From 78190a492875c40558c6a2c06a48d7f32b2ca681 Mon Sep 17 00:00:00 2001
From: makefu <github@syntax-fehler.de>
Date: Fri, 30 Jun 2023 10:00:32 +0200
Subject: config: move secrets to sops

---
 2configs/wireguard/thierry.nix | 5 +++--
 1 file changed, 3 insertions(+), 2 deletions(-)

(limited to '2configs/wireguard')

diff --git a/2configs/wireguard/thierry.nix b/2configs/wireguard/thierry.nix
index f1dfef192..58062073c 100644
--- a/2configs/wireguard/thierry.nix
+++ b/2configs/wireguard/thierry.nix
@@ -1,8 +1,9 @@
-{ lib, ... }:
+{ config, lib, ... }:
 {
+  sops.secrets."wg-thierry.key" = {};
   networking.wireguard.interfaces.thierry-wg = {
     ips = [ "172.27.66.10/24" ]; # TODO: not dnyamic
-    privateKeyFile = (toString <secrets>) + "/wg-thierry.key";
+    privateKeyFile = config.sops.secrets."wg-thierry.key".path;
     allowedIPsAsRoutes = true;
     # explicit route via eth0 to gum
     peers = [
-- 
cgit v1.2.3