Deploy sops age key with homeage

home.nix

@@ -1,4 +1,4 @@
-{ pkgs, lib, config, ... }: {
+{ pkgs, lib, config, flake, ... }: {
   imports = [
     ./modules/home-manager/neovim
     ./modules/home-manager/firefox
@@ -188,6 +188,11 @@
   homeage = {
     identityPaths = [ "/home/pim/.ssh/age_ed25519" ];
     installationType = "systemd";
+
+    file."sops-keys.txt" = {
+      source = "${flake}/secrets/sops-keys.txt.age";
+      symlinks = [ "${config.xdg.configHome}/sops/age/keys.txt" ];
+    };
   };
 
   dconf.settings = with lib.hm.gvariant; {

secrets/secrets.nix

@@ -13,4 +13,5 @@ in
   "syncthing-cert.pem.age".publicKeys = publicKeys;
   "keepassxc.ini.age".publicKeys =
     publicKeys; # Secret agent causes private keys in config file.
+  "sops-keys.txt.age".publicKeys = publicKeys;
 }