mirror of
https://github.com/Swarsel/.dotfiles.git
synced 2025-12-06 09:07:21 +01:00
22 lines
870 B
Nix
22 lines
870 B
Nix
{ config, lib, ... }:
|
|
let
|
|
mkIfElse = p: yes: no: lib.mkMerge [
|
|
(lib.mkIf p yes)
|
|
(lib.mkIf (!p) no)
|
|
];
|
|
in
|
|
{
|
|
sops = lib.mkIf (!config.swarselsystems.isPublic) {
|
|
age.sshKeyPaths = [ "${config.home.homeDirectory}/.ssh/sops" "${config.home.homeDirectory}/.ssh/ssh_host_ed25519_key" ];
|
|
defaultSopsFile = mkIfElse config.swarselsystems.isBtrfs "/persist/.dotfiles/secrets/general/secrets.yaml" "${config.home.homeDirectory}/.dotfiles/secrets/general/secrets.yaml";
|
|
|
|
validateSopsFiles = false;
|
|
secrets = {
|
|
mrswarsel = { path = "/run/user/1000/secrets/mrswarsel"; };
|
|
nautilus = { path = "/run/user/1000/secrets/nautilus"; };
|
|
leon = { path = "/run/user/1000/secrets/leon"; };
|
|
swarselmail = { path = "/run/user/1000/secrets/swarselmail"; };
|
|
github_notif = { path = "/run/user/1000/secrets/github_notif"; };
|
|
};
|
|
};
|
|
}
|