Bos55/nix-config
2
Fork 0
Code Issues 1 Pull requests Projects Releases Packages Wiki Activity

feat(sops): Setup sops

Browse source
This commit is contained in:
Tibo De Peuter 2025-10-04 19:59:03 +02:00
parent f1ba0a98e8
commit 12015f8589
Signed by: tdpeuter
GPG key ID: 38297DE43F75FFE2
4 changed files with 45 additions and 5 deletions
Download patch file Download diff file Expand all files Collapse all files

13
users/admin/default.nix
View file

@ -2,6 +2,8 @@
let
cfg = config.homelab.users.admin;
owner = config.users.users.admin.name;
in {
options.homelab.users.admin.enable = lib.mkEnableOption "user System Administrator";
@ -10,6 +12,12 @@ in {
config.users.users.admin.name
];
sops.secrets."users/admin/authorized_keys" = {
format = "yaml";
sopsFile = ../../secrets/secrets.yaml;
inherit owner;
};
users.users.admin = {
description = "System Administrator";
isNormalUser = true;
@ -17,9 +25,8 @@ in {
config.users.groups.wheel.name # Enable 'sudo' for the user.
];
initialPassword = "ChangeMe";
openssh.authorizedKeys.keys = [
# TODO ChangeMe
"ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIPrG+ldRBdCeHEXrsy/qHXIJYg8xQXVuiUR0DxhFjYNg"
openssh.authorizedKeys.keyFiles = [
/run/secrets/users/admin/authorized_keys
];
packages = with pkgs; [
curl