diff options
| author | David Morgan <djm_uk@protonmail.com> | 2024-08-29 19:12:32 +0100 |
|---|---|---|
| committer | David Morgan <djm_uk@protonmail.com> | 2024-08-29 19:12:32 +0100 |
| commit | 921200a6490cc87af4e5e1ad955ef3cce75fa3d3 (patch) | |
| tree | 31070c386c8ec8b7f360eea22eb5d9cb066a1aed /nix-conf/home/includes | |
| parent | 88cbe57395dbd30948231d39af7ef7cc450ca28d (diff) | |
| download | dotfiles-921200a6490cc87af4e5e1ad955ef3cce75fa3d3.tar.gz | |
Use sops-nix for private-ish data
Diffstat (limited to 'nix-conf/home/includes')
| -rw-r--r-- | nix-conf/home/includes/common.nix | 21 |
1 files changed, 12 insertions, 9 deletions
diff --git a/nix-conf/home/includes/common.nix b/nix-conf/home/includes/common.nix index 6e77bfa..630dc7b 100644 --- a/nix-conf/home/includes/common.nix +++ b/nix-conf/home/includes/common.nix @@ -2,18 +2,25 @@ let hcr = pkgs.callPackage ./scripts/hm-changes-report.nix { inherit config pkgs; }; scr = pkgs.callPackage ./scripts/system-changes-report.nix { inherit config pkgs; }; - email = builtins.readFile "${config.home.homeDirectory}/email.txt"; unstable = import <unstable> { }; in { imports = [ ./zsh.nix + <sops-nix/modules/home-manager/sops.nix> ]; nixpkgs.config.allowUnfreePredicate = pkg: builtins.elem (lib.getName pkg) [ "aspell-dict-en-science" ]; + sops = { + age.keyFile = "${config.xdg.configHome}/sops/age/keys.txt"; + defaultSopsFile = ./../../secrets/home.yaml; + secrets."ssh_config/oci" = { }; + secrets."git_email_config/default" = { }; + }; + home.packages = with pkgs; [ hcr scr @@ -56,9 +63,11 @@ in nixpkgs-review nvd pass + rage ripgrep rlwrap sd + sops tealdeer tre-command ugrep @@ -148,7 +157,7 @@ in UseKeychain yes User djm ''; - includes = [ "~/.ssh/config_local" ]; + includes = [ "~/.ssh/config_local" config.sops.secrets."ssh_config/oci".path ]; matchBlocks = { "djm.ovh" = { hostname = "v.djm.ovh"; @@ -178,12 +187,6 @@ in "hashbang" = { hostname = "de1.hashbang.sh"; }; - "o1" = { - hostname = "130.162.163.108"; - }; - "o2" = { - hostname = "152.67.142.10"; - }; "tilde.institute" = { hostname = "tilde.institute"; }; @@ -205,7 +208,7 @@ in programs.git = { enable = true; userName = "David Morgan"; - userEmail = email; + includes = [ { path = config.sops.secrets."git_email_config/default".path; } ]; aliases = { # difftastic logt = "!sh -c 'GIT_EXTERNAL_DIFF=\"difft --background=dark\" git log -p --ext-diff'"; |