sora/nixconfig
1
0
Fork 1
Code Issues 2 Pull Requests Actions Releases Activity

Cleanup

Browse Source
This commit is contained in:
soraefir
2026-06-20 10:54:17 +02:00
parent b55afcfdf6
commit 8e21f3dae8
9 changed files with 31 additions and 27 deletions
Download Patch File Download Diff File Expand all files Collapse all files
modules/shared/sops/default.nix
+5 -3
View File
@@ -1,6 +1,8 @@
{ config, lib, pkgs, ... }:
let
isCI = builtins.elem config.syscfg.hostname [ "ci" "sandbox" ];
defaultUser = config.users.users.${config.syscfg.defaultUser} or { };
defaultGroup = if pkgs.stdenv.isDarwin then "staff" else "users";
keyFilePath = (if isCI then
"/var/lib/sops-nix/mock-key.txt"
else
@@ -8,7 +10,7 @@ let
sopsFilePath = (if isCI then ./mock.yaml else ./common.yaml);
in {
environment.systemPackages = with pkgs; [ sops ];
environment.sessionVariables.SOPS_AGE_KEY_FILE = keyFilePath;
environment.variables.SOPS_AGE_KEY_FILE = keyFilePath;
sops.defaultSopsFile = sopsFilePath;
sops.age.keyFile = keyFilePath;
@@ -19,8 +21,8 @@ in {
{
"${config.syscfg.hostname}_ssh_priv" = {
mode = "0400";
owner = config.users.users.${config.syscfg.defaultUser}.name;
group = config.users.users.${config.syscfg.defaultUser}.group;
owner = defaultUser.name or config.syscfg.defaultUser;
group = defaultUser.group or defaultGroup;
};
}
(lib.mkIf config.syscfg.net.wlp.enable {