17 lines
403 B
Nix
17 lines
403 B
Nix
{ config, ... }:
|
|
{
|
|
sops = {
|
|
# sometimes the impermanence bind mount is stopped when sops needs these
|
|
age.sshKeyPaths = [
|
|
"/persist/etc/ssh/ssh_host_ed25519_key"
|
|
"/persist/etc/ssh/ssh_host_rsa_key"
|
|
];
|
|
defaultSopsFile = ./../../secrets/common.yaml;
|
|
secrets = {
|
|
kopia = {
|
|
sopsFile = ./../../secrets/${config.networking.hostName}.yaml;
|
|
};
|
|
};
|
|
};
|
|
}
|