17 lines
563 B
Nix
17 lines
563 B
Nix
{ inputs, config, pkgs, lib, ... }:
|
|
{
|
|
sops = {
|
|
# It's also possible to use a ssh key, but only when it has no password:
|
|
sshKeyPaths = [ "${config.home.homeDirectory}/.ssh/id_ed25519" ];
|
|
defaultSopsFile = ./secrets.yaml;
|
|
secrets.test = {
|
|
# sopsFile = ./secrets.yml.enc; # optionally define per-secret files
|
|
|
|
# %r gets replaced with a runtime directory, use %% to specify a '%'
|
|
# sign. Runtime dir is $XDG_RUNTIME_DIR on linux and $(getconf
|
|
# DARWIN_USER_TEMP_DIR) on darwin.
|
|
path = "%r/test.txt";
|
|
};
|
|
|
|
};
|
|
} |