derped/nixos
1
0
Fork 0
Code Releases Activity

Add sops secrets for Marid.

Browse source
This commit is contained in:
Kevin Baensch 2023-06-17 18:10:50 +02:00
parent d298b78c4d
commit 7d02cab301
Signed by: derped
GPG key ID: C0F1D326C7626543
3 changed files with 54 additions and 0 deletions
Download patch file Download diff file Expand all files Collapse all files

14
machines/Marid/sops.nix Normal file
View file

@ -0,0 +1,14 @@
{ config, lib, ... }:
{
sops = {
defaultSopsFile = ./secrets.yaml;
age = {
keyFile = "/var/lib/sops-nix/key.txt";
generateKey = true;
};
# TODO: auto loop over users
secrets."users/derped/password".neededForUsers = true;
secrets."certs/proxy".mode = "0440";
};
}