mirror of
https://github.com/daylinmorgan/oizys.git
synced 2025-01-22 07:07:32 -06:00
30 lines
714 B
Nix
30 lines
714 B
Nix
{
|
|
config,
|
|
enabled,
|
|
...
|
|
}:
|
|
{
|
|
oizys = {
|
|
nix-ld = enabled // {
|
|
overkill = enabled;
|
|
};
|
|
};
|
|
|
|
sops = {
|
|
defaultSopsFile = ./secrets.yaml;
|
|
|
|
# This will automatically import SSH keys as age keys
|
|
age.sshKeyPaths = [ "/etc/ssh/ssh_host_ed25519_key" ];
|
|
secrets.mullvad-userpass = { };
|
|
secrets."mullvad_ca.crt" = { };
|
|
secrets.restic-othalan = {
|
|
# Permission modes are in octal representation (same as chmod),
|
|
mode = "0440";
|
|
# It is recommended to get the group/name name from
|
|
# `config.users.users.<?name>.{name,group}` to avoid misconfiguration
|
|
owner = config.users.users.daylin.name;
|
|
group = config.users.users.daylin.group;
|
|
};
|
|
};
|
|
|
|
}
|