Add more SOPS secrets and resign using new SSH key - Update .sops.yaml - Resign secrets/secrets.json - Add new secrets for keepassxc, spotify and my account password - Change SOPS SSH key locations so that it doesn't need persistence (as sops happens before impermanence)

commit: df3eadb4136b46a6a419ef0f2aa02a1dcb3c3e83 [log] [tgz]
author: Skyler Grey <skyler3665@gmail.com> Fri Aug 26 06:42:12 2022 +0100
committer: Skyler Grey <skyler3665@gmail.com> Sun Sep 04 11:34:28 2022 +0100
tree: 31363697cea530add4772875df4d05f2137d9d2c
parent: a2dca22f03833713239169b6bc0244e4c576bd47 [diff] [blame]
diff --git a/modules/secrets.nix b/modules/secrets.nix
index 3435962..4ccebcb 100644
--- a/modules/secrets.nix
+++ b/modules/secrets.nix

@@ -11,6 +11,10 @@
     environment.systemPackages = with pkgs; [
       sops
     ];
-    sops.defaultSopsFile = ../secrets/secrets.json;
+    sops = {
+      defaultSopsFile = ../secrets/secrets.json;
+      gnupg.sshKeyPaths = ["/nix/persist/etc/ssh/ssh_host_rsa_key"];
+      age.sshKeyPaths = [];
+    };
   };
 }
commit	df3eadb4136b46a6a419ef0f2aa02a1dcb3c3e83	[log] [tgz]
author	Skyler Grey <skyler3665@gmail.com>	Fri Aug 26 06:42:12 2022 +0100
committer	Skyler Grey <skyler3665@gmail.com>	Sun Sep 04 11:34:28 2022 +0100
tree	31363697cea530add4772875df4d05f2137d9d2c
parent	a2dca22f03833713239169b6bc0244e4c576bd47 [diff] [blame]