Sops-Nix

2024-06-03 16:59:11 +02:00
parent 52343cbc23
commit fce5f49e57
29 changed files with 373 additions and 554 deletions
--- a/home-modules/sops.nix
+++ b/home-modules/sops.nix
@@ -0,0 +1,23 @@
+{ user, inputs, ... }:
+{
+  imports = [
+    inputs.sops-nix.homeManagerModules.sops
+  ];
+  
+  sops = {
+    # age.keyFile = "/home/${user}/.config/sops/age/keys.txt";
+    gnupg.home = "/home/${user}/.gnupg";
+    defaultSopsFile = ../sops-secrets.yaml;
+
+    # %r is $XDG_RUNTIME_DIR
+    secrets = {
+      "example" = {
+        path = "%r/secrets/example"; 
+      };
+      # "sops-age-private-key" = { # Bootstrapping doens't work
+      #   mode = "0400";
+      #   path = "/home/${user}/.config/sops/age/keys.txt";
+      # };
+    };
+  };
+}