Xetibo/DashNix
1
0
Fork 0
Code Issues Pull requests Projects Releases 1 Packages Wiki Activity Actions

Modularize secrets

Browse source
This commit is contained in:
DashieTM 2024-08-25 14:38:35 +02:00
parent a1b70baa78
commit 785af695df
3 changed files with 16 additions and 7 deletions
Download patch file Download diff file Expand all files Collapse all files

20
modules/programs/sops.nix
View file

@ -6,6 +6,18 @@
type = lib.types.bool;
description = "Enable sops secrets";
};
secrets = lib.mkOption {
default = {
hub = { };
lab = { };
${config.conf.username} = { };
nextcloud = { };
access = { };
};
example = { };
type = with lib.types; attrsOf anything;
description = "secrets for sops";
};
};
config = lib.mkIf config.mods.sops.enable
(lib.optionalAttrs (options ? home.packages) {
@ -16,13 +28,7 @@
sshKeyPaths = [ ];
};
defaultSopsFile = root + /secrets/secrets.yaml;
secrets = {
hub = { };
lab = { };
${config.conf.username} = { };
nextcloud = { };
access = { };
};
secrets = config.mods.sops.secrets;
};
systemd.user.services.mbsync.Unit.After = [ "sops-nix.service" ];