diff options
author | makefu <github@syntax-fehler.de> | 2023-06-11 00:47:05 +0200 |
---|---|---|
committer | makefu <github@syntax-fehler.de> | 2023-06-11 00:47:05 +0200 |
commit | ac112d6c21fa692c64afc9b27c4af4ea552f2d4d (patch) | |
tree | 2534d3b65207ebb9f1b93a3cda25ddcc87ee8ccc | |
parent | d04983183b567d131ac7d68215f88cc5d4272fc3 (diff) |
secrets: add default
-rw-r--r-- | 2configs/secrets/default.nix | 4 | ||||
-rw-r--r-- | 2configs/secrets/user-passwords.nix | 4 |
2 files changed, 6 insertions, 2 deletions
diff --git a/2configs/secrets/default.nix b/2configs/secrets/default.nix new file mode 100644 index 000000000..f6596be12 --- /dev/null +++ b/2configs/secrets/default.nix @@ -0,0 +1,4 @@ +{ + sops.defaultSopsFile = ../../secrets/common.yaml; + sops.age.sshKeyPaths = [ "/etc/ssh/ssh_host_ed25519_key" ]; +} diff --git a/2configs/secrets/user-passwords.nix b/2configs/secrets/user-passwords.nix index 68d94e9fa..960d99d64 100644 --- a/2configs/secrets/user-passwords.nix +++ b/2configs/secrets/user-passwords.nix @@ -1,12 +1,12 @@ { config, ... }: { - sops.defaultSopsFile = ../../secrets/common.yaml; - sops.age.sshKeyPaths = [ "/etc/ssh/ssh_host_ed25519_key" ]; + imports = [ ./default.nix ]; sops.secrets = { "passwd/makefu".neededForUsers = true; "passwd/root".neededForUsers = true; }; + users.users = { makefu.passwordFile = config.sops.secrets."passwd/makefu".path; root.passwordFile = config.sops.secrets."passwd/root".path; |