motiejus/config
1
Fork 0
Code Packages Releases Activity

disable sops temporarily

Browse Source 
to be re-enabled in a different branch
This commit is contained in:
Motiejus Jakštys 2023-04-06 23:38:25 +03:00
parent fb461b1012
commit 151f48cb4b
1 changed files with 7 additions and 7 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

14
configuration.nix
View File

@ -2,7 +2,7 @@
config, config,
pkgs, pkgs,
lib, lib,
sops-nix, #sops-nix,
... ...
}: let }: let
gitea_uidgid = 995; gitea_uidgid = 995;
@ -69,12 +69,12 @@ in {
imports = [ imports = [
./hardware-configuration.nix ./hardware-configuration.nix
./zfs.nix ./zfs.nix
sops-nix.nixosModules.sops #sops-nix.nixosModules.sops
]; ];
sops.defaultSopsFile = ./hosts/hel1-a/secrets.yaml; #sops.defaultSopsFile = ./hosts/hel1-a/secrets.yaml;
sops.age.sshKeyPaths = [ "/etc/ssh/ssh_host_ed25519_key" ]; #sops.age.sshKeyPaths = [ "/etc/ssh/ssh_host_ed25519_key" ];
sops.secrets.borgbackup-password = {}; #sops.secrets.borgbackup-password = {};
nixpkgs.overlays = [ nixpkgs.overlays = [
(self: super: { (self: super: {
@ -258,8 +258,8 @@ in {
repo = "zh2769@zh2769.rsync.net:hel1-a.servers.jakst"; repo = "zh2769@zh2769.rsync.net:hel1-a.servers.jakst";
encryption = { encryption = {
mode = "repokey-blake2"; mode = "repokey-blake2";
passCommand = "cat ${config.sops.secrets.borgbackup-password.path}"; #passCommand = "cat ${config.sops.secrets.borgbackup-password.path}";
#passCommand = "cat /var/src/secrets/borgbackup/password"; passCommand = "cat /var/src/secrets/borgbackup/password";
}; };
paths = value.paths; paths = value.paths;
extraArgs = "--remote-path=borg1"; extraArgs = "--remote-path=borg1";