21 lines
660 B
Nix
21 lines
660 B
Nix
{ config, ... }:
|
|
{
|
|
sops.defaultSopsFile = ../../secrets/secrets.yaml;
|
|
sops.age.sshKeyPaths = [ "/etc/ssh/ssh_host_ed25519_key" ];
|
|
|
|
sops.secrets."desktop/matt_password" = { };
|
|
sops.secrets."desktop/matt_password".neededForUsers = true;
|
|
|
|
sops.secrets."desktop/hass_token" = { };
|
|
sops.secrets."desktop/hass_token".mode = "0777";
|
|
|
|
sops.secrets."desktop/restic/user" = { };
|
|
sops.secrets."desktop/restic/password" = { };
|
|
sops.templates."restic.env".content = ''
|
|
RESTIC_REST_USER=${config.sops.placeholder."desktop/restic/user"}
|
|
RESTIC_REST_PASSWORD=${config.sops.placeholder."desktop/restic/password"}
|
|
'';
|
|
|
|
sops.secrets."wifi" = { };
|
|
}
|