youthlic/nixos
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

add sops secrets for Akun

Browse source
This commit is contained in:
ulic-youthlic 2025-01-20 00:03:53 +08:00
parent 852f2590b7
commit 4a19450086
Signed by: youthlic
GPG key ID: 63E86C3C14A0D721
2 changed files with 18 additions and 2 deletions
Download patch file Download diff file Expand all files Collapse all files

18
home/david/configurations/Akun/default.nix
View file

@ -2,6 +2,7 @@
pkgs, pkgs,
unixName, unixName,
config, config,
rootPath,
... ...
}: }:
{ {
@ -100,7 +101,7 @@
}; };
}; };
}; };
# includes = [ config.sops.secrets.ssh-config.path ]; includes = [ config.sops.secrets.ssh-config.path ];
}; };
programs.chromium = { programs.chromium = {
enable = true; enable = true;
@ -110,4 +111,19 @@
"--enable-features=UseOzonePlatform" "--enable-features=UseOzonePlatform"
]; ];
}; };
sops.secrets = {
"ssh-private-key/tytonidae" = {
mode = "0600";
path = "${config.home.homeDirectory}/.ssh/id_ed25519_tytonidae";
};
"ssh-private-key/akun" = {
mode = "0600";
path = "${config.home.homeDirectory}/.ssh/id_ed25519_akun";
};
"ssh-config" = {
mode = "0400";
format = "yaml";
sopsFile = rootPath + "/secrets/ssh-config.yaml";
};
};
} }

2
nixos/configurations/Akun/default.nix
View file

@ -16,7 +16,7 @@
}; };
i18n.enable = true; i18n.enable = true;
programs = { programs = {
# dae.enable = true; dae.enable = true;
openssh.enable = true; openssh.enable = true;
kanata.enable = true; kanata.enable = true;
}; };