feat(flake)!: move agenix-rekey
module to auto.configurations
This commit is contained in:
parent
10a013d6a6
commit
52d28e5001
2 changed files with 3 additions and 0 deletions
|
@ -3,6 +3,8 @@
|
||||||
config = {
|
config = {
|
||||||
# NOTE: `(r)agenix` and `agenix-rekey` modules are imported by `../../../modules/flake/configurations.nix`
|
# NOTE: `(r)agenix` and `agenix-rekey` modules are imported by `../../../modules/flake/configurations.nix`
|
||||||
age.rekey = {
|
age.rekey = {
|
||||||
|
# NOTE: defined in `meta.nix`
|
||||||
|
# hostPubkey = null;
|
||||||
masterIdentities = lib.mkDefault [ "${inputs.self}/secrets/privkey.age" ];
|
masterIdentities = lib.mkDefault [ "${inputs.self}/secrets/privkey.age" ];
|
||||||
storageMode = lib.mkDefault "local";
|
storageMode = lib.mkDefault "local";
|
||||||
localStorageDir = lib.mkDefault "${inputs.self}/secrets/rekeyed/${config.networking.hostName}";
|
localStorageDir = lib.mkDefault "${inputs.self}/secrets/rekeyed/${config.networking.hostName}";
|
|
@ -63,6 +63,7 @@ let
|
||||||
(lib.optionalAttrs (meta ? pubkey) {
|
(lib.optionalAttrs (meta ? pubkey) {
|
||||||
age.rekey.hostPubkey = meta.pubkey;
|
age.rekey.hostPubkey = meta.pubkey;
|
||||||
})
|
})
|
||||||
|
./agenix-rekey
|
||||||
# nix-topology
|
# nix-topology
|
||||||
inputs.nix-topology.nixosModules.default
|
inputs.nix-topology.nixosModules.default
|
||||||
# Sane default `networking.hostName`
|
# Sane default `networking.hostName`
|
||||||
|
|
Loading…
Reference in a new issue