Deploy sops age key with homeage
This commit is contained in:
parent
d11fc9ba6d
commit
9c83729db0
3 changed files with 7 additions and 1 deletions
7
home.nix
7
home.nix
|
|
@ -1,4 +1,4 @@
|
||||||
{ pkgs, lib, config, ... }: {
|
{ pkgs, lib, config, flake, ... }: {
|
||||||
imports = [
|
imports = [
|
||||||
./modules/home-manager/neovim
|
./modules/home-manager/neovim
|
||||||
./modules/home-manager/firefox
|
./modules/home-manager/firefox
|
||||||
|
|
@ -188,6 +188,11 @@
|
||||||
homeage = {
|
homeage = {
|
||||||
identityPaths = [ "/home/pim/.ssh/age_ed25519" ];
|
identityPaths = [ "/home/pim/.ssh/age_ed25519" ];
|
||||||
installationType = "systemd";
|
installationType = "systemd";
|
||||||
|
|
||||||
|
file."sops-keys.txt" = {
|
||||||
|
source = "${flake}/secrets/sops-keys.txt.age";
|
||||||
|
symlinks = [ "${config.xdg.configHome}/sops/age/keys.txt" ];
|
||||||
|
};
|
||||||
};
|
};
|
||||||
|
|
||||||
dconf.settings = with lib.hm.gvariant; {
|
dconf.settings = with lib.hm.gvariant; {
|
||||||
|
|
|
||||||
|
|
@ -13,4 +13,5 @@ in
|
||||||
"syncthing-cert.pem.age".publicKeys = publicKeys;
|
"syncthing-cert.pem.age".publicKeys = publicKeys;
|
||||||
"keepassxc.ini.age".publicKeys =
|
"keepassxc.ini.age".publicKeys =
|
||||||
publicKeys; # Secret agent causes private keys in config file.
|
publicKeys; # Secret agent causes private keys in config file.
|
||||||
|
"sops-keys.txt.age".publicKeys = publicKeys;
|
||||||
}
|
}
|
||||||
|
|
|
||||||
BIN
secrets/sops-keys.txt.age
Normal file
BIN
secrets/sops-keys.txt.age
Normal file
Binary file not shown.
Loading…
Reference in a new issue