Trolli Schmittlauch
fe50bf0b58
I've decided to just create some ssh host keys via `sudo ssh-keygen -A` to make the key management parallel to linux hosts.
14 lines
343 B
Nix
14 lines
343 B
Nix
{
|
|
lib,
|
|
config,
|
|
pkgs,
|
|
...
|
|
}:
|
|
{
|
|
sops = {
|
|
#age.keyFile = "/Users/os/Library/Application Support/sops/age/keys.txt";
|
|
gnupg.sshKeyPaths = lib.mkForce [ ]; # no host keys
|
|
defaultSopsFile = lib.mkDefault ./secrets.yaml;
|
|
defaultSopsFormat = "yaml"; # is the default. ini had some template rendering issues in practice
|
|
};
|
|
}
|