>https://simonshine.dk/tags/tailscale/</link><description>Recent content in Tailscale on Simon Shine</description><generator>Hugo</generator><language>en-us</language><lastBuildDate>Sun, 05 Jul 2026 21:01:12 +0200</lastBuildDate><atom:link href="https://simonshine.dk/tags/tailscale/index.xml" rel="self" type="application/rss+xml"/><item><title>Authenticating Tailscale non-interactively via API with sops-nix</title><link>https://simonshine.dk/articles/tailscale-api-authentication-sops-nix/</link><pubDate>Sun, 05 Jul 2026 21:01:12 +0200</pubDate><guid>https://simonshine.dk/articles/tailscale-api-authentication-sops-nix/</guid><description>&lt;p&gt;For the past three years I&amp;rsquo;ve connected my Nix machines using Tailscale by running &lt;code&gt;sudo tailscale login&lt;/code&gt; once per machine.&lt;/p&gt;
&lt;p&gt;I&amp;rsquo;ve known that you can actually &lt;a href="https://tailscale.com/docs/reference/tailscale-api"&gt;log onto a Tailnet with an API key&lt;/a&gt;.&lt;/p&gt;
&lt;p&gt;Why bother? Running &lt;code&gt;sudo tailscale login&lt;/code&gt; takes ten seconds, your browser&amp;rsquo;s password manager kicks in, you&amp;rsquo;re done.&lt;/p&gt;
&lt;p&gt;This is actually simple and ships almost out of the box, if you already have &lt;a href="https://simonshine.dk/articles/dendritic-sops-nix-flake-template/"&gt;sops-nix secrets management in your system configuration&lt;/a&gt;.&lt;/p&gt;</description></item></channel></rss>