started soteria-specific secrets

2026-03-23 17:58:26 -05:00
parent 52a351ee8c
commit a45f5a4cca
4 changed files with 53 additions and 49 deletions
@@ -27,6 +27,10 @@ in
          hostname = hostname;
          caURL = caURL;
        };
+        sops.defaultSopsFile = ./secrets.yaml;
+        sops.secrets."janus/admin_password" = {
+          owner = "${hostname}";
+        };
        # mtls = {
        #   enable = true;
        #   subject = hostname;
@@ -61,33 +65,34 @@ in
        # };

        home-manager.users."${username}" = {
-          imports = with inputs.self.modules.homeManager; [
-            sops
-            step-ssh-user
+          imports = with inputs.self.modules; [
+            homeManager.sops
+            homeManager.step-ssh-user
+            homeManager"${hostname}"
          ];
-          shell.program = "zsh";
        };
      }
    ];
  };

+  flake.modules.homeManager."${hostname}" = { config, ... }: {
+    imports = with inputs.self.modules.homeManager; [
+      rebuild
+      sops
+      mtls
+    ];
+
+    homeManagerFlakeDir = "${config.xdg.configHome}/home-manager";
+    home.username = "${username}";
+    home.homeDirectory = "/home/${username}";
+    shell.program = "zsh";
+  };
+
  flake.homeConfigurations."${hostname}" = inputs.home-manager.lib.homeManagerConfiguration {
    pkgs = import inputs.nixpkgs { system = "x86_64-linux"; };
    modules = with inputs.self.modules; [
      homeManager."${username}"
-      {
-        imports = with inputs.self.modules.homeManager; [
-          rebuild
-          # sops
-          # step-ssh-user
-          # mtls
-          # restic
-        ];
-
-        home.username = "${username}";
-        home.homeDirectory = "/home/${username}";
-        shell.program = "zsh";
-      }
+      homeManager."${hostname}"
    ];
  };
 }