modules/home/utilities/secrets.nix

@@ -31,12 +31,8 @@ in
 
   config = mkIf cfg.enable {
     # Set up SOPS
-    # TODO: Fix the key not being present in .config/sops before sops-nix runs
     sops.defaultSopsFile = cfg.defaultFile;
-    sops.age.sshKeyPaths = [
+    sops.age.sshKeyPaths = [ "${config.home.homeDirectory}/.config/sops/sops_ed25519_key" ];
-      "${config.home.homeDirectory}/.config/sops/sops_ed25519_key"
-      # "/persist/home/${config.home.username}/.config/sops/sops_ed25519_key"
-    ];
     sops.secrets = cfg.secrets;
     modules.impermanence.directories = [ ".config/sops" ];
   };

profiles/nixos/base.nix

@@ -23,7 +23,6 @@ in
         "/var/lib/nixos"
       ];
 
-      # TODO: Remove the secrets module and use sops directly?
       secrets = {
         enable = true;
         secrets = {

profiles/nixos/vm.nix

@@ -33,7 +33,6 @@ in
     };
 
     # Local user
-    sops.secrets."ssh-keys/admin-pub" = { };
     services.getty.autologinUser = "local";
     security.sudo.extraRules = [
       {