39 lines
856 B
Nix
39 lines
856 B
Nix
{ inputs, modules, ... }:
|
|
{
|
|
#
|
|
flake-file.inputs = {
|
|
sops-nix = {
|
|
url = "github:Mic92/sops-nix";
|
|
inputs.nixpkgs.follows = "nixpkgs";
|
|
};
|
|
};
|
|
modules.sops = {
|
|
homeManager = {
|
|
imports = [
|
|
inputs.sops-nix.homeManagerModules.sops
|
|
];
|
|
sops = {
|
|
age.keyFile = "/home/doloro/.config/sops/age/key.txt"; # must have no password!
|
|
defaultSopsFile = ./secrets.yaml;
|
|
};
|
|
};
|
|
nixos = {
|
|
imports = [
|
|
inputs.sops-nix.nixosModules.sops
|
|
];
|
|
sops = {
|
|
age.keyFile = "/etc/ssh/ssh_host_ed25519_key";
|
|
defaultSopsFile = ./secrets.yaml;
|
|
secrets = {
|
|
root-hashed_password = {
|
|
neededForUsers = true;
|
|
};
|
|
doloro-hashed_password = {
|
|
neededForUsers = true;
|
|
};
|
|
};
|
|
};
|
|
};
|
|
};
|
|
}
|