sops: federate sops secret configs

2025-10-04 13:39:05 -04:00 · 2025-10-04 13:39:05 -04:00 · 943e9d4cb7
commit 943e9d4cb7
parent bf9992a5a6
8 changed files with 38 additions and 34 deletions
--- a/modules/nixos/homeserver/caddy.nix
+++ b/modules/nixos/homeserver/caddy.nix
@ -1,6 +1,21 @@
 { config, pkgs, ... }:

 {
+  sops.secrets = {
+    "caddy/secrets.env" = {};
+
+    "caddy/wo2wz.fyi.crt" = {
+      owner = "caddy";
+      group = "caddy";
+      reloadUnits = [ "caddy.service" ];
+    };
+    "caddy/wo2wz.fyi.key" = {
+      owner = "caddy";
+      group = "caddy";
+      reloadUnits = [ "caddy.service" ];
+    };
+  };
+
  services = {
    caddy = {
      enable = true;