oysteikt/nix-dotfiles
1
2
Fork 0
Code Issues 142 Pull Requests Activity

{common,home}/nix: use sops templates for access tokens

Browse Source
This commit is contained in:
Oystein Kristoffer Tveit
2025-03-13 15:13:59 +01:00
parent f8a11ae4fb
commit bcf29eb442
3 changed files with 28 additions and 10 deletions
Download Patch File Download Diff File Expand all files Collapse all files

14
home/home.nix
View File

@@ -94,14 +94,22 @@ in {
sops.defaultSopsFile = ../secrets/home.yaml;
sops.age.sshKeyPaths = [ "${config.home.homeDirectory}/.ssh/id_ed25519_home_sops" ];
sops.secrets."nix/access-tokens" = {
sopsFile = ../secrets/common.yaml;
sops = {
secrets = {
"nix/access-tokens/github" = { sopsFile = ../secrets/common.yaml; };
"nix/access-tokens/pvv-git" = { sopsFile = ../secrets/common.yaml; };
};
templates."nix-access-tokens.conf".content = let
inherit (config.sops) placeholder;
in ''
access-tokens = github.com=${placeholder."nix/access-tokens/github"} git.pvv.ntnu.no=${placeholder."nix/access-tokens/pvv-git"}
'';
};
nix = {
settings.use-xdg-base-directories = true;
extraOptions = ''
!include ${config.sops.secrets."nix/access-tokens".path}
!include ${config.sops.templates."nix-access-tokens.conf".path}
'';
};