Cian-H/My_NixOS_Config
1
0
Fork 0
mirror of https://github.com/Cian-H/My_NixOS_Config.git synced 2025-12-22 23:11:57 +00:00
Code Issues Packages Projects Releases Wiki Activity

Attempted to fix sops-nix config

Browse Source
This commit is contained in:
Cian Hughes
2025-01-30 01:23:04 +00:00
parent c79f7bdb4e
commit d9dfacd2a2
4 changed files with 31 additions and 14 deletions
Download Patch File Download Diff File Expand all files Collapse all files

10
flake.nix
View File

@@ -124,16 +124,6 @@
}; };
}; };
modules = [ modules = [
inputs.sops-nix.homeManagerModules.sops
{
sops = {
defaultSopsFile = ./secrets.yaml;
secrets = {
# Define your secrets here
vikunja_jwtsecret = {};
};
};
}
./home-manager/homeserver.nix ./home-manager/homeserver.nix
]; ];
}; };

9
home-manager/homeserver.nix
View File

@@ -12,5 +12,14 @@
./homeserver/packages.nix ./homeserver/packages.nix
./homeserver/programs.nix ./homeserver/programs.nix
./homeserver/containers.nix ./homeserver/containers.nix
inputs.sops-nix.homeManagerModules.sops
]; ];
sops = {
age.keyFile = "/home/cianh/.config/sops/age/keys.txt";
defaultSopsFile = ./secrets.yaml;
secrets = {
vikunja_jwtsecret = {};
};
};
} }

5
home-manager/homeserver/containers/work_tools.nix
View File

@@ -12,13 +12,10 @@
image = "docker.io/vikunja/vikunja:latest"; image = "docker.io/vikunja/vikunja:latest";
autoUpdate = "registry"; autoUpdate = "registry";
environment = { environment = {
VIKUNJA_SERVICE_JWTSECRET = config.sops.secrets.vikunja_jwt_secret.path; VIKUNJA_SERVICE_JWTSECRET = config.sops.secrets.vikunja_jwtsecret.path;
VIKUNJA_SERVICE_PUBLICURL = "http://bulba.space/"; VIKUNJA_SERVICE_PUBLICURL = "http://bulba.space/";
VIKUNJA_DATABASE_PATH = "/db/vikunja.db"; VIKUNJA_DATABASE_PATH = "/db/vikunja.db";
}; };
environmentFiles = [
config.sops.secrets.vikunja_jwt_secret.path
];
volumes = [ volumes = [
"/home/cianh/vikunja/files:/app/vikunja/files" "/home/cianh/vikunja/files:/app/vikunja/files"
"/home/cianh/vikunja/db:/db" "/home/cianh/vikunja/db:/db"

21
home-manager/secrets.yaml Normal file
View File

@@ -0,0 +1,21 @@
vikunja_jwtsecret: ENC[AES256_GCM,data:Ri2wYlmWJMS1V1U84msjzg40OEyTNjcm33Bsw46FYLgMUn/n59Smipyh+bjUudDOiNZeTRtciRhKFjB7qGt2Vw==,iv:zTzV3WouxI4lxEMReUnu4EKyC0hBd9ZFHRSb1rLvs38=,tag:8QEfipKFn4yJwl3ImC6lDw==,type:str]
sops:
kms: []
gcp_kms: []
azure_kv: []
hc_vault: []
age:
- recipient: age15x4h66uk6ct3436e6r4l0tkpf86e7jzl3lqd2acndq2jjvq5za3stqg2fy
enc: |
-----BEGIN AGE ENCRYPTED FILE-----
YWdlLWVuY3J5cHRpb24ub3JnL3YxCi0+IFgyNTUxOSA4TU5UWE5XU0ZtekNHSFVo
U1N6VGhyRlRuTkxiOGR0SU9hUndjN2xLOEVFCktNb3M4MzF2WWJlRG5lWTdJbVhl
TTcwL2ZLVzB2SXNsWE55VEhOaTg3M0UKLS0tIEZCR2tzZFlqTy9OdUwrRkZwWDFF
VjBIa05Gc0xxeDlrTUo2Wlc0R1Z4c0kKIWQlPSxK9nt5YG5cINZqtwh+atzFdXsU
2dxKy4BMiZqsuF3lGoGpOg0yXyNlE91UJwkymk8tJK9KXrqf4biq7Q==
-----END AGE ENCRYPTED FILE-----
lastmodified: "2025-01-30T00:51:36Z"
mac: ENC[AES256_GCM,data:AdbgKxiJR/dWAZ2goNKOcf/gvyrpjeihMaL73w36+reQvn95O0Uwyou9f0Wujf5AZan5J0YKfLrr/850bL9K0f8JnNUcxLg2wAjxVi0NgZqqEWJAPLuxMly2WXJYWKCFRZNyRcwzvVPVp/R95EF0eHqchlCnYYO+B0fDJaqwVLE=,iv:wHMqe7QVD/NEeeX9AapVcwhkmei0tOOIjP3UVB1ZGtM=,tag:9iBIma3IrDQu7syDD4H1GA==,type:str]
pgp: []
unencrypted_suffix: _unencrypted
version: 3.9.2