pim/nixos-configs
1
0
Fork 0
Code Issues 1 Pull requests Projects Releases Packages Wiki Activity

Don't decrypt user's sops secrets as root

Browse source
This commit is contained in:
Pim Kunis 2024-11-21 21:17:56 +01:00
parent a5be4ddbb2
commit 544cf42357
2 changed files with 2 additions and 2 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

2
machines/gamepc/configuration.nix
View file

@ -39,7 +39,7 @@ in {
}; };
pim-sops-age-key = { pim-sops-age-key = {
keyCommand = ["sudo" sops "--extract" "[\"sops_age_key\"]" "-d" "${self}/machines/gamepc/pim.sops.yaml"]; keyCommand = [sops "--extract" "[\"sops_age_key\"]" "-d" "${self}/machines/gamepc/pim.sops.yaml"];
name = "keys.txt"; name = "keys.txt";
destDir = "/home/pim/.config/sops/age"; destDir = "/home/pim/.config/sops/age";
user = "pim"; user = "pim";

2
machines/sue/configuration.nix
View file

@ -35,7 +35,7 @@ in {
}; };
pim-sops-age-key = { pim-sops-age-key = {
keyCommand = ["sudo" sops "--extract" "[\"sops_age_key\"]" "-d" "${self}/machines/sue/pim.sops.yaml"]; keyCommand = [sops "--extract" "[\"sops_age_key\"]" "-d" "${self}/machines/sue/pim.sops.yaml"];
name = "keys.txt"; name = "keys.txt";
destDir = "/home/pim/.config/sops/age"; destDir = "/home/pim/.config/sops/age";
user = "pim"; user = "pim";