feat(flake)!: move agenix-rekey module to auto.configurations

This commit is contained in:
reo101 2024-09-08 16:50:29 +03:00
parent 10a013d6a6
commit 52d28e5001
Signed by: reo101
GPG key ID: 675AA7EF13964ACB
2 changed files with 3 additions and 0 deletions

View file

@ -3,6 +3,8 @@
config = { config = {
# NOTE: `(r)agenix` and `agenix-rekey` modules are imported by `../../../modules/flake/configurations.nix` # NOTE: `(r)agenix` and `agenix-rekey` modules are imported by `../../../modules/flake/configurations.nix`
age.rekey = { age.rekey = {
# NOTE: defined in `meta.nix`
# hostPubkey = null;
masterIdentities = lib.mkDefault [ "${inputs.self}/secrets/privkey.age" ]; masterIdentities = lib.mkDefault [ "${inputs.self}/secrets/privkey.age" ];
storageMode = lib.mkDefault "local"; storageMode = lib.mkDefault "local";
localStorageDir = lib.mkDefault "${inputs.self}/secrets/rekeyed/${config.networking.hostName}"; localStorageDir = lib.mkDefault "${inputs.self}/secrets/rekeyed/${config.networking.hostName}";

View file

@ -63,6 +63,7 @@ let
(lib.optionalAttrs (meta ? pubkey) { (lib.optionalAttrs (meta ? pubkey) {
age.rekey.hostPubkey = meta.pubkey; age.rekey.hostPubkey = meta.pubkey;
}) })
./agenix-rekey
# nix-topology # nix-topology
inputs.nix-topology.nixosModules.default inputs.nix-topology.nixosModules.default
# Sane default `networking.hostName` # Sane default `networking.hostName`