yisroelbaum/home-server-config
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

Merge branch 'fix-sops-age-keyfile'

Browse source
This commit is contained in:
Yisroel Baum 2026-05-09 22:17:19 +03:00
commit 07042daa14
Signed by: yisroelbaum
GPG key ID: 0FA60884F75520A9
1 changed files with 8 additions and 0 deletions
Download patch file Download diff file Expand all files Collapse all files

8
tide.nix
View file

@ -20,6 +20,14 @@
# the file is absent, which is the right place for that failure. # the file is absent, which is the right place for that failure.
sops.validateSopsFiles = false; sops.validateSopsFiles = false;
# Use the host's age key generated with age-keygen, not the
# SSH-host-key-derived identity sops-nix falls back to by default.
# The encrypted file's recipient is the public key paired with
# this private key.
sops.age.keyFile = "/var/lib/sops-nix/key.txt";
sops.age.sshKeyPaths = [ ];
sops.gnupg.sshKeyPaths = [ ];
sops.secrets."tide-env" = { sops.secrets."tide-env" = {
sopsFile = ./secrets/tide.yaml; sopsFile = ./secrets/tide.yaml;
# phpfpm reads this via EnvironmentFile, which runs as root # phpfpm reads this via EnvironmentFile, which runs as root