sokai/mynixos-config
1
1
Fork 0
forked from mirrors_public/oddlama_nix-config
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

feat: remove recipients.txt in favor of nix run '.#edit-secret'

Browse source
This commit is contained in:
oddlama 2023-02-03 21:11:32 +01:00
parent 587703c157
commit 7cabb98064
No known key found for this signature in database
GPG key ID: 14EFE510775FE39A
4 changed files with 24 additions and 38 deletions
Download patch file Download diff file Expand all files Collapse all files

4
modules/core/default.nix
View file

@ -26,8 +26,8 @@ in {
security.sudo.enable = false;
rekey.hostPubkey = ../../secrets/pubkeys + "/${config.networking.hostName}.pub";
rekey.masterIdentityPaths = [../../secrets/yk1-nix-rage.pub];
rekey.agePlugins = with pkgs; [age-plugin-yubikey];
rekey.masterIdentities = [../../secrets/yk1-nix-rage.pub];
rekey.extraEncryptionPubkeys = [../../secrets/backup.pub];
rekey.secrets.yolo.file = ./yolo.age;
environment.etc."YOLO".source = config.rekey.secrets.yolo.path;