sora/nixconfig
1
0
Fork 0
Code Issues 1 Pull Requests 1 Actions Releases Activity

dockercompat&sops
All checks were successful
Nix Build / build-nixos (push) Successful in 5m57s
Details

Browse Source
This commit is contained in:
soraefir 2024-04-21 10:24:22 +02:00
parent 8a09c870d7
commit 29eeb04fac
Signed by: sora
GPG Key ID: A362EA0491E2EEA0
3 changed files with 9 additions and 5 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

1
modules/nixos/system/hw/virt/default.nix
View File

@ -9,6 +9,7 @@
podman = { podman = {
enable = true; enable = true;
dockerSocket.enable = true; dockerSocket.enable = true;
dockerCompat = true;
defaultNetwork.settings.dnsname.enable = true; defaultNetwork.settings.dnsname.enable = true;
}; };
}; };

3
modules/server/default.nix
View File

@ -5,7 +5,8 @@ in {
backend = "podman-socket"; backend = "podman-socket";
projects = { projects = {
cloud.settings = import ./docker/cloud.nix { inherit config pkgs; }; cloud.settings = import ./docker/cloud.nix { inherit config pkgs; };
authentik.settings = import ./docker/authentik.nix {inherit config pkgs;}; authentik.settings =
import ./docker/authentik.nix { inherit config pkgs; };
}; };
}; };
} }

6
modules/shared/sops/default.nix
View File

@ -1,8 +1,10 @@
{ config, pkgs, ... }: { config, pkgs, ... }:
let let
isCI = builtins.elem config.syscfg.hostname [ "ci" "sandbox" ]; isCI = builtins.elem config.syscfg.hostname [ "ci" "sandbox" ];
keyFilePath = keyFilePath = (if isCI then
(if isCI then "./mock-key.txt" else "/var/lib/sops-nix/age-key.txt"); "/var/lib/sops-nix/mock-key.txt"
else
"/var/lib/sops-nix/age-key.txt");
sopsFilePath = (if isCI then ./mock.yaml else ./common.yaml); sopsFilePath = (if isCI then ./mock.yaml else ./common.yaml);
in { in {
environment.systemPackages = with pkgs; [ sops ]; environment.systemPackages = with pkgs; [ sops ];