secrets: add default

2023-06-11 00:47:05 +02:00 · 2023-06-11 00:47:05 +02:00 · ac112d6c21
parent d04983183b
commit ac112d6c21
2 changed files with 6 additions and 2 deletions
--- a/2configs/secrets/default.nix
+++ b/2configs/secrets/default.nix
@ -0,0 +1,4 @@
+{
+  sops.defaultSopsFile = ../../secrets/common.yaml;
+  sops.age.sshKeyPaths = [ "/etc/ssh/ssh_host_ed25519_key" ];
+}
--- a/2configs/secrets/user-passwords.nix
+++ b/2configs/secrets/user-passwords.nix
@ -1,12 +1,12 @@
 { config, ... }:
 {
-  sops.defaultSopsFile = ../../secrets/common.yaml;
-  sops.age.sshKeyPaths = [ "/etc/ssh/ssh_host_ed25519_key" ];
+  imports = [ ./default.nix ];

  sops.secrets = {
    "passwd/makefu".neededForUsers = true;
    "passwd/root".neededForUsers = true;
  };
+
  users.users = {
    makefu.passwordFile = config.sops.secrets."passwd/makefu".path;
    root.passwordFile = config.sops.secrets."passwd/root".path;