Add sops and setup sops-nix
We want to store secrets, and due to the shortcomings of git-crypt (not
working, not being able to push to public caches, etc.) we have decided
to use sops.
Change-Id: I9ed38a93879ca5ff4a452e6e8017b500a4d2cbb6
Reviewed-on: https://git.clicks.codes/c/Chimera/NixFiles/+/414
Tested-by: Skyler Grey <minion@clicks.codes>
Reviewed-by: Skyler Grey <minion@clicks.codes>
diff --git a/flake.nix b/flake.nix
index 77d6f4d..082873d 100644
--- a/flake.nix
+++ b/flake.nix
@@ -2,25 +2,6 @@
description = "The Chimera nix configuration flake, a shared system configuration";
inputs = {
- nixpkgs.url = "github:nixos/nixpkgs/nixos-unstable";
-
- snowfall-lib = {
- url = "github:snowfallorg/lib";
- inputs.nixpkgs.follows = "nixpkgs";
- };
-
- home-manager = {
- url = "github:nix-community/home-manager";
- inputs.nixpkgs.follows = "nixpkgs";
- };
-
- nix-index-database = {
- url = "github:nix-community/nix-index-database";
- inputs.nixpkgs.follows = "nixpkgs";
- };
-
- hyprland.url = "github:hyprwm/Hyprland";
-
anyrun = {
url = "github:Kirottu/anyrun";
inputs.nixpkgs.follows = "nixpkgs";
@@ -31,7 +12,28 @@
flake = false;
};
+ home-manager = {
+ url = "github:nix-community/home-manager";
+ inputs.nixpkgs.follows = "nixpkgs";
+ };
+
+ hyprland.url = "github:hyprwm/Hyprland";
+
+ nix-index-database = {
+ url = "github:nix-community/nix-index-database";
+ inputs.nixpkgs.follows = "nixpkgs";
+ };
+
+ nixpkgs.url = "github:nixos/nixpkgs/nixos-unstable";
+
nur.url = "github:nix-community/nur";
+
+ snowfall-lib = {
+ url = "github:snowfallorg/lib";
+ inputs.nixpkgs.follows = "nixpkgs";
+ };
+
+ sops-nix.url = "github:Mic92/sops-nix";
};
outputs =
@@ -54,10 +56,10 @@
homes.users."minion@greylag".modules = extraHomeModules;
-
- system.modules.nixos = [
+ systems.modules.nixos = [
inputs.hyprland.nixosModules.default
inputs.nur.nixosModules.nur
+ inputs.sops-nix.nixosModules.sops
];
snowfall = {