remove nix dir and move out all sub modules

author: Freya Murphy <freya@freyacat.org> 2025-06-17 21:57:53 -0400
committer: Freya Murphy <freya@freyacat.org> 2025-06-17 21:57:53 -0400
commit: e0f2eb724245e02cb247b644f0947261d8665318 (patch)
tree: 13f929df40059d37165cbe46be95a6404a1bbecb /programs/sops
parent: refactor styles to new color scheme basis (diff)
download: dotfiles-nix-e0f2eb724245e02cb247b644f0947261d8665318.tar.gz
dotfiles-nix-e0f2eb724245e02cb247b644f0947261d8665318.tar.bz2
dotfiles-nix-e0f2eb724245e02cb247b644f0947261d8665318.zip
1 files changed, 30 insertions, 0 deletions
diff --git a/programs/sops/default.nix b/programs/sops/default.nix
new file mode 100644
index 0000000..5df5f22
--- /dev/null
+++ b/programs/sops/default.nix
@@ -0,0 +1,30 @@
+{ config, pkgs, inputs, ... }:
+
+let
+
+  isEd25519 = k: k.type == "ed25519";
+  getKeyPath = k: k.path;
+  keys = builtins.filter isEd25519 config.services.openssh.hostKeys;
+
+in
+{
+    imports = [
+        inputs.sops-nix.nixosModules.sops
+    ];
+
+    environment.systemPackages = with pkgs; [
+        sops
+    ];
+
+    sops = {
+      defaultSopsFile = ../../secrets.yaml;
+
+      gnupg.home = config.homePath + "/.gnupg";
+      gnupg.sshKeyPaths = [];
+
+      secrets = {
+        freyanetWg = {};
+        tinternetWg = {};
+      };
+    };
+}
author	Freya Murphy <freya@freyacat.org>	2025-06-17 21:57:53 -0400
committer	Freya Murphy <freya@freyacat.org>	2025-06-17 21:57:53 -0400
commit	e0f2eb724245e02cb247b644f0947261d8665318 (patch)
tree	13f929df40059d37165cbe46be95a6404a1bbecb /programs/sops
parent	refactor styles to new color scheme basis (diff)
download	dotfiles-nix-e0f2eb724245e02cb247b644f0947261d8665318.tar.gz dotfiles-nix-e0f2eb724245e02cb247b644f0947261d8665318.tar.bz2 dotfiles-nix-e0f2eb724245e02cb247b644f0947261d8665318.zip