feat: sops party
This commit is contained in:
parent
bf6dc8b4b1
commit
e325340b26
2 changed files with 14 additions and 13 deletions
15
home.nix
15
home.nix
|
@ -17,6 +17,7 @@ in
|
||||||
nixpkgs.config.allowUnfree = true;
|
nixpkgs.config.allowUnfree = true;
|
||||||
|
|
||||||
imports = [
|
imports = [
|
||||||
|
"${builtins.fetchTarball "https://github.com/Mic92/sops-nix/archive/feat/home-manager.tar.gz"}/modules/home-manager/sops.nix"
|
||||||
./catppuccin
|
./catppuccin
|
||||||
./modules/firefox.nix
|
./modules/firefox.nix
|
||||||
./modules/git.nix
|
./modules/git.nix
|
||||||
|
@ -27,13 +28,10 @@ in
|
||||||
./modules/music.nix
|
./modules/music.nix
|
||||||
./modules/neovim.nix
|
./modules/neovim.nix
|
||||||
./modules/newsboat.nix
|
./modules/newsboat.nix
|
||||||
# ./modules/sketchybar.nix
|
./modules/sops.nix
|
||||||
./modules/vscode.nix
|
./modules/vscode.nix
|
||||||
./modules/wezterm.nix
|
./modules/wezterm.nix
|
||||||
./modules/zsh.nix
|
./modules/zsh.nix
|
||||||
|
|
||||||
# FIXME: change after https://github.com/Mic92/sops-nix/pull/261 is merged
|
|
||||||
# "${builtins.fetchTarball "https://github.com/Mic92/sops-nix/archive/feat/home-manager.tar.gz"}/modules/home-manager/sops.nix"
|
|
||||||
] ++ lib.optionals (builtins.pathExists ./modules/secrets.nix) [
|
] ++ lib.optionals (builtins.pathExists ./modules/secrets.nix) [
|
||||||
# hotfix: use fucking git-secret, this is atrocious beyond belief
|
# hotfix: use fucking git-secret, this is atrocious beyond belief
|
||||||
./modules/secrets.nix
|
./modules/secrets.nix
|
||||||
|
@ -47,15 +45,6 @@ in
|
||||||
k9s.enable = true;
|
k9s.enable = true;
|
||||||
};
|
};
|
||||||
|
|
||||||
# TODO:: enable after sops supports nix-darwin
|
|
||||||
# sops = {
|
|
||||||
# gnupg.home = "${config.xdg.configHome}/gnupg";
|
|
||||||
# defaultSopsFile = ./secrets.yaml;
|
|
||||||
# secrets."kubernetes-work-prod" = {
|
|
||||||
# path = "${config.xdg.configHome}/kube/work-prod";
|
|
||||||
# };
|
|
||||||
# };
|
|
||||||
|
|
||||||
manual.manpages.enable = false;
|
manual.manpages.enable = false;
|
||||||
|
|
||||||
home = {
|
home = {
|
||||||
|
|
12
modules/sops.nix
Normal file
12
modules/sops.nix
Normal file
|
@ -0,0 +1,12 @@
|
||||||
|
{ config, lib, ... }:
|
||||||
|
|
||||||
|
{
|
||||||
|
# TODO: enable after sops supports nix-darwin
|
||||||
|
sops = {
|
||||||
|
gnupg.home = "${config.xdg.configHome}/gnupg";
|
||||||
|
defaultSopsFile = ../secrets.yaml;
|
||||||
|
secrets."kubernetes-work-prod" = {
|
||||||
|
path = "${config.xdg.configHome}/kube/work-prod";
|
||||||
|
};
|
||||||
|
};
|
||||||
|
}
|
Loading…
Reference in a new issue