From 5749de77a909e6846bc8f2404067db3e9ae2da6b Mon Sep 17 00:00:00 2001 From: mjallen18 Date: Mon, 25 Aug 2025 19:20:12 -0500 Subject: [PATCH] sops --- systems/x86_64-linux/nuc/sops.nix | 44 ------------------------------- 1 file changed, 44 deletions(-) diff --git a/systems/x86_64-linux/nuc/sops.nix b/systems/x86_64-linux/nuc/sops.nix index 7eda53f..12f891b 100755 --- a/systems/x86_64-linux/nuc/sops.nix +++ b/systems/x86_64-linux/nuc/sops.nix @@ -19,7 +19,6 @@ in # Either the group id or group name representation of the secret group # It is recommended to get the group name from `config.users.users..group` to avoid misconfiguration sops = { - defaultSopsFile = lib.mkForce defaultSops; age.sshKeyPaths = [ "/etc/ssh/ssh_host_ed25519_key" ]; # ------------------------------ @@ -27,49 +26,6 @@ in # ------------------------------ secrets = { - "wifi" = { - sopsFile = sharedSops; - }; - - # ------------------------------ - # Secureboot keys - # ------------------------------ - - "secureboot/GUID" = { - sopsFile = sharedSops; - path = "/etc/secureboot/GUID"; - mode = "0640"; - }; - "secureboot/keys/db-key" = { - sopsFile = sharedSops; - path = "/etc/secureboot/keys/db/db.key"; - mode = "0640"; - }; - "secureboot/keys/db-pem" = { - sopsFile = sharedSops; - path = "/etc/secureboot/keys/db/db.pem"; - mode = "0640"; - }; - "secureboot/keys/KEK-key" = { - sopsFile = sharedSops; - path = "/etc/secureboot/keys/KEK/KEK.key"; - mode = "0640"; - }; - "secureboot/keys/KEK-pem" = { - sopsFile = sharedSops; - path = "/etc/secureboot/keys/KEK/KEK.pem"; - mode = "0640"; - }; - "secureboot/keys/PK-key" = { - sopsFile = sharedSops; - path = "/etc/secureboot/keys/PK/PK.key"; - mode = "0640"; - }; - "secureboot/keys/PK-pem" = { - sopsFile = sharedSops; - path = "/etc/secureboot/keys/PK/PK.pem"; - mode = "0640"; - }; }; # ------------------------------