blob: bd5156e11cdcfe4bd3647823de2254b03eda435a (
plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
|
{ config, lib, inputs, ... }:
with lib;
let
cfg = config.modules.sops;
secretsFile = ../systems/${config.networking.hostName}/secrets/secrets.yaml;
in
{
imports = [
inputs.sops-nix.nixosModules.sops
];
options.modules.sops = {
enable = mkEnableOption "sops secret manager";
};
config = mkIf cfg.enable {
sops.defaultSopsFile = secretsFile;
};
}
|
