Xetibo/DashNix
1
0
Fork 0
Code Issues Pull requests Projects Releases 1 Packages Wiki Activity Actions

Sops: Add more configuration

Browse source
This commit is contained in:
DashieTM 2024-09-15 00:23:02 +02:00
parent 3adbcfab59
commit 8ba687edc1
2 changed files with 23 additions and 5 deletions
Download patch file Download diff file Expand all files Collapse all files

8
modules/programs/keepassxc.nix
View file

@ -22,10 +22,10 @@
cache_config = lib.mkOption { cache_config = lib.mkOption {
default = '' default = ''
[General] [General]
LastDatabases=/home/${config.conf.username}/Music/Passwords.kdbx LastDatabases=/home/${config.conf.username}/pws/Passwords.kdbx
LastActiveDatabase=/home/${config.conf.username}/Music/Passwords.kdbx LastActiveDatabase=/home/${config.conf.username}/pws/Passwords.kdbx
LastOpenedDatabases=/home/${config.conf.username}/Music/Passwords.kdbx LastOpenedDatabases=/home/${config.conf.username}/pws/Passwords.kdbx
LastKeyFiles=@Variant(\0\0\0\x1c\0\0\0\x1\0\0\0\x42\0/\0h\0o\0m\0\x65\0/\0\x64\0\x61\0s\0h\0i\0\x65\0/\0M\0u\0s\0i\0\x63\0/\0P\0\x61\0s\0s\0w\0o\0r\0\x64\0s\0.\0k\0\x64\0\x62\0x\0\0\0\n\0\0\0\x42\0/\0h\0o\0m\0\x65\0/\0\x64\0\x61\0s\0h\0i\0\x65\0/\0M\0u\0s\0i\0\x63\0/\0l\0o\0g\0i\0n\0_\0k\0\x65\0y\0.\0k\0\x65\0y\0x) LastKeyFiles=@Variant(\0\0\0\x1c\0\0\0\x1\0\0\0>\0/\0h\0o\0m\0\x65\0/\0\x64\0\x61\0s\0h\0i\0\x65\0/\0p\0w\0s\0/\0P\0\x61\0s\0s\0w\0o\0r\0\x64\0s\0.\0k\0\x64\0\x62\0x\0\0\0\n\0\0\0>\0/\0h\0o\0m\0\x65\0/\0\x64\0\x61\0s\0h\0i\0\x65\0/\0p\0w\0s\0/\0l\0o\0g\0i\0n\0_\0k\0\x65\0y\0.\0k\0\x65\0y\0x)
''; '';
example = ""; example = "";
type = lib.types.lines; type = lib.types.lines;

20
modules/programs/sops.nix
View file

@ -26,6 +26,23 @@
type = with lib.types; attrsOf anything; type = with lib.types; attrsOf anything;
description = "secrets for sops"; description = "secrets for sops";
}; };
sopsPath = lib.mkOption {
default = root + /secrets/secrets.yaml;
example = "/your/path";
type =
with lib.types;
oneOf [
string
path
];
description = "sops secrets path";
};
validateSopsFile = lib.mkOption {
default = true;
example = false;
type = lib.types.bool;
description = "Whether to validate the sops file -> set this to false when using full paths";
};
}; };
config = lib.mkIf config.mods.sops.enable ( config = lib.mkIf config.mods.sops.enable (
lib.optionalAttrs (options ? home.packages) { lib.optionalAttrs (options ? home.packages) {
@ -35,7 +52,8 @@
home = "~/.gnupg"; home = "~/.gnupg";
sshKeyPaths = [ ]; sshKeyPaths = [ ];
}; };
defaultSopsFile = root + /secrets/secrets.yaml; defaultSopsFile = config.mods.sops.sopsPath;
validateSopsFiles = config.mods.sops.validateSopsFile;
secrets = config.mods.sops.secrets; secrets = config.mods.sops.secrets;
}; };