{ pkgs, user, ... }:
{
  environment.systemPackages = with pkgs; [
    age
    ssh-to-age   
    sops
  ];
  sops = {
    defaultSopsFile = ../sops-secrets.yaml;
    defaultSopsFormat = "yaml";
    # age = {
    #   # keyFile = "/home/${user}/.config/sops/age/keys.txt";
    #   # keyFile = "/var/lib/sops-nix/key.txt";
    #   # keyFile = "/home/${user}/.config/sops/age/age-public-key-from-ssh-A-subkey.txt";
    #   sshKeyPaths = [ ];
    #   # sshKeyPaths = [ "/etc/ssh/ssh_host_ed25519_key" ];
    #   # generateKey = true;
    # };
    # gnupg = {
    #   sshKeyPaths = [];
    #   home = "/home/${user}/.gnupg";
    # };
    secrets.example = {}; 
  };
}