aboutsummaryrefslogtreecommitdiff
path: root/modules/system/secrets.nix
diff options
context:
space:
mode:
authorschererleander <leander@schererleander.de>2026-03-14 21:31:02 +0100
committerschererleander <leander@schererleander.de>2026-03-14 21:31:02 +0100
commita4f94bd55d6a732e63b75fa69ddbaa21778e6eb8 (patch)
treeb04732c2a6aee8282ed0b996d6cb62b57d759e79 /modules/system/secrets.nix
parentaa378b9e01e211f62063f0b6c1ad84417b15bb7f (diff)
refactor(secrets): move secrets to host-specific modules
Diffstat (limited to 'modules/system/secrets.nix')
-rw-r--r--modules/system/secrets.nix60
1 files changed, 0 insertions, 60 deletions
diff --git a/modules/system/secrets.nix b/modules/system/secrets.nix
deleted file mode 100644
index 2a42fe7..0000000
--- a/modules/system/secrets.nix
+++ /dev/null
@@ -1,60 +0,0 @@
-{
- flake.modules.nixos.secrets =
- { inputs, ... }:
- {
- imports = [ inputs.sops-nix.nixosModules.sops ];
- sops = {
- defaultSopsFile = inputs.self + /secrets/secrets.yaml;
- age.keyFile = "/etc/sops/age_key";
- secrets = {
- "borgbase_ssh_key" = {
- owner = "root";
- mode = "0600";
- };
- "nextcloud-secrets" = {
- owner = "nextcloud";
- group = "nextcloud";
- mode = "0400";
- };
- "nextcloud-admin-pass" = {
- owner = "root";
- mode = "0600";
- };
- "ssh_github_key" = {
- owner = "administrator";
- mode = "0600";
- };
- "ssh_jonsbo_key" = {
- owner = "administrator";
- mode = "0600";
- };
- "ssh_sachiel_key" = {
- owner = "administrator";
- mode = "0600";
- };
- "borg_git_repo" = {
- owner = "root";
- mode = "0600";
- };
- "borg_nextcloud_repo" = {
- owner = "root";
- mode = "0600";
- };
- "ssh_git_pubkey" = {
- owner = "git";
- group = "git";
- mode = "0400";
- path = "/var/lib/git-server/.ssh/authorized_keys";
- };
- "cert_fullchain" = {
- owner = "nginx";
- group = "nginx";
- };
- "cert_private" = {
- owner = "nginx";
- group = "nginx";
- };
- };
- };
- };
-}
generated by cgit v1.3.1 (git 2.54.0) at 2026-05-30 17:31:46 +0000