homelab/nixos/shared/sops.nix

{ config, inputs, ... }:
let secretsPath = builtins.toString inputs.homelabSecrets;
in {
  imports = [ inputs.sops-nix.nixosModules.sops ];

  sops = {
    defaultSopsFile = "${secretsPath}/secrets.yaml";
    age = {
      sshKeyPaths = [ "/etc/ssh/ssh_host_ed25519_key" ];
      keyFile = "/var/lib/sops-nix/key.txt";
      generateKey = true;
    };
  };
  sops.secrets = { "tailscale/preauthkeys/poseidon" = { }; };

}
Initial sops setup 2025-05-22 20:24:20 +00:00			`{ config, inputs, ... }:`
			`let secretsPath = builtins.toString inputs.homelabSecrets;`
shared stuff 2025-05-22 18:50:50 +00:00			`in {`
Initial sops setup 2025-05-22 20:24:20 +00:00			`imports = [ inputs.sops-nix.nixosModules.sops ];`
shared stuff 2025-05-22 18:50:50 +00:00
			`sops = {`
			`defaultSopsFile = "${secretsPath}/secrets.yaml";`
Initial sops setup 2025-05-22 20:24:20 +00:00			`age = {`
			`sshKeyPaths = [ "/etc/ssh/ssh_host_ed25519_key" ];`
			`keyFile = "/var/lib/sops-nix/key.txt";`
			`generateKey = true;`
			`};`
			`};`
			`sops.secrets = { "tailscale/preauthkeys/poseidon" = { }; };`
shared stuff 2025-05-22 18:50:50 +00:00
			`}`