21 lines
484 B
Nix
21 lines
484 B
Nix
{
|
|
inputs,
|
|
config,
|
|
lib,
|
|
pkgs,
|
|
...
|
|
}: let
|
|
secretsDirectory = builtins.toString (inputs.nix-secrets or "");
|
|
in {
|
|
config = lib.mkIf (inputs ? nix-secrets) {
|
|
sops = {
|
|
defaultSopsFile = "${secretsDirectory}/common.yaml";
|
|
validateSopsFiles = false;
|
|
age = {
|
|
sshKeyPaths = ["${config.home.homeDirectory}/.ssh/id_ed25519"];
|
|
keyFile = "${config.home.homeDirectory}/.config/sops-nix/key.txt";
|
|
generateKey = true;
|
|
};
|
|
};
|
|
};
|
|
}
|