mirror of
https://github.com/Swarsel/.dotfiles.git
synced 2025-12-06 00:57:22 +01:00
45 lines
1.8 KiB
Nix
45 lines
1.8 KiB
Nix
{ self, lib, config, globals, ... }:
|
|
let
|
|
inherit (config.swarselsystems) mainUser homeDir;
|
|
inherit (config.repo.secrets.common.emacs) radicaleUser;
|
|
modules = config.home-manager.users.${mainUser}.swarselmodules;
|
|
|
|
certsSopsFile = self + /secrets/certs/secrets.yaml;
|
|
in
|
|
{
|
|
config = lib.mkIf config.swarselsystems.withHomeManager {
|
|
sops = {
|
|
secrets = (lib.optionalAttrs modules.mail
|
|
{
|
|
address1-token = { owner = mainUser; };
|
|
address2-token = { owner = mainUser; };
|
|
address3-token = { owner = mainUser; };
|
|
address4-token = { owner = mainUser; };
|
|
}) // (lib.optionalAttrs modules.waybar {
|
|
github-notifications-token = { owner = mainUser; };
|
|
}) // (lib.optionalAttrs modules.emacs {
|
|
fever-pw = { path = "${homeDir}/.emacs.d/.fever"; owner = mainUser; };
|
|
}) // (lib.optionalAttrs modules.zsh {
|
|
croc-password = { owner = mainUser; };
|
|
github-nixpkgs-review-token = { owner = mainUser; };
|
|
}) // (lib.optionalAttrs modules.emacs {
|
|
emacs-radicale-pw = { owner = mainUser; };
|
|
github-forge-token = { owner = mainUser; };
|
|
}) // (lib.optionalAttrs (modules ? optional-work) {
|
|
harica-root-ca = { sopsFile = certsSopsFile; path = "${homeDir}/.aws/certs/harica-root.pem"; owner = mainUser; };
|
|
}) // (lib.optionalAttrs modules.anki {
|
|
anki-user = { owner = mainUser; };
|
|
anki-pw = { owner = mainUser; };
|
|
});
|
|
templates = {
|
|
authinfo = lib.mkIf modules.emacs {
|
|
path = "${homeDir}/.emacs.d/.authinfo";
|
|
content = ''
|
|
machine ${globals.services.radicale.domain} login ${radicaleUser} password ${config.sops.placeholder.emacs-radicale-pw}
|
|
'';
|
|
owner = mainUser;
|
|
};
|
|
};
|
|
};
|
|
};
|
|
}
|