init

2026-01-11 01:42:54 +00:00 · 2026-01-11 01:42:54 +00:00 · aae151cee6
commit aae151cee6
33 changed files with 1351 additions and 0 deletions
--- a/hosts/makise/system/configuration/sops.nix
+++ b/hosts/makise/system/configuration/sops.nix
@ -0,0 +1,41 @@
+{ inputs
+, ...
+}:
+
+{
+  imports = [
+    inputs.sops-nix.nixosModules.sops
+  ];
+
+  sops = {
+    defaultSopsFile = ../../secrets/default.yaml;
+    defaultSopsFormat = "yaml";
+
+    gnupg.sshKeyPaths = [ ];
+    age.sshKeyPaths = [
+      "/persist/etc/ssh/ssh_host_ed25519_key"
+    ];
+
+    secrets = {
+      "users/admin/password_hash" = {
+        owner = "admin";
+        neededForUsers =  true;
+      };
+      "users/kurisu/password_hash" = {
+        owner = "kurisu";
+        neededForUsers =  true;
+      };
+
+      "forgejo/admin/dokkae.cat/password" = {
+        owner = "forgejo";
+        group = "forgejo";
+        mode = "400";
+      };
+      "forgejo/mailer/password" = {
+        owner = "forgejo";
+        group = "forgejo";
+        mode = "400";
+      };
+    };
+  };
+}