mirror of
https://github.com/ellmau/nixos.git
synced 2025-12-19 09:29:36 +01:00
22 lines
517 B
Nix
22 lines
517 B
Nix
{ config, pkgs, lib, ... }:
|
|
with lib; {
|
|
options.elss.sops.enable = mkEnableOption "Use sops config";
|
|
|
|
config =
|
|
let
|
|
cfg = config.elss.sops;
|
|
in
|
|
mkIf cfg.enable {
|
|
sops = {
|
|
defaultSopsFile = ../secrets/secrets.yaml;
|
|
age.sshKeyPaths = [ "/etc/ssh/ssh_host_ed25519_key" ];
|
|
age.keyFile = "/var/lib/sops-nix/key.txt";
|
|
age.generateKey = true;
|
|
gnupg.sshKeyPaths = [
|
|
../secrets/keys/users
|
|
../secrets/keys/hosts
|
|
];
|
|
};
|
|
};
|
|
}
|