dotfiles/home/secrets/sops.nix

{
  config,
  pkgs,
  ...
}: let
  inherit (pkgs.stdenv.hostPlatform) isLinux isDarwin;

  # TODO: make this accept more than just otf
  fontMapping = fontname: {
    path =
      if isLinux
      then "${config.xdg.dataHome}/fonts/${fontname}.otf"
      else if isDarwin
      then "${config.home.homeDirectory}/Library/Fonts/${fontname}.otf"
      else throw "Unsupported platform";
    format = "binary";
    sopsFile = ./fonts/${fontname}.json;
  };
in {
  sops = {
    gnupg.home = "${config.xdg.configHome}/gnupg";
    defaultSopsFile = ./main.yaml;
    secrets = {
      "kubernetes-work-prod".path = "${config.xdg.configHome}/kube/work-prod";
      "berkeley_regular" = fontMapping "berkeley_regular";
      "berkeley_italic" = fontMapping "berkeley_italic";
      "berkeley_bold" = fontMapping "berkeley_bold";
      "berkeley_bold_italic" = fontMapping "berkeley_bold_italic";
      "comic_code_regular" = fontMapping "comic_code_regular";
      "comic_code_italic" = fontMapping "comic_code_italic";
      "comic_code_medium" = fontMapping "comic_code_medium";
      "comic_code_medium_italic" = fontMapping "comic_code_medium_italic";
      "comic_code_bold" = fontMapping "comic_code_bold";
      "comic_code_bold_italic" = fontMapping "comic_code_bold_italic";
    };
  };
}
feat(secrets): add encrypted fonts 2023-02-18 21:33:19 +01:00			`{`
			`config,`
			`pkgs,`
			`...`
			`}: let`
			`inherit (pkgs.stdenv.hostPlatform) isLinux isDarwin;`

			`# TODO: make this accept more than just otf`
			`fontMapping = fontname: {`
			`path =`
			`if isLinux`
			`then "${config.xdg.dataHome}/fonts/${fontname}.otf"`
			`else if isDarwin`
			`then "${config.home.homeDirectory}/Library/Fonts/${fontname}.otf"`
			`else throw "Unsupported platform";`
			`format = "binary";`
refactor: move home & secret files 2023-02-19 00:18:25 +01:00			`sopsFile = ./fonts/${fontname}.json;`
feat(secrets): add encrypted fonts 2023-02-18 21:33:19 +01:00			`};`
			`in {`
feat: sops party 2023-02-07 03:55:12 +01:00			`sops = {`
			`gnupg.home = "${config.xdg.configHome}/gnupg";`
refactor: move home & secret files 2023-02-19 00:18:25 +01:00			`defaultSopsFile = ./main.yaml;`
feat(secrets): add encrypted fonts 2023-02-18 21:33:19 +01:00			`secrets = {`
			`"kubernetes-work-prod".path = "${config.xdg.configHome}/kube/work-prod";`
			`"berkeley_regular" = fontMapping "berkeley_regular";`
			`"berkeley_italic" = fontMapping "berkeley_italic";`
			`"berkeley_bold" = fontMapping "berkeley_bold";`
			`"berkeley_bold_italic" = fontMapping "berkeley_bold_italic";`
			`"comic_code_regular" = fontMapping "comic_code_regular";`
			`"comic_code_italic" = fontMapping "comic_code_italic";`
			`"comic_code_medium" = fontMapping "comic_code_medium";`
			`"comic_code_medium_italic" = fontMapping "comic_code_medium_italic";`
			`"comic_code_bold" = fontMapping "comic_code_bold";`
			`"comic_code_bold_italic" = fontMapping "comic_code_bold_italic";`
feat: sops party 2023-02-07 03:55:12 +01:00			`};`
			`};`
			`}`