refactor: indirections f. user,[home,flake,xdg]Dir

2025-12-06 17:17:22 +01:00 · 2025-03-22 22:32:32 +01:00 · 2025-03-22 22:32:32 +01:00 · 9c1df052a2
commit 9c1df052a2
parent 5c207050a3
34 changed files with 416 additions and 281 deletions
--- a/profiles/home/common/sops.nix
+++ b/profiles/home/common/sops.nix
@ -1,17 +1,20 @@
 { config, lib, ... }:
+let
+  inherit (config.swarselsystems) homeDir xdgDir;
+in
 {
  sops = lib.mkIf (!config.swarselsystems.isPublic) {
-    age.sshKeyPaths = [ "${config.home.homeDirectory}/.ssh/sops" "${config.home.homeDirectory}/.ssh/ssh_host_ed25519_key" ];
-    defaultSopsFile = lib.swarselsystems.mkIfElseList config.swarselsystems.isBtrfs "/persist/.dotfiles/secrets/general/secrets.yaml" "${config.home.homeDirectory}/.dotfiles/secrets/general/secrets.yaml";
+    age.sshKeyPaths = [ "${homeDir}/.ssh/sops" "${homeDir}/.ssh/ssh_host_ed25519_key" ];
+    defaultSopsFile = lib.swarselsystems.mkIfElseList config.swarselsystems.isBtrfs "/persist/.dotfiles/secrets/general/secrets.yaml" "${homeDir}/.dotfiles/secrets/general/secrets.yaml";

    validateSopsFiles = false;
    secrets = {
-      mrswarsel = { path = "/run/user/1000/secrets/mrswarsel"; };
-      nautilus = { path = "/run/user/1000/secrets/nautilus"; };
-      leon = { path = "/run/user/1000/secrets/leon"; };
-      swarselmail = { path = "/run/user/1000/secrets/swarselmail"; };
-      github_notif = { path = "/run/user/1000/secrets/github_notif"; };
-      u2f_keys = { path = "${config.home.homeDirectory}/.config/Yubico/u2f_keys"; };
+      mrswarsel = { path = "${xdgDir}/secrets/mrswarsel"; };
+      nautilus = { path = "${xdgDir}/secrets/nautilus"; };
+      leon = { path = "${xdgDir}/secrets/leon"; };
+      swarselmail = { path = "${xdgDir}/secrets/swarselmail"; };
+      github_notif = { path = "${xdgDir}/secrets/github_notif"; };
+      u2f_keys = { path = "${homeDir}/.config/Yubico/u2f_keys"; };
    };
  };
 }