optional sops
This commit is contained in:
parent
cce5a3a8f4
commit
1f6e3c2509
|
@ -111,8 +111,9 @@
|
||||||
] ++ modules;
|
] ++ modules;
|
||||||
#++ flake-programs-sqlite.nixosModules.programs-sqlite; # TODO: make work
|
#++ flake-programs-sqlite.nixosModules.programs-sqlite; # TODO: make work
|
||||||
|
|
||||||
sops = lib.mkIf (builtins.pathExists ./secrets/${hostname}.yaml) {
|
sops = {
|
||||||
defaultSopsFile = ./secrets/${hostname}.yaml;
|
defaultSopsFile = lib.mkIf (builtins.pathExists ./secrets/${hostname}.yaml)
|
||||||
|
./secrets/${hostname}.yaml;
|
||||||
age.sshKeyPaths = [ "/etc/ssh/ssh_host_ed25519_key" ];
|
age.sshKeyPaths = [ "/etc/ssh/ssh_host_ed25519_key" ];
|
||||||
age.keyFile = "/var/lib/sops-nix/key.txt";
|
age.keyFile = "/var/lib/sops-nix/key.txt";
|
||||||
age.generateKey = true;
|
age.generateKey = true;
|
||||||
|
|
Loading…
Reference in New Issue