christoph/flake-nixinator
1
Fork 0
Code Activity

Modules/Sops: Don't hardcode age keyFile path

Browse Source
This commit is contained in:
Christoph Urlacher
2026-03-26 21:23:48 +01:00
parent 8c53eaf570
commit 7f22089765
2 changed files with 2 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

1
system/default.nix
View File

@ -235,6 +235,7 @@ with mylib.networking; {
description = "Christoph"; description = "Christoph";
group = "users"; group = "users";
uid = 1000; uid = 1000;
home = "/home/${username}";
extraGroups = [ extraGroups = [
"networkmanager" "networkmanager"
"wheel" "wheel"

2
system/systemmodules/sops-nix/default.nix
View File

@ -26,7 +26,7 @@ in {
defaultSopsFile = ./secrets.yaml; defaultSopsFile = ./secrets.yaml;
age = { age = {
keyFile = lib.mkDefault "/home/${username}/.secrets/age/age.key"; keyFile = lib.mkDefault "${config.users.users.${username}.home}/.secrets/age/age.key";
generateKey = false; generateKey = false;
sshKeyPaths = []; sshKeyPaths = [];
}; };