44 lines
1 KiB
Nix
Executable file
44 lines
1 KiB
Nix
Executable file
{ inputs, config, ... }:
|
|
|
|
{
|
|
imports = [ inputs.sops-nix.nixosModules.sops ];
|
|
|
|
sops = {
|
|
defaultSopsFile = "/etc/nixos/secrets/secrets.yaml";
|
|
defaultSopsFormat = "yaml";
|
|
validateSopsFiles = false;
|
|
|
|
age.keyFile = "/root/.config/sops/age/keys.txt";
|
|
|
|
secrets = {
|
|
"authentik/secrets.env".restartUnits = [ "authentik.service" ];
|
|
|
|
"caddy/wo2wz.fyi.crt" = {
|
|
owner = "caddy";
|
|
group = "caddy";
|
|
reloadUnits = [ "caddy.service" ];
|
|
};
|
|
"caddy/wo2wz.fyi.key" = {
|
|
owner = "caddy";
|
|
group = "caddy";
|
|
reloadUnits = [ "caddy.service" ];
|
|
};
|
|
|
|
"cloudflared/8af2892d-d534-4e32-b867-5b79308a99d5.json" = {};
|
|
|
|
"nextcloud/adminpass" = {};
|
|
|
|
"onlyoffice/jwt" = {
|
|
owner = "onlyoffice";
|
|
group = "onlyoffice";
|
|
};
|
|
|
|
"restic/password" = {};
|
|
"restic/rclone/offsite" = {};
|
|
|
|
"vaultwarden/secrets.env".restartUnits = [ "vaultwarden.service" ];
|
|
|
|
"zipline/secrets.env".restartUnits = [ "zipline.service" ];
|
|
};
|
|
};
|
|
}
|