2024-08-11 08:29:46 -05:00
|
|
|
{
|
2024-11-28 18:53:31 -06:00
|
|
|
config,
|
2025-01-19 17:42:06 -06:00
|
|
|
enabled,
|
|
|
|
|
flake,
|
2024-08-11 08:29:46 -05:00
|
|
|
...
|
|
|
|
|
}:
|
2024-01-23 11:51:13 -06:00
|
|
|
{
|
2025-01-06 15:29:31 -06:00
|
|
|
oizys = {
|
|
|
|
|
nix-ld = enabled // {
|
|
|
|
|
overkill = enabled;
|
|
|
|
|
};
|
|
|
|
|
};
|
2024-11-28 17:54:36 -06:00
|
|
|
|
2024-11-28 22:53:35 -06:00
|
|
|
sops = {
|
|
|
|
|
defaultSopsFile = ./secrets.yaml;
|
|
|
|
|
|
|
|
|
|
# This will automatically import SSH keys as age keys
|
|
|
|
|
age.sshKeyPaths = [ "/etc/ssh/ssh_host_ed25519_key" ];
|
|
|
|
|
secrets.mullvad-userpass = { };
|
|
|
|
|
secrets."mullvad_ca.crt" = { };
|
|
|
|
|
secrets.restic-othalan = {
|
|
|
|
|
# Permission modes are in octal representation (same as chmod),
|
|
|
|
|
mode = "0440";
|
|
|
|
|
# It is recommended to get the group/name name from
|
|
|
|
|
# `config.users.users.<?name>.{name,group}` to avoid misconfiguration
|
|
|
|
|
owner = config.users.users.daylin.name;
|
|
|
|
|
group = config.users.users.daylin.group;
|
|
|
|
|
};
|
2024-11-28 18:53:31 -06:00
|
|
|
};
|
2025-01-19 17:42:06 -06:00
|
|
|
|
|
|
|
|
environment.systemPackages =[
|
|
|
|
|
(flake.pkgs "lix-attic").attic-client
|
|
|
|
|
];
|
|
|
|
|
|
2024-01-23 11:51:13 -06:00
|
|
|
}
|
