osbm/flake
1
0
Fork 0
Code Issues Pull requests Wiki Activity

agenix module

Browse source
This commit is contained in:
Osman Faruk Bayram 2025-02-16 02:25:43 +03:00
parent 0ba4cbb699
commit 7499da1897
4 changed files with 36 additions and 16 deletions
Download patch file Download diff file Expand all files Collapse all files

1
hosts/tartarus/configuration.nix
View file

@ -44,7 +44,6 @@
hardware.bluetooth.powerOnBoot = true; # powers up the default Bluetooth controller on boot
environment.systemPackages = with pkgs; [
inputs.agenix.packages.x86_64-linux.default
inputs.osbm-nvim.packages.x86_64-linux.default
nixd
];

1
hosts/ymir/configuration.nix
View file

@ -90,7 +90,6 @@
environment.systemPackages = with pkgs; [
nvidia-container-toolkit
inputs.agenix.packages.x86_64-linux.default
inputs.osbm-nvim.packages.x86_64-linux.default
nixd
];

1
modules/common-packages.nix
View file

@ -30,7 +30,6 @@
lolcat
cmatrix
inxi
age
jq
onefetch
just

49
modules/secrets.nix
View file

@ -1,17 +1,40 @@
{
age.secrets = {
network-manager.file = ../secrets/network-manager.age;
ssh-key-private = {
file = ../secrets/ssh-key-private.age;
path = "/home/osbm/.ssh/id_ed25519";
owner = "osbm";
mode = "0600";
};
ssh-key-public = {
file = ../secrets/ssh-key-public.age;
path = "/home/osbm/.ssh/id_ed25519.pub";
owner = "osbm";
mode = "0644";
config,
pkgs,
inputs,
lib,
...
}: {
options = {
myModules.enableSecrets = lib.mkOption {
type = lib.types.bool;
default = true;
description = "Enable agenix secrets management";
};
};
config = lib.mkMerge [
(lib.mkIf config.myModules.enableSecrets {
environment.systemPackages = with pkgs; [
inputs.agenix.packages.x86_64-linux.default
age
];
age.secrets = {
network-manager.file = ../secrets/network-manager.age;
ssh-key-private = {
file = ../secrets/ssh-key-private.age;
path = "/home/osbm/.ssh/id_ed25519";
owner = "osbm";
mode = "0600";
};
ssh-key-public = {
file = ../secrets/ssh-key-public.age;
path = "/home/osbm/.ssh/id_ed25519.pub";
owner = "osbm";
mode = "0644";
};
};
})
];
}