Move secrets to machine config

This commit is contained in:
Gonne 2024-04-02 18:33:50 +02:00
parent 326cc52c2e
commit 7c1baf8d1d
2 changed files with 8 additions and 7 deletions

View file

@ -1,4 +1,4 @@
{
{config, ...}: {
imports = [
./hardware-configuration.nix
../../roles
@ -12,4 +12,11 @@
# System configuration here
networking.hostName = "bragi";
system.stateVersion = "23.11";
sops.secrets.backupKey = {
sopsFile = ./backupKey.yaml;
owner = config.users.users.fsaccount.name;
inherit (config.users.users.fsaccount) group;
mode = "0400";
};
}

View file

@ -161,11 +161,5 @@ in {
}
];
};
sops.secrets.backupKey = {
sopsFile = ../machines/bragi/backupKey.yaml;
owner = config.users.users.fsaccount.name;
inherit (config.users.users.fsaccount) group;
mode = "0400";
};
};
}