Jan/nixos-config
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

Added deployment key to root account

Browse Source
This commit is contained in:
Jan-Bulthuis 2025-05-30 15:11:22 +02:00
parent f1dcb8c72b
commit 1bc34518e1
3 changed files with 10 additions and 8 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
modules/home/utilities/secrets.nix
View File

@ -34,6 +34,6 @@ in
sops.defaultSopsFile = cfg.defaultFile; sops.defaultSopsFile = cfg.defaultFile;
sops.age.sshKeyPaths = [ "${config.home.homeDirectory}/.config/sops/sops_ed25519_key" ]; sops.age.sshKeyPaths = [ "${config.home.homeDirectory}/.config/sops/sops_ed25519_key" ];
sops.secrets = cfg.secrets; sops.secrets = cfg.secrets;
modules.impermanence.directories = [ ".config/" ]; modules.impermanence.directories = [ ".config/sops" ];
}; };
} }

9
profiles/nixos/base.nix
View File

@ -22,6 +22,15 @@ in
impermanence.directories = [ impermanence.directories = [
"/var/lib/nixos" "/var/lib/nixos"
]; ];
secrets = {
enable = true;
secrets = {
"ssh-keys/deploy-priv" = {
path = "/root/.ssh/id_ed25519";
};
};
};
}; };
# Localization # Localization

7
profiles/nixos/vm.nix
View File

@ -29,13 +29,6 @@ in
zfs rollback -r tank/root@blank zfs rollback -r tank/root@blank
''; '';
}; };
secrets = {
enable = true;
secrets = {
"ssh-keys/deploy/private-key" = { };
"ssh-keys/deploy/public-key" = { };
};
};
ssh.enable = true; ssh.enable = true;
}; };